ip-rule

Display the routing policy database

$ ip rule

$ sudo ip rule add from all lookup [100]

$ sudo ip rule add from [192.168.1.0/24]

$ sudo ip rule add to [10.0.0.0/8]

$ sudo ip rule delete from [192.168.1.0/24]

$ sudo ip rule flush

$ ip rule save > [path/to/rules.dat]

$ sudo ip rule restore < [path/to/rules.dat]

ip rule [command] [options]

ip rule manages the routing policy database (RPDB), which controls how routing table lookups are performed. Rules define selectors (conditions) and actions (which table to consult) enabling policy-based routing.
Multiple routing tables can exist, each with different routes. Rules determine which table is consulted based on source address, destination, interface, firewall mark, and other criteria. This enables complex routing scenarios like multi-homing.

add [selector] [action]

Add a new rule

Remove a rule

Delete all rules

Output rules to stdout (for backup)

Restore rules from stdin

Match source address

Match destination address

Route table to use (number or name)

Rule priority (lower = higher priority)

Modifying rules requires root privileges. Rule changes are not persistent across reboots without additional configuration. Incorrect rules can break network connectivity.

Policy routing was introduced in Linux 2.2 as part of the advanced routing capabilities. The ip rule command in iproute2 provides management of these features.

ip(8), ip-route(8), ip-route-add(8)