man: clarify translate tools do not modify any state

Signed-off-by: Florian Westphal <fw@strlen.de>

diff --git a/iptables/xtables-nft.8 b/iptables/xtables-nft.8
index 9c223eda64c5e3b0e11bf1a8097d70b959f2a419..702bf95408a1ad4b18e3058beabf934187a51d2b 100644 (file)
--- a/iptables/xtables-nft.8
+++ b/iptables/xtables-nft.8
@@ -178,7 +178,14 @@ you would use:
        root@machine:~# iptables\-legacy\-save > myruleset # reads from x_tables
        root@machine:~# iptables\-nft\-restore myruleset   # writes to nf_tables
 .fi
+or
+.nf
+       root@machine:~# iptables\-legacy\-save | iptables-translate-restore | less
+.fi
 
+to see how rules would look like in the nft
+\fBnft(8)\fP
+syntax.
 
 .SH LIMITATIONS
 You should use \fBLinux kernel >= 4.17\fP.

diff --git a/iptables/xtables-translate.8 b/iptables/xtables-translate.8
index 1968239b9a13987940c3cd40b0ee550f4d4fc81a..c40f9f0297b5d691a20228097a6f2d7051765655 100644 (file)
--- a/iptables/xtables-translate.8
+++ b/iptables/xtables-translate.8
@@ -49,7 +49,8 @@ output the native \fBnftables(8)\fP syntax.
 The \fBiptables-restore-translate\fP tool reads a ruleset in the syntax
 produced by \fBiptables-save(8)\fP. Likewise, the
 \fBip6tables-restore-translate\fP tool reads one produced by
-\fBip6tables-save(8)\fP.
+\fBip6tables-save(8)\fP.  No ruleset modifications occur, these tools are
+text converters only.
 
 The \fBiptables-translate\fP reads a command line as if it was entered to
 \fBiptables(8)\fP, and \fBip6tables-translate\fP reads a command like as if it