“What traffic do you want to NAT for?” - I want to NAT http traffic from IP of NAT interface to OpenVPN LAN.
“But that isn’t hairpin” - Yes, I understand it and deleted rule 210.
“OpenVPN clients automatically add a /32 route for the OpenVPN server” - No, OpenVPN don’t add this rule and traffic to IP of OpenVPN server gone through default route of client, through internet.
For test I added second IP to WAN interface and added nat rules and push route on openvpn server, and all works fine.
I haven’t any ideas how I can solve this.