John,

 If so you can install the Tivoli Firewall Toolbox and setup proxies on
either side of the firewall that talk securely between them.   Then at
NetView server in the redzone you can also install a Tivoli Endpoint and
also the Event Sink component.  You direct your NetView server to send TEC
events to the Event Sink (in the redzone)..which turns this from a non-TME
event into a TME event and forwards it up over the proxies to your TEC
server.    To make it more secure, you can configure uni-directional on
your proxies so that your secure proxy will poll your unsecure one on a
timed basis to see if there is an event to bring up.  That way all
communications are started from your secure side.     You could setup to
ssh into your redzone NetView from your secure side.

See this document for more info on the Toolbox
http://www.redbooks.ibm.com/redpieces/pdfs/sg245510.pdf

I do not recommend MLMs placed into a DMZ.  NetView does not use MLMs for
his configuration polling.

Kind regards,
Stephen Hochstetler              shochste AT us.ibm DOT com
International Technical Support Organization at IBM
11400 Burnet Road   Austin, TX  78758
Office - 512-823-8584 (t/l 793)       FAX - 512-838-6931
------------------------------------------------------------
http://www.redbooks.ibm.com