We have an issue where our PCI scans from a third party (Qualys) are
failing. Their support tell us the following:This vulnerability is
because the scanner found tcp port 443 open to the public internet but
the https service could not be used for a s...
We don't limit the source IP's for SSL VPN. Its accessible from
anywhere. A tech from the pci compliance vendor can connect to the page
in a web browser, but when they use their scanning tools on the page the
firewall apparently blocks the scan.