Hi guys,

I´m pretty new to the Mikrotik world, and before I take the plunge and buy this router, I would like to know your opinion about the setup I have in mind for my home network:

Current situation: GPON router provided by my ISP that is simply acting as the end point for my fiber optic connection and providing DHCP services. A TP-Link Archer C7 router acting as a Wireless AP both for 2.4 and 5.2 Ghz WiFi networks and a Raspberry Pi with PiHole installed, providing DNS for content filtering, Node-Red for home automation services and a VPN server for remote access.

Desired result: GPON router connected via cable to the Mikrotik HEX PoE router, the TP-Link Archer C7 acting as a "dumb" WiFi AP for both wireless frequencies as well and two VLANs: One for my home devices (Computers, Smartphones and tablets) and the second one for the "other" devices: Gaming console, security cameras, Smart plugs, etc. The IoT devices need to be connected to WiFi (The majority of them to the 2.4 Ghz band) and the computers, tablets and smart phones to both the 2.4 and 5.2 Ghz WiFi networks. Those two VLANs will share the same internet access gateway (which I suppose will be the Mikrotik router) but not be able to communicate with each other for security purposes. I would like to configure VPN access on the Mikrotik router with a dynamic DNS service such as DuckDNS, for remote administration and access to my networks. Of course the Mikrotik device will act as my network firewall as well.

Is this configuration possible / efficient? If so, where do I start? I have a fairly good experience configuring routers and networking equipment, but not so much with the CLI (but of course I can and I´m eager to learn!)

I think that´s it. Thanks for your help and suggestions.