Private Vlan Routing

Unanswered Question


I would like to route to/from my private vlan using an SVI. I have a Cat3560 and the config is below. However, when I try to ping to a router interface on the private vlan I do not get any response. The router i/f ip is and is connected to port F0/1. Can anyone help me please? Config is below.



vlan 32

name v32

private-vlan primary

private-vlan association 99

vlan 99

private-vlan community

interface FastEthernet0/1

switchport private-vlan host-association 32 99

switchport mode private-vlan host

spanning-tree portfast

interface Vlan32

ip address

private-vlan mapping 99


Type escape sequence to abort.

Sending 5, 100-byte ICMP Echos to, timeout is 2 seconds:


Success rate is 0 percent (0/5)

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)

I have checked for any acls and there aren't any applied on the router or the switch. Furthermore, if I put another switchport as part of the private vlan then I can ping between them. This also works, if I configure the port as a promiscuous port for the private vlan. The problem comes into play when I map the private vlan to an SVI. Then I lose layer 3 connectivity.


This Discussion