From b43791a97866ec6917135bc7ba80e5592d10b00c Mon Sep 17 00:00:00 2001
From: Vladimir Avtsenov <vladimir.lsk.cool@gmail.com>
Date: Sat, 24 Aug 2024 20:17:19 +0300
Subject: [PATCH] readme: update rules for routing

---
 README.md | 23 +++++++++++++++++++----
 1 file changed, 19 insertions(+), 4 deletions(-)

diff --git a/README.md b/README.md
index 2613010..44c4ea0 100644
--- a/README.md
+++ b/README.md
@@ -34,12 +34,27 @@ iptables -t nat -D PREROUTING -j ${KVAS2_NAME}_PREROUTING
 
 [2] Example
 ```bash
+KVAS2_NAME=KVAS2
 IPSET_TABLE=kvas2
 MARK=1
 TABLE=100
 INTERFACE=ovpn_br0
-iptables -t mangle -A PREROUTING -m set --match-set $IPSET_TABLE dst -j MARK --set-mark $MARK
-ip rule add fwmark $MARK table $TABLE
-ip route add default dev $INTERFACE table $TABLE
-iptables -t nat -A POSTROUTING -o $INTERFACE -j MASQUERADE
+
+# Создание правил
+iptables -t mangle -N ${KVAS2_NAME}_PREROUTING
+iptables -t nat -N ${KVAS2_NAME}_POSTROUTING
+iptables -t mangle -A ${KVAS2_NAME}_PREROUTING -m set --match-set ${IPSET_TABLE} dst -j MARK --set-mark ${MARK}
+iptables -t nat -A ${KVAS2_NAME}_POSTROUTING -o ${INTERFACE} -j MASQUERADE
+
+# Применение правил
+ip rule add fwmark ${MARK} table ${TABLE}
+ip route add default dev ${INTERFACE} table ${TABLE}
+iptables -t mangle -A PREROUTING -j ${KVAS2_NAME}_PREROUTING
+iptables -t nat -A POSTROUTING -j ${KVAS2_NAME}_POSTROUTING
+
+# Удаление правил
+ip rule del fwmark ${MARK} table ${TABLE}
+ip route del default dev ${INTERFACE} table ${TABLE}
+iptables -t mangle -D PREROUTING -j ${KVAS2_NAME}_PREROUTING
+iptables -t nat -D POSTROUTING -j ${KVAS2_NAME}_POSTROUTING
 ```