Hi Sorry for late. In pfsense I did not get public ip at wan interface cause of my ISP. So i can not remote access to my from Internet.

thanks for trying to help gjaltemba !! I am embarrassed to say my son on the other end was the one telling me that he couldn't connect to anything on the remote LAN from the home LAN.  As I was troubleshooting that issue, he mentioned the internet had been acting up for "about the past hour" - this is at the home address running pfSense, and it happens to be on a gigabit connection. After troubleshooting that issue to TWO LAN computers where two other members of the household were each downloading (and I think possibly seeding) a 3.3 GB patch for ARK (and then stopping those) - he could immediately connect to the ASUS LAN cameras web server.  He isn't able to see the video streams, but I can see them on my phone across two VPN connections, so I think it must be 99% working. Knock on wood, I think it might be fixed *

Thank you for posting he solution too /Bingo

Thank you very much for the solution jimp! It is working perfectly now. Best Regards, agrozdanov

Thank you Marvosa!! Took me a while to wrap my brain around your fix but it totally worked! 100%! And I learned a lot about OVPN and routing too. Thank you!!

how has nobody dealt with this issue before? Nobody has nat traversal on and using a vpn?

start by providing info…. "ive tried everything" is fairly useless to start debugging this issue so: diagram of your intended network (include subnets/ip's) screenshots of configuration related to vpn logs

Yeah often when someone suggest changing from default port someone else usually retorts with a speech about security through obscurity being worthless… Security through obscurity vs "true" security is an imperfect analogy to cover vs concealment. Concealment can't physically protect you but it serves a purpose. The most commonly cited purpose is to clean up your log files, and that is certainly a valid purpose.

Agreed that would be the best option to be sure!

@Pippin: See here: https://forum.pfsense.org/index.php?topic=132534.msg728642#msg728642 ah, thanks and sorry for doubleposting! Greets Stephan

@Derelict: It turns out that Block private networks and loopback addresses on the WAN address was blocking access to the WAN from the VPN.  Is it a problem to disable this option? No it wasn't. That blocks connections into WAN from outside WAN from RFC1918 source addresses. You can run without those checked. Your correct it only loaded the one web page and then it wouldn't work anymore. I have no idea what else to look for.