Check the best practise docuemnt DMZ Virtualization with VMware Infrastructure
Also is the service console part of the management network?
There is no Service Console port on ESXi version.
If you have enough physical NIC sugges to create to seperate vSwitch with dedicated uplink (physical NIC) for the DMZ traffic
