Ideally I would like to:
• Have all ports that have no reason to be exposed otherwise limited to listening on the loopback
• Have all ports that should be externally accessible published on the host (UI and GraphQL from my understanding)
• For all externally accessible ports, have control over which IP these ports are listening