List of all the parameters that can be used by routing rules:

PropertyDescription
action (drop | lookup | lookup-only-in-table | unreachable)

An action to take on the matching packet:

  • drop - silently drop the packet.
  • lookup - perform a lookup in routing tables.
  • lookup-only-in-table - perform lookup only in the specified routing table (see table parameter).
  • unreachable - generate ICMP unreachable message and send it back to the source.
chain (string)

Name of the chain where rules in the routing decision will be located. by default "user" is used, if chain is not specified. If chain name is set the same as one of the built in routing decision names, then user created rules are added right after that routing decision. For example, if chain="mangle", then any user created rule n this chain will be located right after the "mangle" decision.

comment (string)
disabled (yes | no)The disabled rule is not used.
dst-address()The destination address of the packet to match.
interface (string)Incoming interface to match.
min-prefix (integer [0..4294967295])

Routes from the routing table with specified prefix length is hidden to packets processed by routing rule.

Equivalent to Linux IP rule suppress_prefixlength . For example to suppress the default route in the routing decision set the value to 0.
routing-mark (string)Match specific routing mark.
src-address (string)The source address of the packet to match.
table (name)Name of the routing table to use for lookup.
  • No labels