Standard VLAN setup not working

[Zebra Hosting]

Plan is to seperate my setup with a few VLANs or Virtual Adapters to create room for more devices (getting over 255 because of home automation).
Running Proxmox with Opnsense I followed a few tutorials and it all seems simple but I can't get it to work for days now. I have even wiped out my whole system to start fresh with a new setup so there must be something fundamentally wrong.

WAN is PPOE, connected and works
LAN  on vtnet0 192.168.1.1/24
IOT Vlan with parent vtnet0 192.168.10.1/24

LAN works, connects to internet and can find all devices in the same subnet but not browse to the IOT VLAN from a computer running the LAN IP. WHen I switch to use the IOT IP, I can browser to device but not get out to the internet.

Looking at all tutorials is seems as simple as adding an allow all rule in the firewall but that did not help.

Does it need a gateway setup? With the fresh setup I see a WAN_GW created (defunct). I normally add my WAN to a group and have a secudairy fall over setup but took it all out to get the subnets working.

Steps made on clean install:
Config wizard to setup PPOE and LAN on network cards
Added VLAN's in the interface -> devices -> VLAN, only gave name and number
Added VLANs in the assignments.
Clicked on VLANS, added IPs and activated them
Created allow all PASS rules per interface in Firewall.
Result: still totally seperated subnets.

From LAN subnet I can ping 192.168.1.1 and  192.168.10.1 but not a device @ 192.168.10.20
From the VLAN subnet I can ping the device on the same network but not ping anything else.

I have only enable (KEA) DHCP on LAN, the other subnets need fixed IP's and have to be found by mDNS.
I did not tag any ports in my switches yet.

Please help me finding why it is not working as expected. I must be missing something crucial.

Thanks in advance
Bastiaan