firejail
Sandbox a regular shell session.
firejail firefox
Start Mozilla Firefox.
firejail --debug firefox
Debug Firefox sandbox.
firejail --private firefox
Start Firefox with a new, empty home directory.
firejail --net=none vlc
Start VLC in an unconnected network namespace.
firejail --net=eth0 firefox
Start Firefox in a new network namespace. An IP address is
assigned automatically.
firejail --net=br0 --ip=10.10.20.5 --net=br1 --net=br2
Start a shell session in a new network namespace and
connect it to br0, br1, and br2 host bridge devices. IP
addresses are assigned automatically for the interfaces
connected to br1 and b2
firejail --list
List all sandboxed processes.
