R7000 VPN Site to Site with OpenWRT Router

Client VPN router ---- clients 192.168.2.X
192.168.2.1
255.255.255.0
|||
||| internet
|||
Netgear R7000 --- clients 192.168.1.X
192.168.1.1
255.255.255.0

Open VPN --Netgear assigns 192.168.254.X VPN Address to each client which tunnels into the network

Where's the 192.168.254.x client located? Which side? 

 - Revised above.  OpenVPN on the Netgear R7000 router using Firmware V1.0.7.2_1.1.93. The 192.168.254.X is the IP assigned in the VPN Client Devices section of the Attached devices.  Do I have any other firmware options?

Are you saying that the client behind the 192.168.2.x network can access 192.168.1.x network

perfectly but not a client from 192.168.1.x network to 192.168.2.x?

- That is correct.  When on 2.x, I can access all LAN machines on 1.x.  When trying to ping from the 1.x network to the 2.x network, I can't reach any machine.  The only address I can ping is the 192.168.254.x address of the client router which has iniated the VPN Tunnel.

What's the VPN client software that you're using? 

OpenVPN. 

Here is my 192.168.2.1 Client Configuration:

config openvpn 'netgear'

option client '1'

option proto 'udp'

option resolv_retry 'infinite'

option nobind '1'

option persist_key '1'

option persist_tun '1'

option comp_lzo 'yes'

option verb '5'

option cert '/etc/openvpn/client.crt'

option key '/etc/openvpn/client.key'

option ca '/etc/openvpn/ca.crt'

option log '/tmp/log/openvpn.log'

option cipher 'AES-128-CBC'

option remote XXX 1193'

option dev 'tun'

option enabled '1'

option redirect_gateway 'def1'

Here is the Client conf:

client

dev tun

proto udp

remote XXX 1193

resolv-retry infinite

nobind

persist-key

persist-tun

ca ca.crt

cert client.crt

key client.key

cipher AES-128-CBC

comp-lzo

verb 5

EOF