It would be nice for vyos to provide the option to manage rules in the kernel ip rule table.
set protocols rule[6] # from <PREFIX|ADDRESS>
set protocols rule[6] # to <PREFIX|ADDRESS>
set protocols rule[6] # tos <TOS>
set protocols rule[6] # fwmark <FWMARK[/MASK]>
set protocols rule[6] # iif <INTERFACE>
set protocols rule[6] # oif <INTERFACE>set protocols rule[6] # table <TABLE>
set protocols rule[6] # goto <#>
set protocols rule[6] # suppress_prefixlength <NUMBER>
The # could be used to set the rule preference, and this could be restricted somewhat to ensure that the automatically added/removed rules as part of the policy routes to occupy the rest of the rulespace.
The main use case (for me) of this would be to allow PBR routing for locally generated packets. (Some of my vyos installs learn a default gateway via OSPF over an IPSEC tunnel, but they need to ensure that the traffic for the tunnel route via the local gateway)
It's obviously possible to create these rules within /config/scripts/vyatta-postconfig-bootup.script but it would be nicer to have them in the main config.