Ad Widget

**aspitzer** · 28-02-2023, 00:11

For completeness:
version zabbix-server-mysql-6.2.7-release1.el8.x86_64 on RHEL8.
version zabbix-proxy-mysql-6.2.7-release1.el7.x86_64 on RHEL7 that feeds all the data into the server.

**aspitzer** · 03-03-2023, 21:08

Is this a bug in 6.2.7? If I set the global macro, it does not seem to override the variable for the correct template, only OTHER templates.

I set the following global macros, and added XXX at the front to make it easier to spot the global version:

Global Macros - Admin -> General -> Macros:
{$VFS.FS.FSNAME.NOT_MATCHES} = ^(XXX|/dev|/sys|/run|/proc|.+/shm$|/var/lib/docker/.+|/var/lib/kubelet/.+)
{$NET.IF.IFNAME.NOT_MATCHES} = (XXX|^Software Loopback Interface|^NULL[0-9.]*$|^[Ll]o[0-9.]*$|^[Ss]ystem$|^Nu[0-9.]*$|^veth[0-9a-z]+$|^cali|^flannel|^fw|^tap|docker[0-9]+|br-[a-z0-9]{12})

Now if I go to
Configuration -> Templates -> Linux filesystems by SNMP -> Macros -> Inherited and template macros

{$VFS.FS.FSNAME.NOT_MATCHES} = ^(/dev|/sys|/run|/proc|.+/shm$)
{$NET.IF.IFNAME.NOT_MATCHES} = (XXX|^Software Loopback Interface|^NULL[0-9.]*$|^[Ll]o[0-9.]*$|^[Ss]ystem$|^Nu[0-9.]*$|^veth[0-9a-z]+$|^cali|^flannel|^fw|^tap|docker[0-9]+|br-[a-z0-9]{12})

If I go to
Configuration -> Templates -> Network Generic Devices by SNMP -> Macros -> Inherited and template macros

{$VFS.FS.FSNAME.NOT_MATCHES} = ^(XXX|/dev|/sys|/run|/proc|.+/shm$|/var/lib/docker/.+|/var/lib/kubelet/.+)
{$NET.IF.IFNAME.NOT_MATCHES} = (^Software Loopback Interface|^NULL[0-9.]*$|^[Ll]o[0-9.]*$|^[Ss]ystem$|^Nu[0-9.]*$|^veth[0-9a-z]+$|docker[0-9]+|br-[a-z0-9]{12})

So the Filesystem templates sets the {$NET.IF.IFNAME.NOT_MATCHES} to the global Macro, but not {$VFS.FS.FSNAME.NOT_MATCHES}.
The Network template sets {$VFS.FS.FSNAME.NOT_MATCHES} correctly, but not {$NET.IF.IFNAME.NOT_MATCHES}.

**tim.mooney** · 03-03-2023, 21:37

Originally posted by aspitzer

Is this a bug in 6.2.7? If I set the global macro, it does not seem to override the variable for the correct template, only OTHER templates.

I can't find it right now, but I believe the macro inheritance order is set at the Global level -> set at the template level -> set at the host level

If I'm correct about that (and I might not be, so see if you can find it in the documentation), then a macro set at the Global level will never override a template that has a default setting for the same macro.

You either need to modify the default value for the macro at the template level OR clone the template to a new local copy of the template and then customize that.

**aspitzer** · 03-03-2023, 21:50

Originally posted by tim.mooney

I can't find it right now, but I believe the macro inheritance order is set at the Global level -> set at the template level -> set at the host level

If I'm correct about that (and I might not be, so see if you can find it in the documentation), then a macro set at the Global level will never override a template that has a default setting for the same macro.

You either need to modify the default value for the macro at the template level OR clone the template to a new local copy of the template and then customize that.

I think you are looking for: https://www.zabbix.com/documentation...os/user_macros
However I was interpenetrating it as the order of overloading, where the global is the last one to load/overwrite everyone else.

I thought the whole purpose of a the Global macro was to have a place to configure variables that are shared in a single place. The concrete example is the variable {$VFS.FS.FSNAME.NOT_MATCHES}. This is used an at least 4-5 templates.

I suppose the next question is: Am I supposed to REMOVE the template level Macro {$VFS.FS.FSNAME.NOT_MATCHES} in all the Linux SNMP/Zabbix templates so that it defaults to the Global? Maybe that is the correct procedure?

**aspitzer** · 03-03-2023, 22:02

interpenetrating?!?!? Where did that come from? interpenetrating = interpreting... For some reason the wiki says that "editing my posts is forbidden!"

**aspitzer** · 05-03-2023, 22:33

Okay, I was able to solve this, but I dont understand the logic of having template vars not being able to be overwritten globally.
So I had to change VFS.FS.FSNAME.NOT_MATCHES in like 5 templates. I had to change NET.IF.IFNAME.NOT_MATCHES in like 5 templates. I then had to go to all the templates:
Template --> Discovery Rules and set "Update Interval" to 1h and "Keep lost resources" to 1h (to clean out all the old values) - the default is to keep them for 30d.

After about an hour or so, it looks like the filesystems and interfaces finally cleared out.

**cyber** · 06-03-2023, 11:50

Originally posted by aspitzer

but I don't understand the logic of having template vars not being able to be overwritten globally.

That's just the way it works...

2 User macros

https://www.zabbix.com/documentation/current/en/manual/config/macros/user_macros

Zabbix resolves macros according to the following precedence:

host level macros (checked first)
macros defined for first level templates of the host (i.e., templates linked directly to the host), sorted by template ID
macros defined for second level templates of the host, sorted by template ID
macros defined for third level templates of the host, sorted by template ID, etc.
global macros (checked last)

In other words, if a macro does not exist for a host, Zabbix will try to find it in the host templates of increasing depth. If still not found, a global macro will be used, if exists.

Ad Widget

How to remove discovered filesystems in Linux SNMP

How to remove discovered filesystems in Linux SNMP

Comment

Comment

Comment

Comment

Comment

Comment

Comment