No internet on lan after configuring Wireguard on separate Vlan

Guys, I'm having a problem configuring Openwrt 23. I want to set up a vlan that has all its traffic passed through the do set up a vlan that uses a wireguard connection (Surfshark) as a wan. So far so good, I've managed to set up this Vlan separately from the Lan and make it work. However, the Lan that would go out through the ISP simply doesn't work anymore after I activate the wireguard one, and I only need to delete the entire configuration for the lan to work again. I think it's something to do with routing, from what I'm reading on the internet, but I haven't figured out how to do it:

What I did:

I installed wireguard on openwrt, and configured Surfshark on it - and created a zone on the firewall specifically for it with the same settings as the wan and marked masquarading

Then I created a vlan.20 on eth.1 going to the access point differentiated to a specific wifi.

I also created an interface with ip 192.168.100.1/24 pointing to vlan.20 to release the IP to the devices and associated it with a zone called vpn.

In the firewall, I made the vpn rule the same as the lan rule but pointing to the wireguard as follows

If you intend to have two networks/vlans, one with access via the wg tunnel and the other with access via the regular wan, you will need policy based routing.

https://openwrt.org/docs/guide-user/network/routing/pbr

because wireguard is a layer3 vpn you can't just put it as a device into a bridge to limit what network it is on, it's just there for everything

you need to use policy routing in order to route via the source address like psherman says, or use a separate device

just one other thing, I guess you could use openvpn instead of wireguard

i'm not sure how much slower it is, but the new thing is the openvpn dco kernel module that's supposed to accelerate it and it seems like you might be able to get it working with openwrt https://github.com/OpenVPN/openvpn-dev-openwrt

DCO is only on OpenVPN 2.6 so only on Main/Snapshot versions and not on 23.05.5.
I tried it and it was disappointing (speedwise).
WireGuard is still much faster (and easier to setup)