flycasting your mcp's

rubys · May 1, 2025, 7:13pm

This now is possible with Release v0.3.114 · superfly/flyctl · GitHub

Start with the same Dockerfile as before:

FROM node:slim
COPY --from=flyio/flyctl flyctl /usr/bin
EXPOSE 8080
VOLUME /data
CMD [ "/usr/bin/flyctl", "mcp", "wrap", "--mcp=npx", "--", \
  "-f", "@modelcontextprotocol/server-filesystem", "/data/" ]

When you run fly lauch, add the --flycast parameter:

fly launch --flycast

This will ensure that your application isn’t accessible to the public internet. To access it, use flly mcp proxy as before, but reference the .flycast address:

{
  "mcpServers": {
    "filesystem": {
      "command": "/Users/rubys/.fly/bin/flyctl",
      "args": [
         "mcp",
         "proxy",
-        "--url=https://mcp.fly.dev/"
+        "--url=http://mcp.flycast:8080/"
       ]
    }
  }
}

Notes:

http instead of https
mcp.flycast instead of mcp.fly.dev (substitute your appname here)
port 8080 you are directly accessing the app

That’s it! You can still add --user and --password if you wish; but only people with access to your private network will be able to access your mcp.

Topic		Replies	Views
Running MCPs on and with fly.io Fresh Produce mcp	1	2167	April 23, 2025
Run private applications with Flycast Fresh Produce	14	1423	December 30, 2024
Accessing an external non public resource from your fly.io app	7	3034	January 31, 2023
Jack into your private network with WireGuard Fresh Produce	17	874	August 16, 2024
Confused about how to make an app only accessible through a private network Questions / Help	5	905	January 3, 2024

flycasting your mcp's

Related topics