Firefox browser isolation (sandbox) in Docker

Published by necrolingus on

All thanks to this developer: https://github.com/jlesage/docker-firefox

Why use browser isolation?

Running an isolated (also called sanbox) browser in a container is a good idea to compartmentalize your browsing or to investigate a potentially suspicious URL.

There are commercial tools available from Cloudflare Zero Trust and Kasm Zero Trust.

Docker setup

This docker compose file will start the container and enable SSL so that you can access it using https://your_ip:5800

By default self signed certs will be used and the first start-up might take a while as DH keys are generated. After the first startup using SSL, things are nice and fast again.

The container will create its own self-signed certs which you can replace with your own certs. Check in your mount location under the “certs” folder.

version: '3'
services:
  firefox:
    image: jlesage/firefox
    ports:
      - "5800:5800"
    volumes:
      - "/your/folder/path:/config:rw"
    environment:
    - SECURE_CONNECTION=1

Categories: Docker
Tags:

Related Posts

Lancache and Pihole – The easy way

There doesn’t seem to be a single, simple, straight forward tutorial online that shows how to get Lancache working with Pihole. These are the URLs that I referenced to get this working, so just listing Read more…

Run pi-hole in a Docker Container

I will be running pi-hole on Ubuntun 22.04. The problem is, port 53 is already in use by my host, so lets sort this out first. Check if port 53 is in use You can Read more…

Uptime Kuma Notifications to Home Assistant behind Cloudflare Zero Trust

In this post we will look at how we can send notifications from Uptime Kuma to our Home Assistant. Home Assistant is behind Cloudflare Zero Trust. I am using Uptime Kuma to monitor a bunch Read more…