Mikrotik + DHCP + DHCP relay + 2 VLANs, how to implement?

Colleagues, good afternoon.
I want to implement video surveillance and a WI-FI network in separate VLANs on Mikrotik.
Approximate network diagram:

Now 1 network 10.0.100.0/24 is involved (DHCP is distributed on a Windows server) with CAPsMAN raised on the gateway, a possible future VLAN 100 (is it also worth driving the main network into a VLAN?)
It is planned to use 2 more, on which I wanted I would like to separate traffic, but leave access from 1 to another:
2 network for WI-FI devices 10.0.101.0/24 I wanted to add to VLAN 101
3 network for video surveillance 10.0.102.0/24, respectively, in VLAN 102
I plan to do everything on the gateway and on devices on the diagram.
As I understand it:
VLAN created on port = tagged port
VLAN + Bridge + Port = access port
Several VLANs per port = trunk port
Obtained on GATEWAY RB3011UiAS 10.0.100.1 needs a trunk port for CRS125-24G-1S (10.0.100.200) for several VLANs (video surveillance, main network and WI-FI, on I didn’t draw a diagram) + access ports for HP switches and access ports for Wi-Fi devices and distribute through them via DHCP relay addresses from the main DHCP server.
I have never implemented VLAN and, moreover, on MIKROTIK. Can you tell me if I'm planning correctly and how best to implement it?