I don't understand, why do you need extra router. But to provide VPN-connection to laptop you should create zone for tun adapter, and enable forwarding with masquerading to it. Problem with DHCP I don't understand, the question, what router DHCP-server is running on?