I am still figuring out the finer points of separating my home network into two VLANs: one public VLAN which will have port-forwarding and internet-available things like mail and web server, and one which will have nothing forwarded to it and will only be accessible via VPN (L2TP/ipsec preferably, but so far I haven’t managed to get that working right just yet either). So my setup is a bit of a work in progress.
That said, I’ve managed to mostly get the VLANs working, and I’m contemplating how to route the traffic to get to the public VLAN from the home VLAN. I have no-ip.com DDNS attaching a URL to my WAN IP, and I would like to be able to use that URL from home computers. To accomplish this, I believe I want to route all traffic sourced from the home VLAN interface and with destination of the WAN IP, to go to the public VLAN and be forwarded to the appropriate LAN IP using port forwarding.
So does anyone have a link to a guide that walks through roughly what I’m looking to accomplish? I’ve found a few Mikrotik wiki pages that don’t feel like quite the right fit, but maybe I’m not looking at my problem the right way and could use a nudge in the right direction.