Not sure what you're accessing over public networks or how you're doing it, but the bottom line is if you're accessing LAN based resources unencrypted you have more to worry about than using a VPN.
If you have LAN resources that you need to access remotely (i.e non web accessible resources) then yes you'll want a VPN and in some cases it's prudent to have a web server based application not exposed to the internet and made only accessible via LAN/VPN
Most higher end firewalls (watchguard, sonic wall etc) provide a functionality for a built in VPN server that can ingrate with your existing active directory, RADIUS or just use local authentication to the appliance.
If you're working on quickbooks for example I would VPN -> RDP to the QB Server
If you're using Quickbooks online well just use that..
Also, I wouldn't get to hung up with hosting your own email server, I would look into Gmail for business, office365, hosted exchange or what have you.
If you go with Office365 you can get sharepoint & one drive which basically solves the problem of needing a file server (for the most part) you can mount sharepoint sites via WEBDAV (they show up just like a mounted file share) to access files conventionally or use the sharepoint frontend. Office has sharepoint integration etc etc.
Keep in mind that virtually anything you can do with Office365 your an roll your own and self host as well and even migrate back and forth or run hybrid environments which all of this (I'm guessing) is probably not in your repertoire.
ETA: it appears you're in Texas, if you're local to me (Houston) I would be happy to have a beer and help you.