Hi, I'm trying to block ALL fetches to local / internal IP addresses using a Ktor Client (with the Apache Engine). How would I go about this, also considering and protecting against redirects and DNS queries that resolve to local IPs? Context: low-code automation platform that allows users to connect to self-hosted instances. I don't want them to be able to access my k8s services by abusing these features.

IMHO you should solve this at the infrastructure level. Kubernetes has facilities for this I believe and they’re called NetworkPolicies

Hm, I'll look into that. Wouldn't that also affect regular, internal traffic to, say, my database? Or the SSO server? Surely that's a solved problem tho, thank you in any case!