I have the SSL VPN listening on a different public address (IP Alias) - I've pointed my required domain name to it and registered a certificate with a trusted provider. The SSL VPN listens on all public addresses, a PCI compliance scan complains that the certificate presented on port 443 of the primary wan ip resolves to a different ip than the one being tested. Any way of stopping this? I tried firewalling the public interface but it seems that doesn't work.

Thanks

Graham