@Francesco Molino _ thanks for the wonderful explanation. So in Option 3 the VLAN gateways will sit on firewall and there will be L3 routing bw Spine & Firewall so that any inter-vlan comms will happen on the Firewall (as FW is supposed to be hosting...
