File:Firejail routed network.png

Summary
Screenshot of an xterm running in a xephyr window (started using firejail from the command line in parent desktop), in which a routed (veth-bridged) network namespace is in use (specified via the "--net=br" option). The command "ifconfig" is used to show details of the network inside the sandbox, "ip -brief -f inet address show up" outside. The parent desktop is GNOME 3.22.2 on X11. Commands to set up the bridge, and simple masqueraded (netlink) forwarding are shown also. Uploaded for use in a forthcoming mini-guide on X11 sandboxing (an addendum to Sakaki's EFI Install Guide).