If the traffic comes from or goes to the VPN, the rules need to be configured on the organization-wide VPN-rules. VPN traffic is not filtered by L3 Firewall rules. For inter VLAN-traffic, they have to be in the outbound section of the L3 rules. Inbound is for traffic from the WAN.