OpenVPN: Restrict access to local network

Hi all,

I would like to accomplish the following with OpenVPN:

1. Route the entire data traffic of the clients to the public Internet via the VPN.
2. Block access to the local network for the clients. However, access to some local IP addresses should be allowed.

I think one way to accomplish this is to write a firewall rule. Please check documentation for firewalld and nftables on how to write a custom rule.