We are rarely allowed to punch to many holes thru our firewall and if it is allowed we are only allowed to initiate communication from the inside -> out. We have many machines in our DMZ. I would've liked to put a scanner in the DMZ and setup the following:
DB(inside) <-> Scanner(inside) -> Firewall <-> Scanner(DMZ) <-> Servers(DMZ)
perhaps scanner to scanner over port 443
the inside scanner can poll the DMZ scanner depending on the schedule or need for info from those servers.
one can always hope.
your product is great!
thanks.
GD