render

Idk why it reordered tags…

content/masquerade-with-filter.rst

@@ -0,0 +1,26 @@
+Only NAT packets you can deliver responses for
+@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
+
+:slug: masquerade-with-filter
+:date: 2024-05-08
+:tags: linux
+:category: til
+:keywords: nat, nftables, network
+:lang: en
+:translation: false
+:status: published
+
+When setting up a masquerading nat, it is worth considering masquerading only
+packets from known networks. That is, instead of rule like ``iifname eth-inside
+masquerade`` use something like ``iifname eth-inside ip saddr 198.51.100.0/24
+masquerade``.
+
+I learned the hard way: my laptop in a masqueraded network picked a wrong
+source address from a subnet the router had no knowledge about. The outbound
+packets passed through right, but the responses came in, undergone translation,
+and since the destination was unknown to the router, it used the *default*
+route, sending the packet back to the ISP.
+
+The result: IDS triggered by *many* packets from my router with source IP
+addresses from all around the Internet, all with destination to my private
+address. (The ISP was not happy about that.)

output/about-blog.html

@@ -36,9 +36,9 @@
 
 	<h2>Tags</h2>
 	<ul>
+	<li><a href="./tag/linux.html">linux</a></li>
 	<li><a href="./tag/lifehack.html">lifehack</a></li>
 	<li><a href="./tag/software.html">software</a></li>
-	<li><a href="./tag/linux.html">linux</a></li>
 	<li><a href="./tag/relationships.html">relationships</a></li>
 	<li><a href="./tag/identity.html">identity</a></li>
 	<li><a href="./tag/print.html">print</a></li>

output/archives.html

@@ -36,9 +36,9 @@
 
 	<h2>Tags</h2>
 	<ul>
+	<li><a href="./tag/linux.html">linux</a></li>
 	<li><a href="./tag/lifehack.html">lifehack</a></li>
 	<li><a href="./tag/software.html">software</a></li>
-	<li><a href="./tag/linux.html">linux</a></li>
 	<li><a href="./tag/relationships.html">relationships</a></li>
 	<li><a href="./tag/identity.html">identity</a></li>
 	<li><a href="./tag/print.html">print</a></li>
@@ -63,7 +63,8 @@
 <main>
 	<div>
 <h1>Archive</h1>
-<ul> <li><a href="./custom-xkb-tweaks.html">Creating own XKB tweaks</a>
+<ul> <li><a href="./masquerade-with-filter.html">Only NAT packets you can deliver responses for</a>
+<li><a href="./custom-xkb-tweaks.html">Creating own XKB tweaks</a>
 <li><a href="./do-not-gossip-identities.html">You sure you want to hear the gossip?</a>
 <li><a href="./mobius-print.html">Print your stuff on Möbius bands!</a>
 <li><a href="./cbz-to-pdf.html">How to convert CBZ to PDF</a>

output/categories.html

@@ -36,9 +36,9 @@
 
 	<h2>Tags</h2>
 	<ul>
+	<li><a href="./tag/linux.html">linux</a></li>
 	<li><a href="./tag/lifehack.html">lifehack</a></li>
 	<li><a href="./tag/software.html">software</a></li>
-	<li><a href="./tag/linux.html">linux</a></li>
 	<li><a href="./tag/relationships.html">relationships</a></li>
 	<li><a href="./tag/identity.html">identity</a></li>
 	<li><a href="./tag/print.html">print</a></li>

output/category/networking.html

@@ -36,9 +36,9 @@
 
 	<h2>Tags</h2>
 	<ul>
+	<li><a href="../tag/linux.html">linux</a></li>
 	<li><a href="../tag/lifehack.html">lifehack</a></li>
 	<li><a href="../tag/software.html">software</a></li>
-	<li><a href="../tag/linux.html">linux</a></li>
 	<li><a href="../tag/relationships.html">relationships</a></li>
 	<li><a href="../tag/identity.html">identity</a></li>
 	<li><a href="../tag/print.html">print</a></li>

output/category/queer.html

@@ -36,9 +36,9 @@
 
 	<h2>Tags</h2>
 	<ul>
+	<li><a href="../tag/linux.html">linux</a></li>
 	<li><a href="../tag/lifehack.html">lifehack</a></li>
 	<li><a href="../tag/software.html">software</a></li>
-	<li><a href="../tag/linux.html">linux</a></li>
 	<li><a href="../tag/relationships.html">relationships</a></li>
 	<li><a href="../tag/identity.html">identity</a></li>
 	<li><a href="../tag/print.html">print</a></li>

