DaTekShaman/clash-rules
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Refactor ensure_ip_rule function to remove duplicate ip rules and enforce route table entry

Browse Source
This commit is contained in:
DaTekShaman
2025-12-27 15:44:39 +03:00
parent f6524bfbad
commit 16ca0a11b6
1 changed files with 8 additions and 6 deletions
Download Patch File Download Diff File Expand all files Collapse all files

14
scripts/iptables-mihomo-setup.sh
View File

@@ -20,13 +20,15 @@ EXCLUDE_IFACES=("tun0" "wg0")
ipt() { iptables "$@"; }
ensure_ip_rule() {
# Route marked traffic to local via custom table (idempotent-ish)
ip rule list | grep -q "fwmark ${FW_MARK} lookup ${ROUTE_TABLE}" || \
ip rule add fwmark ${FW_MARK} lookup ${ROUTE_TABLE}
# Remove duplicates if any (doesn't error if absent)
while ip rule list | grep -q "fwmark ${FW_MARK} lookup ${ROUTE_TABLE}"; do
ip rule del fwmark ${FW_MARK} lookup ${ROUTE_TABLE} || true
done
# Route everything in that table to local loopback so TPROXY can catch it
ip route show table ${ROUTE_TABLE} | grep -q "^local 0.0.0.0/0 dev lo" || \
ip route add local 0.0.0.0/0 dev lo table ${ROUTE_TABLE}
ip rule add fwmark ${FW_MARK} lookup ${ROUTE_TABLE}
# Route table entry, forced
ip route replace local 0.0.0.0/0 dev lo table ${ROUTE_TABLE}
}
# ----------------------------