From ead4ec3089b97eda1b438da248caf76f169345ad Mon Sep 17 00:00:00 2001
From: netblue30 <netblue30@yahoo.com>
Date: Sat, 18 Nov 2017 08:39:02 -0500
Subject: netfilter template support

---
 src/man/firejail.txt | 23 +++++++++++++++++++++--
 1 file changed, 21 insertions(+), 2 deletions(-)

(limited to 'src/man/firejail.txt')

diff --git a/src/man/firejail.txt b/src/man/firejail.txt
index bf27c07ad..d9000fd5e 100644
--- a/src/man/firejail.txt
+++ b/src/man/firejail.txt
@@ -937,13 +937,32 @@ is a desktop client firewall that disable access to local network. Example:
 $ firejail --netfilter=/etc/firejail/nolocal.net \\
 .br
 --net=eth0 firefox
+
+
+
+
+.TP
+\fB\-\-netfilter=filename,arg1,arg2,arg3 ...
+This is the template version of the previous command. $ARG1, $ARG2, $ARG3 ... in the firewall script
+are replaced with arg1, arg2, arg3 ... passed on the command line. Up to 16 arguments are supported.
+Example:
+.br
+
+.br
+$ firejail --net=eth0 --ip=192.168.1.105 \\
+.br
+--netfilter=/etc/firejail/tcpserver.net,5001 server-program
+.br
+
+
+
 .TP
 \fB\-\-netfilter.print=name|pid
 Print the firewall installed in the sandbox specified by name or PID. Example:
 .br
 
 .br
-$ firejail --net=browser --net=eth0 --netfilter firefox &
+$ firejail --name=browser --net=eth0 --netfilter firefox &
 .br
 $ firejail --netfilter.print=browser
 
@@ -959,7 +978,7 @@ Print the IPv6 firewall installed in the sandbox specified by name or PID. Examp
 .br
 
 .br
-$ firejail --net=browser --net=eth0 --netfilter firefox &
+$ firejail --name=browser --net=eth0 --netfilter firefox &
 .br
 $ firejail --netfilter6.print=browser
 
-- 
cgit v1.2.3-70-g09d2