So, in summary, what is the problem that you are trying to solve at this point? It seems that you have managed to start Snowflake.
I’m pretty sure that binding to the WAN interface instead of the VPN’s interface is the way to bypass a VPN. As long as the “Kill-switch” feature (which prevents direct WAN traffic) is disabled.
Snowflake has the -outbound-address parameter, you could try to set it to your WAN address to bypass the VPN.
Although the broker will incorrectly count proxy country stats then (https://snowflake-broker.torproject.net/metrics), it is otherwise fine to use different IPs for broker communication and for serving clients.
Note that if take the Snowflake process as a whole and count its inbound / outbound traffic, you should expect to see a 1:1 ratio, because it’s just a proxy: it sends pretty much exactly as much as it receives.
See:
“Restricted” doesn’t mean it’s a drag. The majority (97.7%) of Snowflake proxies are restricted (see the metrics), and this is expected. Generally if a proxy is able to serve clients, then it’s good for the network.