Networking question for podman in general

[thomascastelein]

Hi There,

For a specific scenario I have a container running with port 3310 as so:
podman run --name app -p 192.168.1.2:3310:3310 ...

The subnet my host is in is:
192.168.1.0/24

In what way do I have options to restrict network access so that only ip: 192.168.1.3 has access to that 3310 port? I have never really got this to work, I tried setting up the firewalld with specific zones but this seems to be overruled by the iptables. I might be overthinking something simple or facing an impossible task. I would love some more insight of this. Sadly I need this for a legacy setup. normally I would have subnets of 3 hosts and publishing only 443 as a proxy and would be fine.

General info:

Podman version:  5.4.0
Network backend: Netavark
OS: Oracle Linux Server 9.6

It it helps, im using a minimal setup. New server > install podman > podman network create test > start container.

I've been struggling allot with this the last few years, but never asked anyone of u if there is a way to achieve this.