output/category/talks.html

@@ -36,9 +36,9 @@
 
 	<h2>Tags</h2>
 	<ul>
+	<li><a href="../tag/linux.html">linux</a></li>
 	<li><a href="../tag/lifehack.html">lifehack</a></li>
 	<li><a href="../tag/software.html">software</a></li>
-	<li><a href="../tag/linux.html">linux</a></li>
 	<li><a href="../tag/relationships.html">relationships</a></li>
 	<li><a href="../tag/identity.html">identity</a></li>
 	<li><a href="../tag/print.html">print</a></li>

output/category/technology.html

@@ -36,9 +36,9 @@
 
 	<h2>Tags</h2>
 	<ul>
+	<li><a href="../tag/linux.html">linux</a></li>
 	<li><a href="../tag/lifehack.html">lifehack</a></li>
 	<li><a href="../tag/software.html">software</a></li>
-	<li><a href="../tag/linux.html">linux</a></li>
 	<li><a href="../tag/relationships.html">relationships</a></li>
 	<li><a href="../tag/identity.html">identity</a></li>
 	<li><a href="../tag/print.html">print</a></li>

output/category/til.html

@@ -36,9 +36,9 @@
 
 	<h2>Tags</h2>
 	<ul>
+	<li><a href="../tag/linux.html">linux</a></li>
 	<li><a href="../tag/lifehack.html">lifehack</a></li>
 	<li><a href="../tag/software.html">software</a></li>
-	<li><a href="../tag/linux.html">linux</a></li>
 	<li><a href="../tag/relationships.html">relationships</a></li>
 	<li><a href="../tag/identity.html">identity</a></li>
 	<li><a href="../tag/print.html">print</a></li>
@@ -63,7 +63,8 @@
 <main>
 	<div>
 <h1>Category: til</h1>
-<ul> <li><a href="../cbz-to-pdf.html">How to convert CBZ to PDF</a>
+<ul> <li><a href="../masquerade-with-filter.html">Only NAT packets you can deliver responses for</a>
+<li><a href="../cbz-to-pdf.html">How to convert CBZ to PDF</a>
 </ul>
 	</div>
 </main>

output/cbz-to-pdf.html

@@ -36,9 +36,9 @@
 
 	<h2>Tags</h2>
 	<ul>
+	<li><a href="./tag/linux.html">linux</a></li>
 	<li><a href="./tag/lifehack.html">lifehack</a></li>
 	<li><a href="./tag/software.html">software</a></li>
-	<li><a href="./tag/linux.html">linux</a></li>
 	<li><a href="./tag/relationships.html">relationships</a></li>
 	<li><a href="./tag/identity.html">identity</a></li>
 	<li><a href="./tag/print.html">print</a></li>

output/custom-xkb-tweaks.html

@@ -36,9 +36,9 @@
 
 	<h2>Tags</h2>
 	<ul>
+	<li><a href="./tag/linux.html">linux</a></li>
 	<li><a href="./tag/lifehack.html">lifehack</a></li>
 	<li><a href="./tag/software.html">software</a></li>
-	<li><a href="./tag/linux.html">linux</a></li>
 	<li><a href="./tag/relationships.html">relationships</a></li>
 	<li><a href="./tag/identity.html">identity</a></li>
 	<li><a href="./tag/print.html">print</a></li>

output/do-not-gossip-identities.html

@@ -36,9 +36,9 @@
 
 	<h2>Tags</h2>
 	<ul>
+	<li><a href="./tag/linux.html">linux</a></li>
 	<li><a href="./tag/lifehack.html">lifehack</a></li>
 	<li><a href="./tag/software.html">software</a></li>
-	<li><a href="./tag/linux.html">linux</a></li>
 	<li><a href="./tag/relationships.html">relationships</a></li>
 	<li><a href="./tag/identity.html">identity</a></li>
 	<li><a href="./tag/print.html">print</a></li>

output/drafts.html

@@ -36,9 +36,9 @@
 
 	<h2>Tags</h2>
 	<ul>
+	<li><a href="./tag/linux.html">linux</a></li>
 	<li><a href="./tag/lifehack.html">lifehack</a></li>
 	<li><a href="./tag/software.html">software</a></li>
-	<li><a href="./tag/linux.html">linux</a></li>
 	<li><a href="./tag/relationships.html">relationships</a></li>
 	<li><a href="./tag/identity.html">identity</a></li>
 	<li><a href="./tag/print.html">print</a></li>

