Internal (NAT) traffic is not meant to be VPNed. IP addresses like 10.*.*.*
(route 4), 172.0x1*.*.* (route 5) and 192.168.*.* (route 6) can be find by your
machine, but (usually) not by the VPN, that's why they need to be excluded and
handled by wlp3s0. These are standard numbers, so the VPN knows about it.
The same goes for route 9. In the DHCP dump we can see that 145.116.128.0/22 all
belongs to a small network, and if we'd attempt to VPN this, we cannot reach the
gateway or any other machine in our local network any more.