Timeline for How to completely disable internet access on Linux with the exception of select Docker containers?
Current License: CC BY-SA 4.0
7 events
| when toggle format | what | by | license | comment | |
|---|---|---|---|---|---|
| Jun 16, 2022 at 5:08 | answer | added | dirkt | timeline score: 1 | |
| Jun 16, 2022 at 4:09 | comment | added | Ruslan | Yep, that's exactly the idea. The underlying OS would only run X11 and Docker. | |
| Jun 16, 2022 at 4:06 | comment | added | Turksarama | Ultimately the purpose of Qubes to to disallow each VM from being able to infect each other. The docker "equivalent" would be to install and use applications only within docker containers and not use the overlying OS for anything other than running docker. | |
| Jun 16, 2022 at 3:59 | comment | added | Ruslan | @Turksarama Thanks. There is no specific reason why... I just like the level of isolation that Qubes provides, but don't want to install Qubes or use VMs, and wanted to try a similar model but with Docker on my already-running systems. Just wanted to try setting up a more secure/hardened system. I guess one of the ways this could be accomplished is with an application-level firewall, but I was hoping there would be a more robust/easier way to do it. | |
| Jun 16, 2022 at 3:55 | comment | added | Turksarama | I don't think such a thing is possible, since the docker containers are relying on the underlying OS to supply them with network (and hence internet) access. It might be helpful to specify why you want to do this so someone could respond with an alternative solution. | |
| S Jun 16, 2022 at 3:46 | review | First questions | |||
| Jun 16, 2022 at 5:20 | |||||
| S Jun 16, 2022 at 3:46 | history | asked | Ruslan | CC BY-SA 4.0 |