diff --git a/hosts/xlab-gateway/networking.nix b/hosts/xlab-gateway/networking.nix
index 3bf7e19..cd8ec95 100644
--- a/hosts/xlab-gateway/networking.nix
+++ b/hosts/xlab-gateway/networking.nix
@@ -48,6 +48,7 @@
           chain postrouting {
             type nat hook postrouting priority filter; policy accept;
             oifname "wan99.0" masquerade
+            oifname "bond.mgmt" masquerade
           }
         }
 
@@ -202,6 +203,10 @@
         { Destination = "59.66.0.0/16"; Type = "throw"; Table = 1002; }
         { Destination = "183.172.0.0/16"; Type = "throw"; Table = 1002; }
         { Destination = "183.173.0.0/16"; Type = "throw"; Table = 1002; }
+        # ========= 新增下面这一行 =========
+        # 告诉策略路由表：如果是去往管理网段，不要走隧道，跳回 main 表处理
+        { Destination = "192.168.1.0/24"; Type = "throw"; Table = 1002; }
+        # ==================================
       ];
       routingPolicyRules = [
         # LAN IPv4 → suppress default route in main table, fall through to freedom-wgnet