I am trying to set up a SSTP VPN service in Windows 2016. I don't want to advertise to the world that my network exists let alone that I have a running webserver, but because the SSTP service runs over HTTPS in IIS it does exactly this. Any casual hacker scanning my IP address will find a running webserver on port 443 that they can connect to and download resources from.
Is there a way to hide this from prying eyes?