This scenario is suitable for both large and small estates where firewalls between business divisions or geographic areas are very restrictive and will only allow limited modification to the firewall rules.

Deployment Description

This design places the scan engines on the networks that are being scanned. In this scenario, the system administrator or other authorized users, will centrally manage the scan on a separate network from the servers being scanned. This deployment scenario allows only SQL traffic to run through the scan engine to be stored in the Scan Engine . Go through the checklist below to see if this deployment best suits your company's needs.