[ASK] Trouble to connect OpenVPN from site 1 to site 2, but not vice versa

RouterOS General
1

Hi…

First of all, sorry for my english, since it’s not native language, but i try to make it clear as possible with the help of the image.
myOpenVPN.jpg
If there’s already similar problem like this, please forgive me, since i already searched threads for this problem in my local lang. and from this forum.

So here’s the detail :

Site 1 → This will be OpenVPN Server

  • Public IP : 200.200.200.1
  • Mikrotik IP : 192.168.1.1
  • Workstations : 192.168.1.0/24
  • Tunnel 1 : 10.10.15.1

Site 2 → This will be OpenVPN Client

  • Only Private IP address
  • Mikrotik IP : 192.168.10.1
  • Workstations : 192.168.10.0/24
  • Tunnel 2 : 10.10.15.3

What i have done so far:

  1. Successfully created tunnel from Site 1 to Site 2
  2. Create manual route from Workstations 1 to Workstations 2 and vice versa in both of mikrotik
  3. OpenVPN is working

What i can do for now:

  • I can do ping from Mikrotik Site 1 to Mikrotik Site 2

  • I can do ping from Mikrotik Site 1 to Tunnel Site 2

  • I can do ping from Mikrotik Site 1 to Workstations Site 2

  • I can do ping from Mikrotik Site 2 to Mikrotik Site 1

  • I can do ping from Mikrotik Site 2 to Tunnel Site 1

  • I can do ping from Mikrotik Site 2 to Workstations Site 1

  • I can do ping from Workstations Site 2 to Mikrotik Site 1

  • I can do ping from Workstations Site 2 to Tunnel Site 1

  • I can do ping from Workstations Site 2 to Workstations Site 1

  • I can open, get and transfer from Workstations Site 2 that remain in Workstations Site 1


    What i can’t do for now:

  • can’t ping from Workstations Site 1 to Mikrotik Site 2

  • can’t ping from Workstations Site 1 to Tunnel Site 2

  • can’t ping from Workstations Site 1 to Workstations Site 2

  • can’t open, get and transfer from Workstations Site 1 that remain in Workstations Site 2


    So far, what i have checked:
    I can see data / traffic using log in Mikrotik Site 2, all data that come from Workstations Site 1 to Mikrotik Site 2, Tunnel and also Workstations Site 2. But have no luck.

The question, is it possible to achieve 2 way communication, so i can do open, get and also transfer files from Site 1 and also Site 2?

What i guess is, this is because of my Site 2 is behind NAT so i can’t achieve the result what i expect.
And also to test it, i have created another tunnel to my another Area, just call it Area 3, which has Public IP, all the configuration is same just like Area 2, but the result is different, All the Workstations in Site 1 and Site 3 can do data transfer.

Please help me.. Thank you