When setting tunnel mode ESP instead of SSL, do we still need to open inbound TCP/443 to the PCS device ?
May be it is used for the Realm selection ? (www.example.com/myrealm). Because i don't see how to gather realm information without HTTP(S) communication.
Thanks a lot
Yes, SSL (TCP/443) will be used for the control channel comms.