output/drafts/ucw-keymap-on-wayland.html

@@ -36,9 +36,9 @@
 
 	<h2>Tags</h2>
 	<ul>
+	<li><a href="../tag/linux.html">linux</a></li>
 	<li><a href="../tag/lifehack.html">lifehack</a></li>
 	<li><a href="../tag/software.html">software</a></li>
-	<li><a href="../tag/linux.html">linux</a></li>
 	<li><a href="../tag/relationships.html">relationships</a></li>
 	<li><a href="../tag/identity.html">identity</a></li>
 	<li><a href="../tag/print.html">print</a></li>

output/feeds/all.atom.xml

@@ -1,5 +1,21 @@
 <?xml version="1.0" encoding="utf-8"?>
-<feed xmlns="http://www.w3.org/2005/Atom"><title>LEdoian's Blog</title><link href="https://blog.ledoian.cz/" rel="alternate"></link><link href="https://blog.ledoian.cz/feeds/all.atom.xml" rel="self"></link><id>https://blog.ledoian.cz/</id><updated>2024-04-17T15:18:00+02:00</updated><entry><title>Creating own XKB tweaks</title><link href="https://blog.ledoian.cz/custom-xkb-tweaks.html" rel="alternate"></link><published>2024-04-17T15:18:00+02:00</published><updated>2024-04-17T15:18:00+02:00</updated><author><name>LEdoian</name></author><id>tag:blog.ledoian.cz,2024-04-17:/custom-xkb-tweaks.html</id><summary type="html">&lt;p&gt;Debugging this took me a bit too long, so I want to write about the caveat.&lt;/p&gt;
+<feed xmlns="http://www.w3.org/2005/Atom"><title>LEdoian's Blog</title><link href="https://blog.ledoian.cz/" rel="alternate"></link><link href="https://blog.ledoian.cz/feeds/all.atom.xml" rel="self"></link><id>https://blog.ledoian.cz/</id><updated>2024-05-08T00:00:00+02:00</updated><entry><title>Only NAT packets you can deliver responses for</title><link href="https://blog.ledoian.cz/masquerade-with-filter.html" rel="alternate"></link><published>2024-05-08T00:00:00+02:00</published><updated>2024-05-08T00:00:00+02:00</updated><author><name>LEdoian</name></author><id>tag:blog.ledoian.cz,2024-05-08:/masquerade-with-filter.html</id><summary type="html">&lt;p&gt;When setting up a masquerading nat, it is worth considering masquerading only
+packets from known networks. That is, instead of rule like &lt;tt class="docutils literal"&gt;iifname &lt;span class="pre"&gt;eth-inside&lt;/span&gt;
+masquerade&lt;/tt&gt; use something like &lt;tt class="docutils literal"&gt;iifname &lt;span class="pre"&gt;eth-inside&lt;/span&gt; ip saddr 198.51.100.0/24
+masquerade&lt;/tt&gt;.&lt;/p&gt;
+&lt;p&gt;I learned the hard way: my laptop in a masqueraded network picked …&lt;/p&gt;</summary><content type="html">&lt;p&gt;When setting up a masquerading nat, it is worth considering masquerading only
+packets from known networks. That is, instead of rule like &lt;tt class="docutils literal"&gt;iifname &lt;span class="pre"&gt;eth-inside&lt;/span&gt;
+masquerade&lt;/tt&gt; use something like &lt;tt class="docutils literal"&gt;iifname &lt;span class="pre"&gt;eth-inside&lt;/span&gt; ip saddr 198.51.100.0/24
+masquerade&lt;/tt&gt;.&lt;/p&gt;
+&lt;p&gt;I learned the hard way: my laptop in a masqueraded network picked a wrong
+source address from a subnet the router had no knowledge about. The outbound
+packets passed through right, but the responses came in, undergone translation,
+and since the destination was unknown to the router, it used the &lt;em&gt;default&lt;/em&gt;
+route, sending the packet back to the ISP.&lt;/p&gt;
+&lt;p&gt;The result: IDS triggered by &lt;em&gt;many&lt;/em&gt; packets from my router with source IP
+addresses from all around the Internet, all with destination to my private
+address. (The ISP was not happy about that.)&lt;/p&gt;
+</content><category term="til"></category><category term="linux"></category></entry><entry><title>Creating own XKB tweaks</title><link href="https://blog.ledoian.cz/custom-xkb-tweaks.html" rel="alternate"></link><published>2024-04-17T16:40:00+02:00</published><updated>2024-04-17T16:40:00+02:00</updated><author><name>LEdoian</name></author><id>tag:blog.ledoian.cz,2024-04-17:/custom-xkb-tweaks.html</id><summary type="html">&lt;p&gt;Debugging this took me a bit too long, so I want to write about the caveat.&lt;/p&gt;
 &lt;p&gt;My problem: My laptop does not have PageUp and PageDown keys, and many other
 keyboards I use have similar deficiencies. And I use various environments and
 various systems, some of which are shared with …&lt;/p&gt;</summary><content type="html">&lt;p&gt;Debugging this took me a bit too long, so I want to write about the caveat.&lt;/p&gt;

