Our company has recently been tasked with figuring out a way to monitor Windows systems in layer 3 of the purdue model which will be behind firewalls at layer 3.5 to 4 and 3.5 to 3. Per a security policy we have in place, no traffic is being allowed out of 3 to 4, but is allowed to 3.5. We currently use SCOM, SIM, Commvault and vCenter for alerting and backups on physical and virtual servers, but run into a scalability issue if we need to stand up all of these consoles at all the locations this could potentially be set up at. In a nutshell we are looking for a way to maintain our centralized management, but still utilize our tools on layer 3 to receive alerting. Is anyone aware of a product that would forward alerts from the servers to these monitoring tools without having to stand up these systems in the DMZ?