[xalexa]

I have a working openvpn connection from an X86 client router running DD-WRT v3.0-r50176 to a Ubuntu 18.04 lts server running OpenVPN 2.4.4 x86_64-pc-linux-gnu. This works perfectly. I want to be able to connect from the server to devices behind the client router (ssh, http, etc). I can ping the client router, connect via ssh and via http using the tunnel ip address but not the ip address of the router (neither the WAN or the LAN address). When I ping the client router using the LAN/WAN address then by using tcpdump I can see pings enter the tunnel at the server end but using tcpdump at the client end I see no icmp ping messages. When I do the same with the tunnel address, there is a ping icmp message and reply visible with tcpdump at both ends.

Why do I see the icmp ping enter the openvpn tunnel at the server but not exit the tunnel at the client? What should I be checking to make this work?

[egc]

What you describe is referred to as a site-to-site setup i.e. bidirectional traffic.

The OpenVPN server setup guide has a paragraph how to set this up, it needs working with CCD files and setting iroute and route on the server side.

OpenVPN documentation is a sticky in this forum.

It is easier to do this with WireGuard, also a sticky in this forum.

[xalexa]

[egc]

If you would have taken the time to look at our own documentation which I referred to than you would already had known that.