Why is one of the networks behind OpenVPN not available?

N

nfire2017-08-03 11:37:03

openvpn

nfire, 2017-08-03 11:37:03

The OpenVPN server is installed on a virtual machine with ubuntu-16.04.1-server-amd64, leased line, white IP. On the other hand OpenVPN windows 10 client via tp-link tl-3020 with openwrt and 3G modem. VPN is installed, the network behind the server is visible from win10, but only the openvpn client interface is pinged from the server. And it is necessary that both networks were available for each other.
OpenVPN server - 192.168.3.252, vpn - 10.8.0.1
Win10 - 192.168.4.249, vpn - 10.8.0.4
Devices on 3 subnets are pinged / accessible from wine 10. Only 10.8.0.4 responds from the north.
There is no route to subnet 4 on the server. Tried to add manually - did not help.

server config

port 1194
proto udp
dev tap
ca ca.crt
cert cert.crt
key key.key
dh dh2048.pem
server 10.8.0.0 255.255.255.0
route 10.8.0.0 255.255.255.252
route 192.168.4.0 255.255.255.0
client-to-client
client-config-dir /etc/openvpn/vpn-tun/ccd
ifconfig-pool-persist ipp.txt
keepalive 10 120
tls-auth ta.key 0
key-direction 0
cipher AES-128-CBC
auth SHA256
comp-lzo
user nobody
group nogroup
persist-key
persist-tun
status openvpn-status.log
verb 3

client config

client
dev tap
proto udp
remote 11.22.33.44 1194
resolv-retry infinite
nobind
user nobody
group nogroup
persist-key
persist-tun
remote-cert-tls server
cipher AES-128-CBC
auth SHA256
key-direction 1
comp-lzo
verb 3
-----BEGIN CERTIFICATE-----
... ключи и сертификаты ...

client-config ccd

#disable
#ifconfig-push 10.8.0.6 10.8.0.7
iroute 192.168.4.0 255.255.255.0
push "route 192.168.3.0 255.255.255.0"