OpenVPN: auth-nocache and Static IP for clients

[p1r473]

1. I have set my server to give my user ip address 10.8.0.5. However, I still get 10.8.0.2 every time I connect. I want to give my account a specific IP, for use with IPTABLE rules

2. I have auth-nocache in my custom config, however, when I go to export, it doesn't get exported in the .ovpn file

Please see my server config:

Sorry if its a bit blurry!

It seems to give me 2 IPs, but however, making an IPTABLE rule on 10.8.0.5 doesn't work, but making the IPTABLE on 10.8.0.2 does. How do I get it to not give 10.8.0.2, and only 10.8.0.5?

I am trying to make the IPTABLE rule:
iptables -I INPUT -p tcp --dport 22 -j DROP
iptables -I INPUT -p tcp -s 10.8.0.5 --dport 22 -j ACCEPT

I only want to accept SSH from this one VPN client. I do not want to IPTABLE on 10.8.0.2 because that is just the address given to the first client who connects- I want it to use my configured IP.

 

[p1r473]

I have created the file /jffs/configs/openvpn/ccd1/p1r473
And in this file I put "ifconfig-push 10.8.0.5 255.255.255.255"

And it seems to work, so the issue is that the GUI options for IP address seem to be completely ignored!

However, if I do it this way, the IPTable still blocks it! Why is if I statically give my OpenVPN account a static IP, I can't catch it in an IPTable for whitelisting? If I don't give myself the static IP, then I am able to catch it in the IPTable!

How can I get it to configure the IP address from the GUI and not the /ccd1/ file??