diff options
Diffstat (limited to 'src/man/firejail.txt')
-rw-r--r-- | src/man/firejail.txt | 65 |
1 files changed, 64 insertions, 1 deletions
diff --git a/src/man/firejail.txt b/src/man/firejail.txt index 32ac07d72..4b1134686 100644 --- a/src/man/firejail.txt +++ b/src/man/firejail.txt | |||
@@ -567,6 +567,31 @@ If the corresponding interface doesn't have an IP address configured, this | |||
567 | option is enabled by default. | 567 | option is enabled by default. |
568 | 568 | ||
569 | .TP | 569 | .TP |
570 | \fB\-\-ip=dhcp | ||
571 | Acquire an IP address and default gateway for the last interface defined by a | ||
572 | \-\-net option, as well as set the DNS servers according to the DHCP response. | ||
573 | This option requires the ISC dhclient DHCP client to be installed and will start | ||
574 | it automatically inside the sandbox. | ||
575 | .br | ||
576 | |||
577 | .br | ||
578 | Example: | ||
579 | .br | ||
580 | $ firejail \-\-net=br0 \-\-ip=dhcp | ||
581 | .br | ||
582 | |||
583 | .br | ||
584 | This option should not be used in conjunction with the \-\-dns option if the | ||
585 | DHCP server is set to configure DNS servers for the clients, because the | ||
586 | manually specified DNS servers will be overwritten. | ||
587 | |||
588 | .br | ||
589 | The DHCP client will NOT release the DHCP lease when the sandbox terminates. | ||
590 | If your DHCP server requires leases to be explicitly released, consider running | ||
591 | a DHCP client and releasing the lease manually in conjunction with the | ||
592 | \-\-net=none option. | ||
593 | |||
594 | .TP | ||
570 | \fB\-\-ip6=address | 595 | \fB\-\-ip6=address |
571 | Assign IPv6 addresses to the last network interface defined by a \-\-net option. | 596 | Assign IPv6 addresses to the last network interface defined by a \-\-net option. |
572 | .br | 597 | .br |
@@ -579,6 +604,30 @@ $ firejail \-\-net=eth0 \-\-ip6=2001:0db8:0:f101::1/64 firefox | |||
579 | Note: you don't need this option if you obtain your ip6 address from router via SLAAC (your ip6 address and default route will be configured by kernel automatically). | 604 | Note: you don't need this option if you obtain your ip6 address from router via SLAAC (your ip6 address and default route will be configured by kernel automatically). |
580 | 605 | ||
581 | .TP | 606 | .TP |
607 | \fB\-\-ip6=dhcp | ||
608 | Acquire an IPv6 address and default gateway for the last interface defined by a | ||
609 | \-\-net option, as well as set the DNS servers according to the DHCP response. | ||
610 | This option requires the ISC dhclient DHCP client to be installed and will start | ||
611 | it automatically inside the sandbox. | ||
612 | .br | ||
613 | |||
614 | .br | ||
615 | Example: | ||
616 | .br | ||
617 | $ firejail \-\-net=br0 \-\-ip6=dhcp | ||
618 | .br | ||
619 | |||
620 | .br | ||
621 | This option should not be used in conjunction with the \-\-dns option if the | ||
622 | DHCP server is set to configure DNS servers for the clients, because the | ||
623 | manually specified DNS servers will be overwritten. | ||
624 | |||
625 | .br | ||
626 | The DHCP client will NOT release the DHCP lease when the sandbox terminates. | ||
627 | If your DHCP server requires leases to be explicitly released, consider running | ||
628 | a DHCP client and releasing the lease manually. | ||
629 | |||
630 | .TP | ||
582 | \fB\-\-iprange=address,address | 631 | \fB\-\-iprange=address,address |
583 | Assign an IP address in the provided range to the last network interface defined by a \-\-net option. A | 632 | Assign an IP address in the provided range to the last network interface defined by a \-\-net option. A |
584 | default gateway is assigned by default. | 633 | default gateway is assigned by default. |
@@ -2235,7 +2284,7 @@ $ firejail --tunnel firefox | |||
2235 | .br | 2284 | .br |
2236 | .TP | 2285 | .TP |
2237 | \fB\-\-version | 2286 | \fB\-\-version |
2238 | Print program version and exit. | 2287 | Print program version/compile time support and exit. |
2239 | .br | 2288 | .br |
2240 | 2289 | ||
2241 | .br | 2290 | .br |
@@ -2245,6 +2294,20 @@ $ firejail \-\-version | |||
2245 | .br | 2294 | .br |
2246 | firejail version 0.9.27 | 2295 | firejail version 0.9.27 |
2247 | 2296 | ||
2297 | Compile time support: | ||
2298 | - AppArmor support is enabled | ||
2299 | - AppImage support is enabled | ||
2300 | - chroot support is enabled | ||
2301 | - file and directory whitelisting support is enabled | ||
2302 | - file transfer support is enabled | ||
2303 | - firetunnel support is enabled | ||
2304 | - networking support is enabled | ||
2305 | - overlayfs support is enabled | ||
2306 | - private-home support is enabled | ||
2307 | - seccomp-bpf support is enabled | ||
2308 | - user namespace support is enabled | ||
2309 | - X11 sandboxing support is enabled | ||
2310 | .br | ||
2248 | .TP | 2311 | .TP |
2249 | \fB\-\-veth-name=name | 2312 | \fB\-\-veth-name=name |
2250 | Use this name for the interface connected to the bridge for --net=bridge_interface commands, | 2313 | Use this name for the interface connected to the bridge for --net=bridge_interface commands, |