Show HN: Network-filter – domains-based whitelist for Docker containers https://bit.ly/475IPX0

Show HN: Network-filter – domains-based whitelist for Docker containers Built this because LLM tools with MCP servers (OpenCode, Goose, Claude code, etc.) have too much network access. It uses network_mode: 'service:x' to force containers through iptables rules that drop everything except whitelisted domains. No proxy - operates at the network namespace level so bypasses aren't possible. https://bit.ly/3Uy4Q9x August 20, 2025 at 01:27AM