OpenVPN - Ability to block Internet on clients (INTRANET) tunnel formed between Routers

I have a Server/Client setup between to OpenWRT routers. Tunnel is formed and they can communicated no issues. Let the clients to the server and the remote router to not have any internet access. Only traffic over the 2 LAN (intranets) will transverse the network. DHCP server turned off on both routers since there is an intranet/mail server at main office

Are there settings I could put in OpenWRT or OpenVPN to accomplish this as in a firewall policy?


You could take either or both of two possible approaches:

  • Firewall policy restricting what traffic is permitted to go where, or;
  • Routing blackholes, restricting where your desired traffic flows.