I downloaded a copy of Splunk but I must be doing something wrong to get it to work with our Juniper SSG500 appliance. I am trying to get the log's from the firewall to Splunk.
You have to tell Splunk to monitor your juniper log file. The instructions are documented here: http://docs.splunk.com/Documentation/Splunk/5.0/Data/Monitorfilesanddirectories
View solution in original post
Or you could set your firewall to send syslog messages to the splunk box