Yes.
In the case of a site to site tunnel, in your network lists/ACL's for the
tunnel you would have at the remote site something like:
access-list VPN extended permit ip (remote site local network addresses)
0.0.0.0 0.0.0.0
Then the opposite at your HQ location. This will force all traffic through
the vpn from that remote site.
In the case of RA vpn's using the IPSEC or SSL client, simply do not define
a list of networks in the configuration and it should, by default, tunnel
all traffic. There is some additional information on this and similar common
vpn issues at the link below.
http://www.cisco.com/en/US/products/ps6120/products_tech_note09186a00807e0aca.shtml
On Sun, Jan 24, 2010 at 8:15 AM, anva12345 <