log analysis tips needed..

i analyse the daily PIX logs using fwanalog. It takes a lot of time but the result is really good and easy to parse. But since i am new to security analysis, i'd need tips for the same. its been only 2 days since i started using fwanalog. i started off by making a note of the IPs blocked at unknown ports. but now i have streamlined my analysis by lookng at the pattern as to the date and time of the block.
Pls submit your tips so that i can be fast at analysing them. i spend 3-4 hrs doing only log analysis when i have more important things to do.

TIA
Punter

Check out Sawmill. It's not free, but creating queries on the fly are easy and fast. We use it for parsing all sorts of logs (web, radius, firewall, maillog, etc).

any pointers to good articles would be helpful.