We deployed dual NIC Expressway-E for WebRTC proxy for CMS. Port 443 is being used for the communication for WebRTC so we changed the port for web administration to 7443. We can access the Expressway-E from inside also from outside using 7443 port. On the Box, is it possible to disable web access from outside/LAN 2 of Expressway-E?
Expressway has no setting for this, you can reach out to your SE/AM and submit a PER so it's considered for a future release, currently this has to be handled at the FW/ACL level outside of expressway.
Your security team should be interested in allowing only the needed ports for your service that you run on the Expressway. There are good documentation available for this that lists the ports needed for different type of services.