I saw this, but nothing on how to apply to VLANs. 

It would basically be the same ie. an SVI is just a L3 interface so in the document they are using physical interfaces but you should be able to apply the NAT commands to the SVIs eg. 

int vlan <vlan ID>
ip address x.x.x.x y.y.y.y
ip nat inside

etc.

Jon

seems I applied as such to my config below. What would be incorrect?

If you like to apply NAT config basic rule is  for that  VLAN  should belong to Physical port first , then you can add SVI Interace, if the Physical port in Layer3 interface, SVI VLAN not going to work

Also are you looking inside and outside  both VLAN SVI ?

can you post show run complete, so we can suggest better.

I have 16.12.4 ios

I believe the issue is I may need a good example configuration of how to setup both VLANs (public and private) and NAT settings.

I have cable from ISP switch a cable going from WLC on L2/L3 interface.

Do you have HSRP, how is your network diagram look like ?

for setup to work, start with basic ACL and start building once working basic setup.

post show run (fuill config)

Yes we do HSRP. VLAN xxx is not configured a such for ISP.

VLAN xxx is.

Removed

You have applied the same acl to multiple interfaces in both directions which really doesn't make sense as well as the last two lines being redundant as "permit ip any any" covers those. 

For the NAT you need to define the traffic and configure a NAT statement so in the document look at the dynamic NAT overload (PAT) section ie. create an acl for the traffic you want to NAT and then a NAT statement as in the document. 

Jon

We do not want ISP traffic to reach other VLANs, any good recommendations?