Need ipsec traffic to route to the main hub

Howdy!!

I have an odd problem. I know that PPTP will do the tunneling exactly how I want it but it is not encrypted(as secure as IPSEC) from spoke to hub. My scenario is that I have a hub(main office) ipsec tunnel to several branch offices (spokes). I need for all of the traffic to be routed through to the main hub office. IPSEC is great how it does the split tunneling but now compliance is in affect to push all traffic through to the main office. Does any one know of a route method or an example setup to do this.

Maybe I have looked in all of the wrong places but I thought I have scanned through the forums and the wiki to no avail. If I did overlook a link please direct me to it.

I think I may need a route rule or a IPSEC policy change I am not sure. Please help if you could.

-Sincerely,
DesertAdmin

Yes, correct. /ip ipsec policy specifies what traffic should be encrypted.
Add policy to encrypt src/dst addresses you want to encrypt.
Note, that you can encrypt traffic before /ip ipsec peers.

Do you have an example of how to send all traffic to the hub with our doing the split tunneling? I think I am confused. If you want an example of my setup I can most definitely post a pict of it. If you need that. Let me know. Thanks.

-Sincerely,
DesertAdmin