Iptable manipulation in Docker for Mac

jsonai · March 20, 2018, 9:25pm

I want to disable all outgoing connections that are initiated by docker containers to the outside world. I can do this in linux by adding a rule to the FORWARD chain in linux. How do I do this in Docker for Mac?

I found out that Docker for Mac uses an xhyve vm and that’s where docker0 interface lives. What interface in the host does this connect to? I used nettop on Mac and I see that Docker uses my en0 wireless interface. But, I’m not sure if Docker and xhyve are using the same interface.

Thanks,
Jay

Topic		Replies	Views
No docker0 interface on Mac OSX 10.3 high Sierra Docker Desktop macos	1	1767	March 20, 2018
Preventing the outside world from seeing open container ports Docker Desktop macos	3	8200	January 5, 2018
Will docker for mac support bi-directional connection between host and container in the future? Docker Desktop	5	4359	August 14, 2016
Accessing Host (IP/Port) services from container Docker Desktop	0	1311	August 18, 2016
Clarify Network features in documentation for Docker for Mac Docker Desktop macos	2	590	October 12, 2018

Iptable manipulation in Docker for Mac

Related topics