said by net problem :
internet enters in port 1 directly from the ISP. then from port 3, it goes to a firewall. The firewall takes internet from port 3, transforms it to a protected internet and sends it to port 9, that is part of VLAN 1. so practically the VLAN 2 is DMZ and VLAN 1 is PROTECTED.
You also know this design practically is a major fail security-wise, and introduces a single point of
failure overall? Nevermind you're looping your traffic several times thru the switch... switches do
NOT have any sort of brains against looped traffic.
What make / model firewall are you using here? I also second Anav
's thoughts of not worrying
about the GS1510 and focusing on more what you want your design to do for you.