There are some methods that you can use to help your server from detection, including IP whitelist, hostname/port change, OpenSSL/SNI patch, website/backend faking, header/client certificate authorization, etc. All in all: Think like a scanner, and you will be fine.