Having trouble with site to site vpn

I have two firewalla golds.  I want to create a site-to-site VPN between them and only route traffic over the vpn when the destination is one of the LANs on either side of the VPN. I want the default route for both locations to be through their respective ISPs. 

I have a site to site vpn configured but on the client side of the vpn, where I needed to specify the devices I want routed over the VPN, it's routing all traffic through the vpn from the client side.

I'm finding the site to site vpn configuration to be a bit unusual since one of the two lans arbitrarily has to be designated as a client, and I don't see how to make routing tables so the only traffic routed over the vpn (on either side) would be my internal CIDR blocks (I have two CIDRs in each location - 4 total).

Any advice?  I've followed the Site-to-Site instructions and this is where I ended up - not properly configured.