Issue
If you configure Mobile VPN with SSL to use a UDP port for the Data Channel and use an interface secondary IP address as the VPN gateway, the data channel will use the primary interface IP address instead of the secondary IP address.
Workaround/Solution
If there is no policy conflict, use the interface IP address for the external interface as the gateway for Mobile VPN with SSL.A second option is to make the current interface IP address a secondary IP address, and use the secondary IP address as the new interface IP address. Note that branch office VPNs must also use the primary interface IP address as the local gateway.