output/feeds/technology.atom.xml

@@ -1,5 +1,5 @@
 <?xml version="1.0" encoding="utf-8"?>
-<feed xmlns="http://www.w3.org/2005/Atom"><title>LEdoian's Blog - technology</title><link href="https://blog.ledoian.cz/" rel="alternate"></link><link href="https://blog.ledoian.cz/feeds/technology.atom.xml" rel="self"></link><id>https://blog.ledoian.cz/</id><updated>2024-04-17T15:18:00+02:00</updated><entry><title>Creating own XKB tweaks</title><link href="https://blog.ledoian.cz/custom-xkb-tweaks.html" rel="alternate"></link><published>2024-04-17T15:18:00+02:00</published><updated>2024-04-17T15:18:00+02:00</updated><author><name>LEdoian</name></author><id>tag:blog.ledoian.cz,2024-04-17:/custom-xkb-tweaks.html</id><summary type="html">&lt;p&gt;Debugging this took me a bit too long, so I want to write about the caveat.&lt;/p&gt;
+<feed xmlns="http://www.w3.org/2005/Atom"><title>LEdoian's Blog - technology</title><link href="https://blog.ledoian.cz/" rel="alternate"></link><link href="https://blog.ledoian.cz/feeds/technology.atom.xml" rel="self"></link><id>https://blog.ledoian.cz/</id><updated>2024-04-17T16:40:00+02:00</updated><entry><title>Creating own XKB tweaks</title><link href="https://blog.ledoian.cz/custom-xkb-tweaks.html" rel="alternate"></link><published>2024-04-17T16:40:00+02:00</published><updated>2024-04-17T16:40:00+02:00</updated><author><name>LEdoian</name></author><id>tag:blog.ledoian.cz,2024-04-17:/custom-xkb-tweaks.html</id><summary type="html">&lt;p&gt;Debugging this took me a bit too long, so I want to write about the caveat.&lt;/p&gt;
 &lt;p&gt;My problem: My laptop does not have PageUp and PageDown keys, and many other
 keyboards I use have similar deficiencies. And I use various environments and
 various systems, some of which are shared with …&lt;/p&gt;</summary><content type="html">&lt;p&gt;Debugging this took me a bit too long, so I want to write about the caveat.&lt;/p&gt;

