If OpenVPN server runs on router, then yes, obviously you have to add accept rule for its port, if your other rules block all connections from WAN by default. To access your internal LAN, you can: 1) Set up whole LAN as bridge and add client as bridge port. That way it will be direct part of LAN. 2...