Asterisk

Why Sip telephony over VPN can only work in one direction?

Good afternoon, dear ones!
There is an asterisk server in the park from the outside world hidden behind a firewall on Centos7. It was
required not to connect a couple of three phones. I chose the option through OpenVPN
At home, I installed the Fanvil x3s phone, set up an account and specified the configuration file and certificates,
for convenience I created a second account on the computer.
As a result, the Sip client on the computer connects perfectly, and the connection works in both directions.
And x3s connects, registers, can call, but it’s impossible to call him,
it seems that asterisk does not see him and thinks that the phone is not registered.
You can log in from the server from the asterisk to the web interface of the phone, the status in the phone is registered, and it can call itself.
What could be the plug, please advise!
client config openvpn
client
dev tun
dev-type tun
proto tcp
remote 165.236.34.3
port 1194
resolv-retry infinite
nobind
auth SHA1
ca ca.crt
cert client.crt
key client.key
cipher AES-256-CBC
remote-cert-tls server
verb 3
sndbuf 0
rcvbuf 0
comp-lzo
Since the client works fine from a computer, I sin on the phone, on some kind of built-in security.
phone without vpn
363/363 192.168.10.250 D Yes Yes A 5060 OK (24 ms)
sip client on computer
377/377 10.0.0.14 D Yes Yes A 5060 OK (5 ms)
sip phone
373/373 10.0.0.10 D No No A 5816 UNREACHABLE