output/feeds/til.atom.xml

@@ -1,5 +1,21 @@
 <?xml version="1.0" encoding="utf-8"?>
-<feed xmlns="http://www.w3.org/2005/Atom"><title>LEdoian's Blog - til</title><link href="https://blog.ledoian.cz/" rel="alternate"></link><link href="https://blog.ledoian.cz/feeds/til.atom.xml" rel="self"></link><id>https://blog.ledoian.cz/</id><updated>2024-02-17T16:55:00+01:00</updated><entry><title>How to convert CBZ to PDF</title><link href="https://blog.ledoian.cz/cbz-to-pdf.html" rel="alternate"></link><published>2024-02-17T16:55:00+01:00</published><updated>2024-02-17T16:55:00+01:00</updated><author><name>LEdoian</name></author><id>tag:blog.ledoian.cz,2024-02-17:/cbz-to-pdf.html</id><summary type="html">&lt;ol class="arabic simple"&gt;
+<feed xmlns="http://www.w3.org/2005/Atom"><title>LEdoian's Blog - til</title><link href="https://blog.ledoian.cz/" rel="alternate"></link><link href="https://blog.ledoian.cz/feeds/til.atom.xml" rel="self"></link><id>https://blog.ledoian.cz/</id><updated>2024-05-08T00:00:00+02:00</updated><entry><title>Only NAT packets you can deliver responses for</title><link href="https://blog.ledoian.cz/masquerade-with-filter.html" rel="alternate"></link><published>2024-05-08T00:00:00+02:00</published><updated>2024-05-08T00:00:00+02:00</updated><author><name>LEdoian</name></author><id>tag:blog.ledoian.cz,2024-05-08:/masquerade-with-filter.html</id><summary type="html">&lt;p&gt;When setting up a masquerading nat, it is worth considering masquerading only
+packets from known networks. That is, instead of rule like &lt;tt class="docutils literal"&gt;iifname &lt;span class="pre"&gt;eth-inside&lt;/span&gt;
+masquerade&lt;/tt&gt; use something like &lt;tt class="docutils literal"&gt;iifname &lt;span class="pre"&gt;eth-inside&lt;/span&gt; ip saddr 198.51.100.0/24
+masquerade&lt;/tt&gt;.&lt;/p&gt;
+&lt;p&gt;I learned the hard way: my laptop in a masqueraded network picked …&lt;/p&gt;</summary><content type="html">&lt;p&gt;When setting up a masquerading nat, it is worth considering masquerading only
+packets from known networks. That is, instead of rule like &lt;tt class="docutils literal"&gt;iifname &lt;span class="pre"&gt;eth-inside&lt;/span&gt;
+masquerade&lt;/tt&gt; use something like &lt;tt class="docutils literal"&gt;iifname &lt;span class="pre"&gt;eth-inside&lt;/span&gt; ip saddr 198.51.100.0/24
+masquerade&lt;/tt&gt;.&lt;/p&gt;
+&lt;p&gt;I learned the hard way: my laptop in a masqueraded network picked a wrong
+source address from a subnet the router had no knowledge about. The outbound
+packets passed through right, but the responses came in, undergone translation,
+and since the destination was unknown to the router, it used the &lt;em&gt;default&lt;/em&gt;
+route, sending the packet back to the ISP.&lt;/p&gt;
+&lt;p&gt;The result: IDS triggered by &lt;em&gt;many&lt;/em&gt; packets from my router with source IP
+addresses from all around the Internet, all with destination to my private
+address. (The ISP was not happy about that.)&lt;/p&gt;
+</content><category term="til"></category><category term="linux"></category></entry><entry><title>How to convert CBZ to PDF</title><link href="https://blog.ledoian.cz/cbz-to-pdf.html" rel="alternate"></link><published>2024-02-17T16:55:00+01:00</published><updated>2024-02-17T16:55:00+01:00</updated><author><name>LEdoian</name></author><id>tag:blog.ledoian.cz,2024-02-17:/cbz-to-pdf.html</id><summary type="html">&lt;ol class="arabic simple"&gt;
 &lt;li&gt;Extract the archive (cbz is just a zip, cbr is a rar, …)&lt;/li&gt;
 &lt;li&gt;&lt;dl class="first docutils"&gt;
 &lt;dt&gt;Convert individual pictures to PDF using &lt;tt class="docutils literal"&gt;img2pdf&lt;/tt&gt;&lt;/dt&gt;

output/forgetting-dns6.html

@@ -36,9 +36,9 @@
 
 	<h2>Tags</h2>
 	<ul>
+	<li><a href="./tag/linux.html">linux</a></li>
 	<li><a href="./tag/lifehack.html">lifehack</a></li>
 	<li><a href="./tag/software.html">software</a></li>
-	<li><a href="./tag/linux.html">linux</a></li>
 	<li><a href="./tag/relationships.html">relationships</a></li>
 	<li><a href="./tag/identity.html">identity</a></li>
 	<li><a href="./tag/print.html">print</a></li>

output/index.html

@@ -36,9 +36,9 @@
 
 	<h2>Tags</h2>
 	<ul>
+	<li><a href="./tag/linux.html">linux</a></li>
 	<li><a href="./tag/lifehack.html">lifehack</a></li>
 	<li><a href="./tag/software.html">software</a></li>
-	<li><a href="./tag/linux.html">linux</a></li>
 	<li><a href="./tag/relationships.html">relationships</a></li>
 	<li><a href="./tag/identity.html">identity</a></li>
 	<li><a href="./tag/print.html">print</a></li>

