[MakiXx]

I've been doing this with Wireguard and Mullvad VPN for containers hosting users that can't always be trusted. E.g. low latency shared desktop with browser. I've had people watch pirated content on my servers without my knowledge.

[xrd]

Not with this container though, right? I would love to know how you are doing it. This was my first thought when reading about this project: "Sure, that's cool, but what about wireguard?"

[audron]

I have a similar setup with rtorrent and wireguard for torrenting: https://gitlab.com/cocainefarm/containers/rtorrent

You need to have an wireguard kernel support on the host ofc, but else you only need wireguard-tools in the container and can use a wg-quick config like usual.

Also with podman or k8s you don't even need it integrated into one container, as all containers in a pod share the same network namespace, so you can have one container running your workload and another one running the VPN.