cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
465
Views
5
Helpful
5
Replies

Disable Web Access of Expressway-E from LAN 2 (Internet)

Acevirgil de Ocampo
Rising star
Rising star

Hi,

 

We deployed dual NIC Expressway-E for WebRTC proxy for CMS. Port 443 is being used for the communication for WebRTC so we changed the port for web administration to 7443.  We can access the Expressway-E from inside also from outside using 7443 port. On the Box, is it possible to disable web access from outside/LAN 2 of Expressway-E?

 

Thanks.

5 Replies 5

Nithin Eluvathingal
VIP Mentor VIP Mentor
VIP Mentor

Block the port 7443 on your firewall and that block the access from outside.

 

 



Response Signature


So not possible in the Expressway itself?

The reason why we dont need to do it on the firewall is for long process which we need to request change on network security team.

I am looking for a way to disable the https service on the outside network interface of the expressway. 

Never tried on expressway. We allow only ports required  so never come across such scenario where I can access expresswayIp from outside. 



Response Signature


Expressway has no setting for this, you can reach out to your SE/AM and submit a PER so it's considered for a future release, currently this has to be handled at the FW/ACL level outside of expressway.

HTH

java

if this helps, please rate

Your security team should be interested in allowing only the needed ports for your service that you run on the Expressway. There are good documentation available for this that lists the ports needed for different type of services.



Response Signature


Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Recognize Your Peers