We have two solutions on this issue since we are clear its root cause.
1. when the internet traffic go to the firewall, we can configure the “NAT “ and “interzone policy” so that this VPN segment can go to internet .
2. cancel the VPN gateway as a default gateway :
a. find the VPN and right click “properties” ,you will see the picture below ,click ”networking ”->IPV4(TCP/IPv4)
b. Click ”Properties”, you can see this window.
c. cancel the default selection of “use default gateway on remote network”，by default it is selected 。
This is the way to cancel the VPN gateway as default gateway ,but in this case ,the VPN user can only visit the LAN resources with same segment ,Please add static route to different LAN segment in DOS window ,the command is “route add” and the next hop is VPN gateway.