output/masquerade-with-filter.html

@@ -0,0 +1,89 @@
+<!doctype html>
+<html>
+<head>
+	<meta charset=utf-8>
+	<meta name=generator content="Pelican 4.9.1">
+	<meta name=author content="LEdoian">
+	<meta name=description content="My personal webpage">
+	<meta name=referrer content=no-referrer>
+
+
+	<link rel=stylesheet href="./theme/css/theme.css">
+
+	<title>Only NAT packets you can deliver responses for – LEdoian's Blog</title>
+</head>
+<body>
+
+<header>
+<h1>LEdoian's Blog</h1>
+</header>
+
+<div id=main>
+<nav>
+<div>
+	<!-- Main navigation -->
+	<!-- TODO! -->
+</div>
+<div>
+	<h2>Categories</h2>
+	<ul>
+	<li><a href="./category/networking.html">networking</a></li>
+	<li><a href="./category/queer.html">queer</a></li>
+	<li><a href="./category/talks.html">talks</a></li>
+	<li><a href="./category/technology.html">technology</a></li>
+	<li><a href="./category/til.html">til</a></li>
+	</ul>
+
+	<h2>Tags</h2>
+	<ul>
+	<li><a href="./tag/linux.html">linux</a></li>
+	<li><a href="./tag/lifehack.html">lifehack</a></li>
+	<li><a href="./tag/software.html">software</a></li>
+	<li><a href="./tag/relationships.html">relationships</a></li>
+	<li><a href="./tag/identity.html">identity</a></li>
+	<li><a href="./tag/print.html">print</a></li>
+	<li><a href="./tag/comics.html">comics</a></li>
+	<li><a href="./tag/ipv6-only.html">ipv6-only</a></li>
+	<li><a href="./tag/dns.html">dns</a></li>
+	<li><a href="./tag/meta.html">meta</a></li>
+	<li><a href="./tag/infrastructure.html">infrastructure</a></li>
+	<li><a href="./tag/smrst.html">smršť</a></li>
+	<li><a href="./tag/trains.html">trains</a></li>
+	<li><a href="./tag/software-engineering.html">software-engineering</a></li>
+	</ul>
+</div>
+<div>
+	<h2>Stalk me also at</h2>
+	TODO!
+
+	<h2>I stalk</h2>
+	TODO!
+</nav>
+
+<main>
+	<div>
+<h1>Only NAT packets you can deliver responses for</h1>
+<p>When setting up a masquerading nat, it is worth considering masquerading only
+packets from known networks. That is, instead of rule like <tt class="docutils literal">iifname <span class="pre">eth-inside</span>
+masquerade</tt> use something like <tt class="docutils literal">iifname <span class="pre">eth-inside</span> ip saddr 198.51.100.0/24
+masquerade</tt>.</p>
+<p>I learned the hard way: my laptop in a masqueraded network picked a wrong
+source address from a subnet the router had no knowledge about. The outbound
+packets passed through right, but the responses came in, undergone translation,
+and since the destination was unknown to the router, it used the <em>default</em>
+route, sending the packet back to the ISP.</p>
+<p>The result: IDS triggered by <em>many</em> packets from my router with source IP
+addresses from all around the Internet, all with destination to my private
+address. (The ISP was not happy about that.)</p>
+
+	</div>
+</main>
+</div> <!-- #main -->
+
+<footer>
+<hr>
+Written using Pelican 4.9.1 by LEdoian.
+</footer>
+
+</body>
+</html>

output/mobius-print.html

@@ -36,9 +36,9 @@
 
 	<h2>Tags</h2>
 	<ul>
+	<li><a href="./tag/linux.html">linux</a></li>
 	<li><a href="./tag/lifehack.html">lifehack</a></li>
 	<li><a href="./tag/software.html">software</a></li>
-	<li><a href="./tag/linux.html">linux</a></li>
 	<li><a href="./tag/relationships.html">relationships</a></li>
 	<li><a href="./tag/identity.html">identity</a></li>
 	<li><a href="./tag/print.html">print</a></li>

output/smrst2023-cs.html

@@ -36,9 +36,9 @@
 
 	<h2>Tags</h2>
 	<ul>
+	<li><a href="./tag/linux.html">linux</a></li>
 	<li><a href="./tag/lifehack.html">lifehack</a></li>
 	<li><a href="./tag/software.html">software</a></li>
-	<li><a href="./tag/linux.html">linux</a></li>
 	<li><a href="./tag/relationships.html">relationships</a></li>
 	<li><a href="./tag/identity.html">identity</a></li>
 	<li><a href="./tag/print.html">print</a></li>

