Guys its my first time here, i need to read the logs from my pfsense and get alerts based on the logs, any help on how i can achieve this? welcome and thanks in advance.
Welcome to Splunk Answers!
There are a few add-ons in splunkbase for pfsense (https://splunkbase.splunk.com/apps?keyword=pfsense), have you tried any of them? What else have you tried?
After you have your data in Splunk you can work on creating an alert. That's just a matter of searching your data for the alert condition and then selecting Save As->Alert. You may need to set up SMTP in your Splunk search head if it's not set up already.