OpenVPN client can ping to remote lan web server but unable to access over anything

I installed SSL openVPN on centos8. The client connects successfully and can ping the remote LAN, but can't access the web server on the remote LAN. Here is my configuration.

Server

port 1194proto udpdev tunca /etc/openvpn/server/ca.crtcert /etc/openvpn/server/My.crtkey /etc/openvpn/server/My.keydh /etc/openvpn/server/dh.pemserver 10.8.0.0 255.255.255.0#push "redirect-gateway def1"push "route 172.20.0.0 255.255.255.0"push "dhcp-option DNS 208.67.222.222"push "dhcp-option DNS 208.67.220.220"duplicate-cncipher AES-256-CBCtls-version-min 1.2tls-cipher TLS-DHE-RSA-WITH-AES-256-GCM-SHA384:TLS-DHE-RSA-WITH-AES-256-CBC-SHA256:TLS-DHE-    RSA-WITH-AES-128-GCM-SHA256:TLS-DHE-RSA-WITH-AES-128-CBC-SHA256auth SHA512auth-nocachekeepalive 20 60persist-keypersist-tuncompress lz4daemonuser nobodygroup nobodylog-append /var/log/openvpn.logverb 3

Client

clientdev tunproto udpremote my-public-ip 1194ca ca.crtcert client.crtkey client.keycipher AES-256-CBCauth SHA512auth-nocachetls-version-min 1.2tls-cipher TLS-DHE-RSA-WITH-AES-256-GCM-SHA384:TLS-DHE-RSA-WITH-AES-256-CBC-SHA256:TLS-DHE-   RSA-WITH-AES-128-GCM-SHA256:TLS-DHE-RSA-WITH-AES-128-CBC-SHA256resolv-retry infinitecompress lz4nobindpersist-keypersist-tunmute-replay-warningsverb 3

IP Routes

default via 200.200.200.1 dev eno1 proto dhcp metric 100 10.8.0.0/24 via 10.8.0.2 dev tun0 10.8.0.2 dev tun0 proto kernel scope link src 10.8.0.1 192.168.122.0/24 dev virbr0 proto kernel scope link src 192.168.122.1 linkdown 200.200.200.0/24 dev eno1 proto kernel scope link src 200.200.200.3 metric 100 

iptables -L

Chain INPUT (policy ACCEPT)target     prot opt source               destination         LIBVIRT_INP  all  --  anywhere             anywhere            Chain FORWARD (policy ACCEPT)target     prot opt source               destination         LIBVIRT_FWX  all  --  anywhere             anywhere            LIBVIRT_FWI  all  --  anywhere             anywhere            LIBVIRT_FWO  all  --  anywhere             anywhere            Chain OUTPUT (policy ACCEPT)target     prot opt source               destination         LIBVIRT_OUT  all  --  anywhere             anywhere            Chain LIBVIRT_INP (1 references)target     prot opt source               destination         ACCEPT     udp  --  anywhere             anywhere             udp dpt:domainACCEPT     tcp  --  anywhere             anywhere             tcp dpt:domainACCEPT     udp  --  anywhere             anywhere             udp dpt:bootpsACCEPT     tcp  --  anywhere             anywhere             tcp dpt:bootpsChain LIBVIRT_OUT (1 references)target     prot opt source               destination         ACCEPT     udp  --  anywhere             anywhere             udp dpt:domainACCEPT     tcp  --  anywhere             anywhere             tcp dpt:domainACCEPT     udp  --  anywhere             anywhere             udp dpt:bootpcACCEPT     tcp  --  anywhere             anywhere             tcp dpt:bootpcChain LIBVIRT_FWO (1 references)target     prot opt source               destination         ACCEPT     all  --  192.168.122.0/24     anywhere            REJECT     all  --  anywhere             anywhere             reject-with icmp-port-unreachableChain LIBVIRT_FWI (1 references)target     prot opt source               destination         ACCEPT     all  --  anywhere             192.168.122.0/24     ctstate RELATED,ESTABLISHEDREJECT     all  --  anywhere             anywhere             reject-with icmp-port-unreachableChain LIBVIRT_FWX (1 references)target     prot opt source               destination         ACCEPT     all  --  anywhere             anywhere