output/tag/comics.html

@@ -36,9 +36,9 @@
 
 	<h2>Tags</h2>
 	<ul>
+	<li><a href="../tag/linux.html">linux</a></li>
 	<li><a href="../tag/lifehack.html">lifehack</a></li>
 	<li><a href="../tag/software.html">software</a></li>
-	<li><a href="../tag/linux.html">linux</a></li>
 	<li><a href="../tag/relationships.html">relationships</a></li>
 	<li><a href="../tag/identity.html">identity</a></li>
 	<li><a href="../tag/print.html">print</a></li>

output/tag/dns.html

@@ -36,9 +36,9 @@
 
 	<h2>Tags</h2>
 	<ul>
+	<li><a href="../tag/linux.html">linux</a></li>
 	<li><a href="../tag/lifehack.html">lifehack</a></li>
 	<li><a href="../tag/software.html">software</a></li>
-	<li><a href="../tag/linux.html">linux</a></li>
 	<li><a href="../tag/relationships.html">relationships</a></li>
 	<li><a href="../tag/identity.html">identity</a></li>
 	<li><a href="../tag/print.html">print</a></li>

output/tag/identity.html

@@ -36,9 +36,9 @@
 
 	<h2>Tags</h2>
 	<ul>
+	<li><a href="../tag/linux.html">linux</a></li>
 	<li><a href="../tag/lifehack.html">lifehack</a></li>
 	<li><a href="../tag/software.html">software</a></li>
-	<li><a href="../tag/linux.html">linux</a></li>
 	<li><a href="../tag/relationships.html">relationships</a></li>
 	<li><a href="../tag/identity.html">identity</a></li>
 	<li><a href="../tag/print.html">print</a></li>

output/tag/infrastructure.html

@@ -36,9 +36,9 @@
 
 	<h2>Tags</h2>
 	<ul>
+	<li><a href="../tag/linux.html">linux</a></li>
 	<li><a href="../tag/lifehack.html">lifehack</a></li>
 	<li><a href="../tag/software.html">software</a></li>
-	<li><a href="../tag/linux.html">linux</a></li>
 	<li><a href="../tag/relationships.html">relationships</a></li>
 	<li><a href="../tag/identity.html">identity</a></li>
 	<li><a href="../tag/print.html">print</a></li>

output/tag/ipv6-only.html

@@ -36,9 +36,9 @@
 
 	<h2>Tags</h2>
 	<ul>
+	<li><a href="../tag/linux.html">linux</a></li>
 	<li><a href="../tag/lifehack.html">lifehack</a></li>
 	<li><a href="../tag/software.html">software</a></li>
-	<li><a href="../tag/linux.html">linux</a></li>
 	<li><a href="../tag/relationships.html">relationships</a></li>
 	<li><a href="../tag/identity.html">identity</a></li>
 	<li><a href="../tag/print.html">print</a></li>

output/tag/lifehack.html

@@ -36,9 +36,9 @@
 
 	<h2>Tags</h2>
 	<ul>
+	<li><a href="../tag/linux.html">linux</a></li>
 	<li><a href="../tag/lifehack.html">lifehack</a></li>
 	<li><a href="../tag/software.html">software</a></li>
-	<li><a href="../tag/linux.html">linux</a></li>
 	<li><a href="../tag/relationships.html">relationships</a></li>
 	<li><a href="../tag/identity.html">identity</a></li>
 	<li><a href="../tag/print.html">print</a></li>

output/tag/linux.html

@@ -36,9 +36,9 @@
 
 	<h2>Tags</h2>
 	<ul>
+	<li><a href="../tag/linux.html">linux</a></li>
 	<li><a href="../tag/lifehack.html">lifehack</a></li>
 	<li><a href="../tag/software.html">software</a></li>
-	<li><a href="../tag/linux.html">linux</a></li>
 	<li><a href="../tag/relationships.html">relationships</a></li>
 	<li><a href="../tag/identity.html">identity</a></li>
 	<li><a href="../tag/print.html">print</a></li>
@@ -63,7 +63,8 @@
 <main>
 	<div>
 <h1>Articles tagged with linux</h1>
-<ul> <li><a href="../custom-xkb-tweaks.html">Creating own XKB tweaks</a>
+<ul> <li><a href="../masquerade-with-filter.html">Only NAT packets you can deliver responses for</a>
+<li><a href="../custom-xkb-tweaks.html">Creating own XKB tweaks</a>
 </ul>
 	</div>
 </main>

