Route specific website via IPSEC Site to Site VPN

Inspace,

make sure that the website is resolved via an internal IP and not by the WAN IP from the India office. If you are using XG as dns, simply create a record with the yxzmedical.com --> internal IP of the US internal webserver.

I am able to resolve the IP of those websites. The website is working fine if I use a chrome proxy. Those websites are blocked for other countries on purpose. 

If I install a proxy on all user desktop, Then there is no purpose of using a firewall to block unproductive sites & apps. Right now I need India branch users to access those websites impersonating US WAN IP.

I am able to resolve the IP of those websites. The website is working fine if I use a chrome proxy. Those websites are blocked for other countries on purpose. 

If I install a proxy on all user desktop, Then there is no purpose of using a firewall to block unproductive sites & apps. Right now I need India branch users to access those websites impersonating US WAN IP.

Inspace,

sorry but I do not understand. Is the website the one published on US network?

No. The website xyzmedical.com is public like google.com. But can be accessed only within the US country. So India branch users cant access the site without 3rd party proxy

So, there's a medical website that's only available on the US, and you want to route all connections to that website from the XG in India to the XG in the US?

Both XG are connected through an IPsec Tunnel. So the first thing is to create a new gateway of the US XG IP on the India XG.

Then;

On v18 you can create a SD-WAN Policy in the India XG, with the service (HTTP+HTTPS) and the destination (FQDN), and use the XG in the US as the primary Gateway.

On v17.5 you could do the same, but instead of using the SD-WAN like in v18, you would need to create a Firewall Rule, with the Users/Source and the Destination + Services (As above), and again use the XG in the US as the gateway. (I'm not sure about v17.5 method.)

Once site to site VPN is established. will the primary gateway drop-down display US WAN link?

will try and update you.

Now it is clear.

Implement what Prism suggested. This will work only if the website is outside the remote network reachable via the S2S VPN. Otherwise you need to create a loopback NAT on XG based in US.

Regards

You need to create the gateway manually, you will only do this process once.

Login in the India XG and on the left panel go to Routing, then Gateways.

Add A new Gateway, put the Name as something relevant, and then on the Gateway IP you put the IP of the US XG over the IPsec connection established, you can also do health checks with ping if necessary. (Leave Interface as None.)

Then you will be able to use the US XG as Gateway for anything necessary.

Example: