"I connected with my laptop via hotspotting on my phone. The phone is connected via VPN to my DIR-882."
I don't know your phone's OS (is it Andorid or IOS iPhone) but with android the VPN routes are not passed to the clients of the hotspot .
Normally if you went to whatismyip.com on your laptop browsser in that situation it would/should have returned a WAN IP from your mobile service provider and not one from your wired/fixed/home ISP . Only the phone uses the routes from the VPN connection .
Also make sure that you disable wifi before activating the hotspot ; at least on my Samsung S22 (it was the same on the S20/S9 before it ) if I left wifi on and created a hotspot the internet connection which was shared to the hotspot's clients would be that from the wifi not the one from the mobile 4G connection .
Just because you cannot "ping" a client does not necessarily mean it's unreachable ; can also mean that it's firewall is not configured to allow ICMP reply requests .
For example I cannot ping 10.10.10.185 (a VM Win 10 machine in my LAN with DHCP dynamic IP ) because I haven't configureg it's firewall to allow such operation. But at the same time I can connect to it via RDP from my laptop (the laptop is connected to my phone's hotspot and the VPN client is the default Win 10 VPN client for L2TP/IPSEC with VPN IP 192.168.95.2 )
However from my VM (10.10.10.185) I can ping the laptop without issue since the firewall on the laptop is configured to respond to ICMP requests .
After the necessary changes to the VM's firewall (enable the "Core Networking Diagnostics - ICMP Echo Request (ICMPv4-In)" rule on both Domain and Private/Public networks and the scope set to Any IP )I can ping it from my laptop just fine .
In conclusion for me bidirectional connection is working no mater if the clients are of the DHCP static or DHCP dynamic type ; I can reach all the LAN clients form my laptop and the other way around .
When I was talking about SMB I was talking about my NAS's network share not the USB sharing on the router ; that part is disabled on my router also (that's why I got the NAS in the first place since the performance of the USB sharing on the router was so pity-full of ~ 7 MB/s write speed).
However the VPN on my router is more of a backup now; I have a Wireguard VPN server running on my QNAP NAS (it's an option in the QVPN service along with OpenVPN and L2TP/IPSEC servers) as it gives me way better performance .
Setting up clients is kind of a PITA ( you have to share the private key of one end of the tunnel with the other end for each client) but it gives my 200+ Mb/s throughput vs 15-16 Mb/s with the VPN server n the router .
Also with Android 12 L2TP/IPSEC is no longer supported for new connections (Windows/MAC will be dropping native support also) . if you had a phone on Android 11 and upgraded the previously created connection will remain but you cannot create new VPN profiles for L2TP .
Maybe you can try spinning up a VPN server on your NAS to see if that works ;as I've said it should work now as it's configured but .....