Only allow certain IPs to a specific container

knighthawk72 · June 18, 2024, 1:29pm

Hello. I’ve been trying to figure this out on my own but so far have not been successful. I’d like block all IPs to a specific container, and allow only select IPs, plus my LAN, 192.168.1.0, etc.

My understanding is I would add these rules to the DOCKER-USER chain. If the container has IP address of 172.20.0.20, can anyone give me an example of:

allow rule for subnet 192.168.1.0
deny rule for everything else

?

Also, I read in several places that custom rules added to DOCKER-CHAIN are not retained after reboot. if so, how are people handling that?

System is Ubuntu 22.04

Any assistance it greatly appreciated. Thanks.

Topic		Replies	Views
Restrict all ports, except 443 and 80 (allow all from my ip) General	1	3189	September 13, 2019
Issues with firewalling docker using docker-user Docker Hub	0	473	September 15, 2019
Preventing some containers from accessing particular IP addresses General docker	0	822	November 26, 2017
Restricting External Container Access with Iptables General	5	47903	November 14, 2018
Restrict access to docker container to handful ip addresses Docker Desktop	1	1085	August 15, 2019

Only allow certain IPs to a specific container

Related topics