1 files changed, 16 insertions, 14 deletions

diff --git a/network/ufw/README b/network/ufw/README
index 4202149da4..4bd36b3621 100644
--- a/network/ufw/README
+++ b/network/ufw/README
@@ -1,24 +1,26 @@
-Ufw (Uncomplicated Firewall) is program for managing a netfilter firewall. 
-It provides a command line interface and aims to be uncomplicated and easy 
-to use. It is not intended to provide a complete firewall functionality via
-its command interface, but provides an easy way to add or remove simple rules.
+Ufw (Uncomplicated Firewall) is program for managing a netfilter firewall.
+It provides a command line interface and aims to be uncomplicated and easy
+to use.
 
-To run ufw at boot you can add the following code to rc.local file:
+Add the following code to /etc/rc.local to start Ufw at boot time:
 
 if [ -x /lib/ufw/ufw-init ]; then
-/lib/ufw/ufw-init start
+  /lib/ufw/ufw-init start
 fi
 
-Rules can be added with ports, services or application names. To specify an 
-application you need a profile stored under /etc/ufw/applications.d directory.
+Ufw comes with a number of common application profiles.  Create additional
+application profiles under /etc/ufw/applications.d.  Each profile should
+contain a list of rules which include a title, description, and port(s) or
+port range.
 
-To add a profile create a app_name.INI file as the following:
+A custom application profile should look similar to this:
 
-[Samba]
-title=File/printer server for Unix
-description=Samba is a collection of programs that implements the SMB/CIFS protocol for unix systems.
+[Application]
+title=Application title
+description=A description for the application.
 ports=137,138/udp|139,445/tcp
 
-Then, for example you can run:
-ufw allow from xx.xx.xx.xx app samba
+Where xx.xx.xx.xx is the IP address of an external host, enable this
+application profile by executing the following as root:
 
+# ufw allow from xx.xx.xx.xx app Application