SNMPv3 authPriv not working for specific vendor. #104

gcasella · 2022-09-22T15:27:31Z

Issue Description

When doing SNMPv3 to as specific Networking Vendor, it will throw an exception
puresnmp.exc.SnmpError: Error response from remote device: Not in time window

I have configured SNMPv3 with authPriv on the device, and using normal linux snmpwalk or even another package of easysnmp2 it works just fine hitting this specific device.

Doing some debugging on some of the source code https://github.com/exhuma/puresnmp/blob/develop/puresnmp_plugins/security/usm.py

I was able to pull the following, when executing my code when it attempts to validate_usm_message it never comes as an encrypted message.

HexDump

If the issue you are reporting relates to data conversion, or other related
issues about the data transferred over the wire, please include a hexdump of
the data in your bug report.

Otherwise leave this section empty.

The easiest way to do this is to enable debug logging:

Code:

import asyncio
import logging
from puresnmp import Client, ObjectIdentifier, V2C, V3, exc
from typing import List
from puresnmp.credentials import Auth, Priv

async def snmp(devices: List):
 output = list()
 for device in devices:
     try:
         snmp_v3_client = Client(device, V3(username="snmpv3user", auth=Auth(b"snmpv3password", "sha1"), priv=Priv(b"snmpv3password", "aes")))
         snmp_v3_client.configure(timeout=5, retries=1)
         result = snmp_v3_client.walk(ObjectIdentifier("1.3.6.1.2.1.1"))
         res = dict()
         async for row in result:
             print(row)
             varbind, value = row
             if isinstance(value.value, bytes):
                 value = value.value.decode('utf-8')
             else:
                 value = value.value
             if ObjectIdentifier('1.3.6.1.2.1.1.1.0') == varbind:
                 varbind_name = "sysDescr"
             elif ObjectIdentifier('1.3.6.1.2.1.1.2.0') == varbind:
                 varbind_name = "sysObjectID"
             elif ObjectIdentifier('1.3.6.1.2.1.1.3.0') == varbind:
                 varbind_name = "sysUpTime"
             elif ObjectIdentifier('1.3.6.1.2.1.1.4.0') == varbind:
                 varbind_name = "sysContact"
             elif ObjectIdentifier('1.3.6.1.2.1.1.5.0') == varbind:
                 varbind_name = "sysName"
             elif ObjectIdentifier('1.3.6.1.2.1.1.6.0') == varbind:
                 varbind_name = "sysLocation"
             elif ObjectIdentifier('1.3.6.1.2.1.1.7.0') == varbind:
                 varbind_name = "sysServices"
             res[varbind_name] = value
         res['snmp_version'] = "v3"
         output.append(res)
         # return res
     except exc.Timeout:
         logger.error(f"{device} timeout for snmpv3")
         return (f"{device} timeout for snmpv3")
 return output

res = asyncio.run(snmp(["192.168.1.1"]))

Exception:

PlainMessage(version=Integer(3), header=HeaderData(message_id=1663860248, message_max_size=2000, flags=V3Flags(auth=True, priv=False, reportable=False), security_model=3), security_parameters=b'02\x04\x0b\x80\x00\x19V\x03,\xfa\xa2\xb9z\x97\x02\x01\x0c\x02\x04\x01\xa3\xe4\xb4\x04\nsnmpv3user\x04\x0c<\x867\x0bG\x1ds\x82)\xba\x84\x13\x04\x00', scoped_pdu=ScopedPDU(context_engine_id=OctetString(b'\x80\x00\x19V\x03,\xfa\xa2\xb9z\x97'), context_name=OctetString(b''), data=Report(0, [VarBind(oid=ObjectIdentifier('1.3.6.1.6.3.15.1.1.2.0'), value=Counter(1276172))]))) <puresnmp.credentials.V3> USMSecurityParameters(authoritative_engine_id=b'\x80\x00\x19V\x03,\xfa\xa2\xb9z\x97', authoritative_engine_boots=12, authoritative_engine_time=27518132, user_name=b'snmpv3user', auth_params=b'<\x867\x0bG\x1ds\x82)\xba\x84\x13', priv_params=b'')
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! PlainMessage(version=Integer(3), header=HeaderData(message_id=1663860248, message_max_size=2000, flags=V3Flags(auth=True, priv=False, reportable=False), security_model=3), security_parameters=b'02\x04\x0b\x80\x00\x19V\x03,\xfa\xa2\xb9z\x97\x02\x01\x0c\x02\x04\x01\xa3\xe4\xb4\x04\nsnmpv3user\x04\x0c<\x867\x0bG\x1ds\x82)\xba\x84\x13\x04\x00', scoped_pdu=ScopedPDU(context_engine_id=OctetString(b'\x80\x00\x19V\x03,\xfa\xa2\xb9z\x97'), context_name=OctetString(b''), data=Report(0, [VarBind(oid=ObjectIdentifier('1.3.6.1.6.3.15.1.1.2.0'), value=Counter(1276172))])))
Traceback (most recent call last):
  File "/usr/lib/python3.9/code.py", line 90, in runcode
    exec(code, self.locals)
  File "<input>", line 45, in <module>
  File "/usr/lib/python3.9/asyncio/runners.py", line 44, in run
    return loop.run_until_complete(main)
  File "/usr/lib/python3.9/asyncio/base_events.py", line 647, in run_until_complete
    return future.result()
  File "<input>", line 15, in snmp
  File "/home/user/venv/lib/python3.9/site-packages/puresnmp/api/raw.py", line 433, in walk
    async for row in self.multiwalk([oid], errors=errors):
  File "/home/user/venv/lib/python3.9/site-packages/puresnmp/api/raw.py", line 470, in multiwalk
    varbinds = await fetcher(oids)
  File "/home/user/venv/lib/python3.9/site-packages/puresnmp/api/raw.py", line 535, in multigetnext
    response_object = await self._send(pdu, request_id)
  File "/home/user/venv/lib/python3.9/site-packages/puresnmp/api/raw.py", line 355, in _send
    response = self.mpm.decode(raw_response, self.credentials)
  File "/home/user/venv/lib/python3.9/site-packages/puresnmp_plugins/mpm/v3.py", line 61, in decode
    msg = self.security_model.process_incoming_message(message, credentials)
  File "/home/user/venv/lib/python3.9/site-packages/puresnmp_plugins/security/usm.py", line 448, in process_incoming_message
    validate_usm_message(message)
  File "/home/user/venv/lib/python3.9/site-packages/puresnmp_plugins/security/usm.py", line 559, in validate_usm_message
    raise SnmpError(f"Error response from remote device: {msg}")
puresnmp.exc.SnmpError: Error response from remote device: Not in time window

