It might be useful to have a slight clarification or option on the checkbox
“Send All Traffic To PepVPN”
Currently if this is checked, and the VPN goes down for some reason such as the remote device/cloud instance being unreachable, traffic flows through the WAN ISP connection. This seems a bit confusing to me since one might expect “Send All Traffic To PepVPN” means all traffic will go over the PepVPN only.
It might be useful to have a checkbox option so it was more clear or to have an easy option:
Send All Traffic To PepVPN primary when available enforced (meaning it will only go over the PepVPN)