Hi everyone, I need some help with a site-to-site vpn. I would like only traffic destined for the vpn to use the tunnel, otherwise go out their Internet connection. The VPN works works great but would like Internet traffic to go our using their local connection.

I've googled the topic but only managed to find 'Road Warrior' setup / configurations where you tweak the client, can anyone provide any site-to-site configuration help?

Thanks
E

If you're using IPSEC, this is pretty straightforward as you can define what source/destination, port and protocol are used for the tunnel. Anything that falls outside of that is not encrypted.

IPsec policy is where the traffic you need encrypted is defined (commonly referred to as 'interesting traffic')

http://wiki.mikrotik.com/wiki/Manual:IP/IPsec#Policy

thank you for your help.