OpenVPN Bridging VPN and Local Subnets Client Options

[jimf]

I'm using the Merlin build 3.0.0.4.374.38_2 which seems to have fixed a lot of OpenVPN issues. Router is RT-AC68R. I can get bridging from the VPN to the local subnet to work, but I'm trying to let clients also see each other and when I add a client to the "Allowed Clients" list, it can no longer see the local subnet.

Clients seem to be getting the correct VPN IPs. If I remove the "Allow only specified clients" and remove client1 from the list, the subnets are successfully bridged.

I know that there are a lot of duplicated route/push pairs below, but they are automatically generated. I have 3 clients defined, 1 pair for each client in the generated file.

Sorry, I'm kind of a NOOB about OpenVPN. Can someone give me a clue?

Here is the server config file:
/tmp/etc/openvpn/server1/config.ovpn

# Automatically generated configuration
daemon
server 10.8.0.0 255.255.255.0
proto udp
port 1194
dev tun21
cipher AES-256-CBC
comp-lzo adaptive
keepalive 15 60
verb 3
push "route 192.168.2.0 255.255.255.0"
client-config-dir ccd
client-to-client
ccd-exclusive
route 192.168.2.0 255.255.255.0
push "route 192.168.2.0 255.255.255.0"
route 192.168.2.0 255.255.255.0
push "route 192.168.2.0 255.255.255.0"
route 192.168.2.0 255.255.255.0
push "route 192.168.2.0 255.255.255.0"
push "dhcp-option DNS 192.168.2.1"
push "redirect-gateway def1"
ca ca.crt
dh dh.pem
cert server.crt
key server.key
status-version 2
status status

# Custom Configuration

Here is an example file from the ccd directory for client1
iroute 192.168.2.0 255.255.255.0