Vlan1 On Primary LAN Interface

I do have a VLAN switch and have several Vlans on it, but on the primary interface LAN1 (192.168.1.1/24) for example you cannot tag a VLAN to it. There is no option to do that.

Can you post a config on what this will look like? I understand and do not want to lock myself out of it, but I was told by tech support this is NOT possible. I would want to configure VLAN10 to be native Ethernet (192.168.1.1/24). Can you post a sample config? Is that possible or do I need a whole new IP subnet?

Would this config work? All I want to do is tag the primary Native Ethernet Interface.

Object-Address

Network-Interface

Internal Profile

I know I cannot have 192.1681.1/24 in VLAN10 as LAN1 profile has 192.168.1.1/24 in it so that is why I am lost on how this would look. What would I need to change or is this correct? I know I am probably missing something here.

Thank you.

This does not make sense.

How would I get rid of the native Ethernet (LAN1) interface when all my other Vlans are tied back to the LAN1 port profile? Isn't that profile (LAN1) actually tied to the physical Ethernet port? How can the VLAN10 profile be associated to the physical Ethernet port?

Can you please be more descriptive?

I do appreciate your help.

I am so sorry I am still not following you. I can tell you are the expert, but I might need you to simplify it for me. I am an intermediate user and understand the concepts but trying to understand how the physical interface will associate itself with the new VLAN10 that I have currently setup. The LAN1 profile, which is assigned to Ethernet P5 has the IP Address 192.168.1.1/24. When I disable that profile how would my VLAN10 profile know to route traffic through the physical Ethernet(P5) port without having the LAN1 profile available, which has the physical port assigned to it. It is not about deleting anything or disabling the LAN1 profile but understanding how the config looks without locking myself out, but how the configuration looks. Can you please provide me a small sample config, so I understand it? Screenshots will help out to illustrate this. Thank you very much for your help.

I did a test run and tried to reach the new ip of 192.168.88.1/24 on VLAN10 and was not able to reach it from another machine. Once you change it how am I supposed to log back into the VLAN10 interface. All my switches have been set to VLAN10 and that is there native VLAN. I just tried to ping the interface 192.168.88.1 and did not get a response and that is putting a static in my laptop NIC with the DG of 192.168.88.1. This is what confuses me.

If I set one of my laptops to 192.168.88.10 I should be able to ping 192.168.88.1 right?

That is my backdoor to change the VLAN10 to 192.168.1.1/24. Is the below object set right. See below:

Here is the configuration of the port that the laptop is plugged into. So there should be no reason why I can not reach 192.168.88.1/24 as my DG for Vlan10. See below:

This is the port the USG Flex 500H is plugged into. See below:

This is why I get confused with this firewall. I understand how it works, but this firewall is a little convoluted IMO. Thank you.