I have an AD environment constituted by 2 geographical sites connected by a Site-To-Site VPN built with RRAS
The RRAS server on both sides are built as both VPN and NAT servers, and are set as the default gateway in the DHCP option of each site
SITE1
default gateway option for DHCP: 192.168.1.1
ip server RRAS 192.168.1.1
ip client 192.168.1.x
SITE2
default gateway option for DHCP: 192.168.3.1
ip server RRAS 192.168.3.1
ip client 192.168.3.x
VPN site to site
Site 1 server IP: 192.168.3.254
Site 2 Address IP: 192.168.1.254
Normally, if a client tried to access an external resource, that is neither in SITE 1 or SITE 2, RRAS redirects the request on the external connection/public interface.
Now, I would need that, for certain clients, all traffic gets redirected to the VPN, that is for example a certain client in site 2 with IP 192.168.3.2 is requesting an external resource, the request DOES NOT go from RRAS of site 2 to its public interface, but rather gets redirected from RRAS of Site 2 to RRAS of Site 1, and from there to the external interface of Site 1. Is this possible somehow?