From 5261c7b1380ae4238db31c607e6d19c957405f4a Mon Sep 17 00:00:00 2001
From: John Myers <9696606+jomyers@users.noreply.github.com>
Date: Sun, 15 Mar 2026 11:59:44 -0700
Subject: [PATCH] chore(sandbox): add iptables to base image for bypass
 diagnostics

The sandbox supervisor will use iptables to install LOG + REJECT rules
in the network namespace, providing immediate ECONNREFUSED (instead of
30s timeout) and structured diagnostic events when processes attempt
direct connections that bypass the HTTP CONNECT proxy.

Ref: NVIDIA/OpenShell#268
---
 sandboxes/base/Dockerfile | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/sandboxes/base/Dockerfile b/sandboxes/base/Dockerfile
index 8d62d42..8662412 100644
--- a/sandboxes/base/Dockerfile
+++ b/sandboxes/base/Dockerfile
@@ -21,6 +21,7 @@ WORKDIR /sandbox
 
 # Core system dependencies
 # iproute2: network namespace management (ip netns, veth pairs)
+# iptables: bypass detection — LOG + REJECT rules for direct connection diagnostics
 # dnsutils: dig, nslookup
 # Python is managed entirely by uv (see devtools stage).
 RUN apt-get update && apt-get install -y --no-install-recommends \
@@ -28,6 +29,7 @@ RUN apt-get update && apt-get install -y --no-install-recommends \
         curl \
         dnsutils \
         iproute2 \
+        iptables \
         iputils-ping \
         net-tools \
         netcat-openbsd \