Re: Policy based routing for specific ports

        port-group DL_Station {
            description "Synology DL Station Ports"
            port 6881-6999
            port 8001
            port 16881
        }
    }
    ipv6-receive-redirects disable
    ipv6-src-route disable
    ip-src-route disable
    log-martians disable
    modify OPENVPN_ROUTE {
        description "Determine what traffic route to VPN"
        rule 10 {
            action modify
            description "Route UDP traffic from DL Station to VPN"
            modify {
                table 1
            }
            protocol udp
            source {
                address 192.168.2.254/32
                group {
                    port-group DL_Station
                }
            }
        }
        rule 20 {
            action modify
            description "Route TCP traffic from DL Station to VPN"
            modify {
                table 1
            }
            protocol tcp
            source {
                address 192.168.2.254/32
                group {
                    port-group DL_Station
                }
            }
        }
    }

    openvpn vtun0 {
        config-file /home/john/config/auth/USMidwest.ovpn
        description PIA-VPN
    }

protocols {
    static {
        table 1 {
            description "Route traffic across VPN"
            interface-route 0.0.0.0/0 {
                next-hop-interface vtun0 {
                }
            }
        }
    }
}

Traffic coming from 192.168.2.254 across ports specified in the group are not directed to the VPN

BTW....specifying udp_tcp is not allowed for the protocol.  I had to create two seperate rules.  Not sure if this is a bug or intentional.