Evening,
I setup a VPN server (OpenVPN), which worked fine until the classical problem of an ISP changing the public IP got revealed. Since the router has support for dynamic DNS, I created a domain and configured it in the router. I also configured both an OpenVPN and WireGuard VPN to work with the new domain, and was able to connect from remote.

Since I could reach the gateway management page by typing the domain name in the browser, I setup a Deny rule:

This prevented outside access to the Gateway Management Page, but also stopped the VPN tunnels from connecting.

I therefore added a Permit rule above the Deny rule:

However, I still am not able to connect using either of the VPN solutions.

Am I missing something obvious?