CCR1036-setup: 1 main Wan, 1 failover wan, 2 LAN

RouterOS Beginner Basics
1

Hello to All

I recently purchased model CCR1036-12G-4S, OS 6.1. I have the intention to have the following configuration:
WAN1=ether1= IP 192.168.0.2 , Main ISP line, gateway=24.138.234.
WAN2=ether2=IP 10.0.0.87, failover ISP, gateway = 10.0.0.138
LAN1= ether3= 192.168.3.0/24 , at this router port#3 in order to connect a switch to connect several other access points.
LAN2=ether4=192.168.4.0/24, for a private access point for WIFI.
LAN2 and LAN1, should not share each other IP’s range, but are to receive Internet signal from either Wan1 or Wan2(under failover only).
I have listed from the "new Terminal Screen" the following settings (not focusing yet on failover settings), but cannot access yet the internet via any of the LAN’s physical connections nor within their assigned IP's range. I had also eliminated all firewall settings w/o luck. Any help, will be appreciated:

[admin@xx] > ip address print

ADDRESS NETWORK INTERFACE

0 ;;; External switch for other LAN
192.168.3.1/24 192.168.3.0 LAN3
1 ;;; Main ISP
192.168.0.2/29 192.168.0.0 WAN1
2 ;;; Failover ISP
10.0.0.87/29 10.0.0.80 WAN2
3 ;;; Access point equip for wifi sharing
192.168.4.1/24 192.168.4.0 Lan4

[admin@xx] > /ip route print
Flags: X - disabled, A - active, D - dynamic,
C - connect, S - static, r - rip, b - bgp, o - ospf, m - mme,
B - blackhole, U - unreachable, P - prohibit

DST-ADDRESS PREF-SRC GATEWAY DISTANCE

0 A S ;;; Default Route
0.0.0.0/0 192.168.0.1 1
1 S 0.0.0.0/0 10.0.0.86 2
2 ADC 10.0.0.80/29 10.0.0.87 WAN2 0
3 ADC 192.168.0.0/29 192.168.0.2 WAN1 0
4 ADC 192.168.3.0/24 192.168.3.1 LAN3 0
5 ADC 192.168.4.0/24 192.168.4.1 Lan4 0

[admin@xx] > /ip firewall filter print
Flags: X - disabled, I - invalid, D - dynamic
0 chain=input action=drop connection-state=invalid
1 ;;; Accept LAN port 3
chain=input action=accept in-interface=LAN3
2 ;;; Accept LAN port 4 at router
chain=input action=accept in-interface=Lan4
3 chain=input action=accept connection-state=established
4 chain=input action=accept connection-state=related
5 chain=output action=accept connection-state=established protocol=icmp
6 chain=forward action=drop in-interface=Lan4 out-interface=LAN3
7 chain=forward action=drop in-interface=LAN3 out-interface=Lan4
8 ;;; Allow servers
chain=forward action=accept src-address=192.168.3.0/24
9 chain=forward action=accept src-address=192.168.4.0/24
-- [Q quit|D dump|down]

================================================
[admin@xx] > /ip firewall nat print
Flags: X - disabled, I - invalid, D - dynamic
0 chain=srcnat action=masquerade out-interface=WAN1

1 chain=srcnat action=masquerade out-interface=WAN2

Thanks in advance,

Albert