I have a Netgear router running OpenWRT. I have it set up as an OpenVPN server, and OpenVPN clients can connect to it just fine. My problem is that the OpenVPN clients can only connect to hosts on the internet through the VPN; they can't connect to hosts inside the LAN.
The router has a "LAN" interface configured on 192.168.1.1. All LAN devices are on 192.168.1.0/24. The router has a "VPN" interface configured on 192.168.2.1. All VPN clients are on 192.168.2.0/24. Both LAN and VPN interfaces are in the same "LAN" firewall zone.
Here's my OpenVPN server config:
verb 3
user nobody
group nogroup
dev tun0
port 1194
proto udp
server 192.168.2.0 255.255.255.0
topology subnet
keepalive 10 120
persist-tun
persist-key
client-config-dir ccd
push "dhcp-option DNS 192.168.2.1"
push "dhcp-option DOMAIN lan"
push "redirect-gateway def1"
push "persist-tun"
push "persist-key"
push "route 192.168.1.0 255.255.255.0"
The client-config-dir has one file in it, "client", which contains the line:
iroute 192.168.1.0 255.255.255.0
Does anyone have any idea what I'm doing wrong? I'm not sure if this is a routing problem, a firewall problem, an OpenVPN problem, or what.