Hi all.

We've just made the jump to Ubuntu 22.04LTS from Ubuntu 20.04LTS to get SNMP V3 AES 256/SHA256 support (rather than recompile), and moved our MySQL database over after a few months of "good" operation under 6.0.19 using SNMP V2c.

We've successfully changed all our hosts from SNMP V2 to V3, but am now struggling to get a new host using the exact same template, functional, and I'm trying to work out if it's an issue with the host (not under our control), or our zabbix config; but i'm currently pointing at Zabbix.

The new host is a clone of an existing functional host, with the IP address changed. While SNMPWalk and individual tests in Zabbix work, Zabbix is declaring the host unavailable and is getting no SNMP data from the hos.
​
I'm therefore using wireshark to try and debug the issue, and have the SNMP v3 user credentials setup in Wireshark.

In Wireshark, i can see Zabbix requests to the new host's ip address, requesting 1.3.6.1.6.3.15.1.1.4.0 (SNMP V2 Agent availability) which are replied to by the host and is incrementing; Zabbix then send a second request, which Wireshark varies between reporting as "malformed" or that the "Decrypted Data not formatted as expected" ; therefore I'm assuming that the host is dropping them.

I can see any individual item tests or the SNMP Walk being sent and reported all ok in wireshark - no malformed packets etc.

I'm aware that previous versions of Zabbix had an instance where the SNMP community wasn't used in Test but was in "real" ([ZBX-17886] Zabbix 5.0.1 LLD Test Issue - ZABBIX SUPPORT) so tests worked but normal operation didn't; as such i've made sure that the {$SNMP_COMMUNITY} macro is set to "empty", but no change.

As far as I can tell, No other relevant macro's are copied across to the new host.

Any help most appreciated!
​