Restrict OpenVPN Client to single server ??

[ccuppii]

Simply put, I'm using PIVPN and need to assure that I can restrict a specific remote client to only being able to access all ports on a single IP ADDRESS. For sake of clarity, we'll say that the IP Address of this server is 192.168.0.10. The remote client should not be able to access any other IPAddresses on my local network other than 192.168.0.10 and should not use my internet service for task like internet web browsing, email etc. All they should be able to do via the OpenVPN is work with the various services on my local server which has a the static local ip address of 192.168.0.10 . I'm thinking that with many of us working from home during this pandemic, this has very likely been hashed out multiple times but I'm unable to find such info. This is the only scenario I'll likely ever use OpenVPN for, so providing specific instructions for this particular configuration would be VERY much appreciated in advance.

[zxun]

Simply put, you just need to delete `def1` and any other routing policies on both configurations, then the client can only access the server via its openvpn address. I have tested such access by `nc -l` on the server and `telnet` on the client. It works.