diff --git a/hosts/pbx/services/public-ip4-tunnel.nix b/hosts/pbx/services/public-ip4-tunnel.nix
index 5f130aa..9cf2dc8 100644
--- a/hosts/pbx/services/public-ip4-tunnel.nix
+++ b/hosts/pbx/services/public-ip4-tunnel.nix
@@ -39,13 +39,13 @@ in {
       rules = [
         "from 192.168.98.0/24 to 10.0.0.0/8 table main priority 10"
         "from 192.168.98.0/24 to 192.168.0.0/16 table main priority 10"
+        "from 192.168.98.0/24 lookup ${rtTable.name} priority 20"
 
         "from ${externalIp} to 10.0.0.0/8 table main priority 10"
         "from ${externalIp} to 192.168.0.0/16 table main priority 10"
         "from ${externalIp} table ${rtTable.name} priority 20"
-        "from 192.168.98.0/24 table ${interface} priority 20"
 
-        "from ${externalIp} lookup ${rtTable.name}"
+        "from ${externalIp} oif ${interface} lookup ${rtTable.name} priority 20"
       ];
       addRule = rule: "ip rule add " + rule;
       deleteRule = rule: "ip rule delete " + rule;