Computer networks

How to configure access via external ip vps with vpn only to a web server on the local network so that all other traffic goes through the provider?

Hello, please do not judge strictly as just a beginner, in general, the essence of the question is this: there is a local network with a server and subnet 192.168. provider via pppoe connection, the provider issues only a gray ip (provider gateway 10.10.1.1), there is basically no white ip service and there is only one provider, so the question arose of connecting to the local server on which the web server is running on a specific port, the server address in the local network is 192.168. 1.1, in connection with which a VPS with ubuntu OS was rented for an external ip on which softether server vpn was raised, softether server subnet 10.8.0.0 accordingly forwarded the desired port from the external IP vps to the interface address that the softether client installed on the router with openwert (10.8. when connecting vpn on the client, the corresponding routes (0.0.0.0 mask 0.0.0.0 gw 10.8.0.1) went up and the entire local network accesses the Internet through an external ip vps, so I apologize for being very long, how to make it so that you can connect via external ip vps only to the web server from it grew, and the whole network went along the provider's routes, bypassing the vpn?when connecting vpn on the client, the corresponding routes (0.0.0.0 mask 0.0.0.0 gw 10.8.0.1) went up and the entire local network accesses the Internet through an external ip vps, so I apologize for being very long, how to make it so that you can connect via external ip vps only to the web server from it grew, and the whole network went along the provider's routes, bypassing the vpn?when connecting vpn on the client, the corresponding routes (0.0.0.0 mask 0.0.0.0 gw 10.8.0.1) went up and the entire local network accesses the Internet through an external ip vps, so I apologize for being very long, how to make it so that you can connect via external ip vps only to the web server from it grew, and the whole network went along the provider's routes, bypassing the vpn?