Hello there! I have always understood that the failback functionality, is in case that IPSec cannot be established for whatever reason. Maybe port 4501 is being blocked upstream, or your GP user is at a customer/vendor location and they do not allow IPsec on port 4501 outbound through their environment. I am sure there could be other reasons why IPsec would fail. So, if IPSec is not available, the solution is engineered to use SSL. Thanks.
... View more