I am running OpenVPN on my pfSense firewall(s). Everything else is accessible just fine. This happens at 3 separate locations with 4 separate switches. Every location is running OpenVPN on pfSense.It sounds like your ICX devices don't have an IP route to your VPN endpoints through the VPN server/gateway. Are you running OpenVPN on your regular (default) router on the network, or on another machine?
Edit: I am not using the OOB management port, I am using a veth interface.
$ ssh -o KexAlgorithms=+diffie-hellman-group1-sha1 -o PreferredAuthentications=password -o PubkeyAuthentication=no email@example.com -vvv OpenSSH_8.9p1, OpenSSL 1.1.1m 14 Dec 2021 debug1: Reading configuration data /etc/ssh/ssh_config debug2: resolve_canonicalize: hostname 10.0.10.2 is address debug3: expanded UserKnownHostsFile '~/.ssh/known_hosts' -> '/home/user/.ssh/known_hosts' debug3: expanded UserKnownHostsFile '~/.ssh/known_hosts2' -> '/home/user/.ssh/known_hosts2' debug3: ssh_connect_direct: entering debug1: Connecting to 10.0.10.2 [10.0.10.2] port 22. debug3: set_sock_tos: set socket 3 IP_TOS 0x48 debug1: connect to address 10.0.10.2 port 22: Connection timed out ssh: connect to host 10.0.10.2 port 22: Connection timed out
I can now access the switch from my OpenVPN tunnel.