Currently the SSL functionality is an all or nothing approach. I would like the ability to have a second set of ports configured which were secured via SSL and leave the standard ones unencrypted. In the same way the web servers use port 80 and 443 by default.

That would give the client the opportunity to choose if they wanted to use SSL or not. By using different ports its would also give network admins control over this. e.g. forcing external users to use SSL.

The most obvious use case: having a primary data centre and a disaster recovery data centre. You want the external connections to take place over SSL and the internal ones can safely avoid the overhead. You can use the firewall to prevent external access to the unencrypted ports.

Another use case: Allowing external admin users secure access whilst allowing the primary application running in the same DC to avoid the performance overhead of SSL.