Lock down network access to internet only

nickgrealy · December 6, 2023, 1:03pm

Hi all,

I’m currently trying to isolate a (3rd party) docker container, so that it ONLY has access to the internet.

i.e. It should NOT be able to

access/discover other docker containers
access/discover the host machine
access/discover other machines on the host’s network (other than the gateway)

It should ONLY be able to access the internet (gateway).

Is there a way to do this using only docker network configuration options?

I was thinking I could run a custom gateway container, which locks down access, but wanted to avoid that if there was a native (-> configuration) solution.

Notes:

I cannot modify the docker container e.g. add iptables into the container itself

Topic		Replies	Views
How to make it so that containers have only host network access but no internet access General docker	3	1200	September 9, 2019
Restrict access to internet while still being able to access IPs on the private network General docker	4	6959	January 25, 2023
Docker host networking restrict network interface access General	0	876	June 12, 2018
Network creation for internal-containers and host, without internet access Docker Desktop	0	1909	March 9, 2018
Docker Bridge Network Mode - No internet - SOLVED General docker	0	3821	March 13, 2021

Lock down network access to internet only

Related Topics