Same Sub-net destination thru 2 different ports (IPsec/MPLS) separate by source users/IPs

Question

We have a branch that connected to HQ (Sophos XG210) through 2 types of connections IPsec_VPN and MPLS VPN but need to use both at same time by separating users or IPs to route each thru different ports & Gateways 
 IPsec_VPN: remote network is 192.168.10.0 thru Port2/Internet in WAN_Zone (disabled need to be configured) 
 MPLS_VPN: Thru Port4 connected to MPLS router using Gateway in WAN_Zone interface 10.10.10.20/24 and its GW is 10.10.10.10/24 (MPLS Router handle the route to remote MPLS router) (Implemented & working fine) 
 Firewall Rule: Source Zone LAN .... Source network (users/IPs) Destination Zone WAN Destination Network (2 remote IPs inside 192.168.10.0 subnet) Gateway MPLS_VPN Port4. (Implemented & working fine) 
 how can i configure this scenario so that some users route thru the MPLS and some other users thru the IPsec connection..... also remote subnet users in 192.168.10.0 could use IPsec to access the HQ servers??

lferrara · Answer

Haytham, 
 you can use Policy Routing under routing and decide which devices with which service will use that route. 
 For the second question, you can use same subnet across IPSec VPN. You need to implement NAT over IPSec. Here the KB: 
 https://community.sophos.com/kb/en-us/123356 
 Next time make sure to ask one question per thread. 
 Regards