diff --git a/README.md b/README.md
index 047ae4e..9a2e3db 100644
--- a/README.md
+++ b/README.md
@@ -45,7 +45,7 @@ services:
     ports:
       - "21:21"
       - "20:20"
-      - "50000-50500:50000-50500"
+      - "21210-21220:21210-21220"
     volumes:
       - "/srv/ftps/auth:/auth"
       - "/srv/ftps/conf:/etc/proftpd/custom.conf.d:ro"
@@ -53,11 +53,20 @@ services:
       - "/etc/letsencrypt:/certs:ro"
     environment:
       - MASQUERADE=ftp.mydomain.com
+      - PASSIVEPORTS_START=21210
+      - PASSIVEPORTS_END=21220
+      - MAXCLIENTS=500
+      - MAXCLIENTSPERHOST=100      
       - TLS_CERT=/certs/live/ftp.mydomain.com/cert.pem
       - TLS_KEY=/certs/live/ftp.mydomain.com/privkey.pem
       - TLS_CHAIN=/certs/live/ftp.mydomain.com/chain.pem
 ```
 
+## passive ports
+
+If you want to change the passive ports range (which by default is 50000-50050), you can do so via environment variables (PASSIVEPORTS_START and PASSIVEPORTS_END).
+In any case, you also have to enable a matching range of exposed ports.
+
 ## notes
 
 Please note that you have to restart the container (or send sighup to proftpd) whenever the certificate is renewed.