I have not tested this, but I dont see why it would not work. As long as the responder is listening on that port I dont see this being an issue. In the OCSP profile you are configuring the url to use. I would recommend testing it by disabling this under the trusted cert/s for which you assign the OCSP profile to: Reject the request if OCSP Responder is unreachable. This way clients will remain unaffected. Then once you confirm it works or does not work you can re-enable. HTH!