ref and move all rules to pref 401

ansible/migrate-pref-401.yaml

+---
+- hosts: wg
+  tasks:
+    - name: prepare
+      import_tasks: ./tasks/prepare.yaml
+    - name: post scripts
+      template:
+        src: scripts/{{item}}.sh.j2
+        dest: '{{ansible_user_dir}}/nextgen-network/scripts/{{item}}.sh'
+        mode: a+x
+      with_items:
+        - switch-rules-down
+        - switch-rules-up
+    - name: 'reload rules'
+      become: true
+      shell: |
+        {{ansible_user_dir}}/nextgen-network/scripts/switch-rules-down.sh
+        {{ansible_user_dir}}/nextgen-network/scripts/switch-rules-up.sh
+        {% for plan in routePlans %}
+        ip rule del pref 400 fwmark {{plan.destMark}} lookup {{plan.destMark}}
+        {% endfor %}

ansible/scripts/switch-rules-down.sh.j2

@@ -4,9 +4,10 @@ source {{ansible_user_dir}}/nextgen-network/scripts/utility.sh
 iptables -t mangle -F NEXTGEN_SWITCH
 iptables -t nat -F NEXTGEN_SWITCH
 
+ip rule | grep '^401:' | sed -r 's/^401:\s+//g;s/^/rule del pref 401 /g' | ip -batch -
+
 ## restore mark
 {% for plan in routePlans %}
-ip rule del pref 400 fwmark {{plan.destMark}} lookup {{plan.destMark}}
 restore_mark_switch -D {{plan.destMark}}
 restore_mark_switch -D {{plan.destMark}}
 {% endfor %}

ansible/scripts/switch-rules-up.sh.j2

@@ -4,7 +4,7 @@ source {{ansible_user_dir}}/nextgen-network/scripts/utility.sh
 
 ## route plans
 {% for plan in routePlans %}
-ip rule add pref 400 fwmark {{plan.destMark}} lookup {{plan.destMark}}
+ip rule add pref 401 fwmark {{plan.destMark}} lookup {{plan.destMark}}
 interface_switch_china -A u_{{plan.name}}_china {{plan.destMark}}
 interface_switch_oversea -A u_{{plan.name}}_oversea {{plan.destMark}}
 restore_mark_switch -A {{plan.destMark}}