There are a number of ways to do this, for instance, if you were exposing the Axis2 web service over Tomcat, you could limit the servlet endpoint through either a username and password, or by IP range access. Consider reading this documentation on Tomcat if you want to limit access.
To secure this endpoint further you could supply your HTTP server with a certificate so the data is transferred over HTTPS.