When connected to the VPN, I am not sure why the remote access user cannot ping 192.168.5.1 - VLAN 5 on the switch. OSPF is configured to advertise that network.
If NAT is affecting the connection, and I remove the NAT entry, then I am thinking I would not be able to access the web server when the VPN is not connected.