output/tag/meta.html

@@ -36,9 +36,9 @@
 
 	<h2>Tags</h2>
 	<ul>
+	<li><a href="../tag/linux.html">linux</a></li>
 	<li><a href="../tag/lifehack.html">lifehack</a></li>
 	<li><a href="../tag/software.html">software</a></li>
-	<li><a href="../tag/linux.html">linux</a></li>
 	<li><a href="../tag/relationships.html">relationships</a></li>
 	<li><a href="../tag/identity.html">identity</a></li>
 	<li><a href="../tag/print.html">print</a></li>

output/tag/print.html

@@ -36,9 +36,9 @@
 
 	<h2>Tags</h2>
 	<ul>
+	<li><a href="../tag/linux.html">linux</a></li>
 	<li><a href="../tag/lifehack.html">lifehack</a></li>
 	<li><a href="../tag/software.html">software</a></li>
-	<li><a href="../tag/linux.html">linux</a></li>
 	<li><a href="../tag/relationships.html">relationships</a></li>
 	<li><a href="../tag/identity.html">identity</a></li>
 	<li><a href="../tag/print.html">print</a></li>

output/tag/relationships.html

@@ -36,9 +36,9 @@
 
 	<h2>Tags</h2>
 	<ul>
+	<li><a href="../tag/linux.html">linux</a></li>
 	<li><a href="../tag/lifehack.html">lifehack</a></li>
 	<li><a href="../tag/software.html">software</a></li>
-	<li><a href="../tag/linux.html">linux</a></li>
 	<li><a href="../tag/relationships.html">relationships</a></li>
 	<li><a href="../tag/identity.html">identity</a></li>
 	<li><a href="../tag/print.html">print</a></li>

output/tag/smrst.html

@@ -36,9 +36,9 @@
 
 	<h2>Tags</h2>
 	<ul>
+	<li><a href="../tag/linux.html">linux</a></li>
 	<li><a href="../tag/lifehack.html">lifehack</a></li>
 	<li><a href="../tag/software.html">software</a></li>
-	<li><a href="../tag/linux.html">linux</a></li>
 	<li><a href="../tag/relationships.html">relationships</a></li>
 	<li><a href="../tag/identity.html">identity</a></li>
 	<li><a href="../tag/print.html">print</a></li>

output/tag/software-engineering.html

@@ -36,9 +36,9 @@
 
 	<h2>Tags</h2>
 	<ul>
+	<li><a href="../tag/linux.html">linux</a></li>
 	<li><a href="../tag/lifehack.html">lifehack</a></li>
 	<li><a href="../tag/software.html">software</a></li>
-	<li><a href="../tag/linux.html">linux</a></li>
 	<li><a href="../tag/relationships.html">relationships</a></li>
 	<li><a href="../tag/identity.html">identity</a></li>
 	<li><a href="../tag/print.html">print</a></li>

output/tag/software.html

@@ -36,9 +36,9 @@
 
 	<h2>Tags</h2>
 	<ul>
+	<li><a href="../tag/linux.html">linux</a></li>
 	<li><a href="../tag/lifehack.html">lifehack</a></li>
 	<li><a href="../tag/software.html">software</a></li>
-	<li><a href="../tag/linux.html">linux</a></li>
 	<li><a href="../tag/relationships.html">relationships</a></li>
 	<li><a href="../tag/identity.html">identity</a></li>
 	<li><a href="../tag/print.html">print</a></li>

output/tag/trains.html

@@ -36,9 +36,9 @@
 
 	<h2>Tags</h2>
 	<ul>
+	<li><a href="../tag/linux.html">linux</a></li>
 	<li><a href="../tag/lifehack.html">lifehack</a></li>
 	<li><a href="../tag/software.html">software</a></li>
-	<li><a href="../tag/linux.html">linux</a></li>
 	<li><a href="../tag/relationships.html">relationships</a></li>
 	<li><a href="../tag/identity.html">identity</a></li>
 	<li><a href="../tag/print.html">print</a></li>

output/tags.html

@@ -36,9 +36,9 @@
 
 	<h2>Tags</h2>
 	<ul>
+	<li><a href="./tag/linux.html">linux</a></li>
 	<li><a href="./tag/lifehack.html">lifehack</a></li>
 	<li><a href="./tag/software.html">software</a></li>
-	<li><a href="./tag/linux.html">linux</a></li>
 	<li><a href="./tag/relationships.html">relationships</a></li>
 	<li><a href="./tag/identity.html">identity</a></li>
 	<li><a href="./tag/print.html">print</a></li>