Routing Rules

Search installed GeoSite and GeoIP records and attach matching chips. If no assets exist yet, the tab shows compact asset setup with Add Predefined.

Add Base, Full, Plain, or RegEx domain entries. Commas and new lines can add multiple entries.

Add destination IP addresses or CIDR ranges. Use this when a destination is better known by network address than by name.

Add destination ports one value at a time. Use this for a known service port; split any range into the exact ports you want Tunna to match.

Toggle TCP or UDP under Transport Layer, and HTTP, TLS, or BT under Application Layer when Sniffing can identify the traffic.

Configure a webhook URL, Deduplication, and optional Headers for match notifications or automation.

Create a New Rule or paste routing material. Paste accepts shared rule links, ordinary subscription URLs, and pasted rule data, then opens Resources for review when Tunna has importable items to show.

When the Default Route is Proxy, a new rule starts as Freedom so you can carve out direct traffic. When the Default Route is Freedom or Blackhole, a new rule starts as Proxy.

When no rules exist, use the pencil control to create the first rule or the clipboard control to process the current pasteboard.

Swipe a rule from the leading edge to Pause or Unpause it. Swipe from the trailing edge to Share or Delete it.

Reordering saves the new priority immediately. The first matching unpaused rule wins.

Add appears for a new rule and Save appears after the rule has been saved once. The button stays disabled until the rule has at least one real condition.

Delete is available only for a saved rule and removes it from the Rule Set.

QR Code is available only for a saved rule and opens a QR share sheet for the rule link.

Share is available only for a saved rule. Shared rule links may include asset source information so another device can review missing records in Resources.

Pause, or Resume for a paused rule, is available only after saving. It saves the changed state immediately and closes Rule Edit.

Use provider-maintained GeoSite or GeoIP records instead of typing every destination. Tap a found chip to attach it. Tap an attached chip once to mark it excluded from this rule, and tap it again to include it again. GeoSite and GeoIP colors match the footer legend.

Match a site family, exact hostname, keyword, or pattern. Prefer Base or Full for ordinary website rules because they are easier to reason about and more useful for On-Demand.

Match network ranges or destination ports when a domain is not enough. The Port field currently accepts single integer ports.

Toggle TCP or UDP when the transport layer matters. This does not require Sniffing.

Toggle HTTP, TLS, or BT after Sniffing can identify the traffic. BT matching is only a clue; encrypted or disguised traffic may not be recognized. QUIC can be detected by Sniffing, but it is not a separate rule protocol choice.

Use URL for the webhook target, Deduplication to avoid repeated notifications for the same match, and Headers when the receiving service requires named header values.

Reorder rules when a narrow rule must win before a broad one.

Disable a rule temporarily without deleting it.

Share from the list swipe action or from a saved rule editor. Shared rules are Tunna import links and may carry asset source information so Resources can fetch missing records.

Paste accepts shared rule links, ordinary subscription URLs, and pasted rule data, then opens Resources for review when Tunna has importable items to show.

Remove a rule after you are sure it is no longer needed.