SNMPWALK:

snmpwalk -v3 -l authPriv -u snmpv3user -a SHA -A "snmpv3password" -x AES -X "snmpv3password" 192.168.1.1 system

SNMPv2-MIB::sysDescr.0 = STRING: Alcatel-Lucent OS6450-P10S 6.7.2.49.R01 GA, March 31, 2017.
SNMPv2-MIB::sysObjectID.0 = OID: SNMPv2-SMI::enterprises.6486.800.1.1.2.1.12.1.14
DISMAN-EVENT-MIB::sysUpTimeInstance = Timeticks: (2751846800) 318 days, 12:01:08.00
SNMPv2-MIB::sysContact.0 = STRING: Alcatel-Lucent, http://alcatel-lucent.com/wps/portal/enterprise
SNMPv2-MIB::sysName.0 = STRING: Router1
SNMPv2-MIB::sysLocation.0 = STRING: Unknown
SNMPv2-MIB::sysServices.0 = INTEGER: 78

As you can see from the above it shows a PlainMessage() coming in. When it test this towards another vendor such as Cisco or Juniper, it'll show an Encrypted message instead.

Are there any other debugging steps i could attempt?
This will display the raw bytes which help a lot in debugging the issue.

The text was updated successfully, but these errors were encountered:

exhuma · 2022-09-22T18:37:00Z

Oh... this is going to be a fun one to dig into. One thing that would help me is to include the debug-logging if you can. Note that this will include encrypted bytes and - if possible - you should change the privacy-/encryption-key and the auth-password to something safe (i.e. not your real password/key) before executing the script with debug logging.

Encryption is notoriously hard to debug and having the debug logs, which include the exchanged packets will make this a tiny bit less difficult.

To do this, simply add the following two lines to the top of your script:

import logging
logging.basicConfig(level=logging.DEBUG, filename="debug.log")

and then add the contents of debug.log to this thread.

Again, I can't repeat this often enough: Change your auth-password and priv-key before doing that. Otherwise you will share your secrets publicly in this thread 😉

gcasella · 2022-09-22T19:05:51Z

Don't worry, the credentials used here were created just for this ticket on the device so i don't share secret credentials in this thread.

Here is the debug.log

DEBUG:asyncio:Using selector: EpollSelector
DEBUG:puresnmp.api.raw:Walking on 1 OIDs using multigetnext
DEBUG:puresnmp.transport:Sending packet to 192.168.1.1:161
30 3e 02 01 03 30 11 02  04 63 2c b1 b8 02 03 00   0>...0...c,.....
ff e3 04 01 04 02 01 03  04 10 30 0e 04 00 02 01   ..........0.....
00 02 01 00 04 00 04 00  04 00 30 14 04 00 04 00   ..........0.....
a0 0e 02 04 63 2c b1 b8  02 01 00 02 01 00 30 00   ....c,........0.
                                                   
DEBUG:puresnmp.transport:Received packet from 192.168.1.1:161:
30 66 02 01 03 30 10 02  04 63 2c b1 b8 02 02 07   0f...0...c,.....
d0 04 01 00 02 01 03 04  1b 30 19 04 0b 80 00 19   .........0......
56 03 2c fa a2 b9 7a 97  02 01 00 02 01 00 04 00   V.,...z.........
04 00 04 00 30 32 04 0b  80 00 19 56 03 2c fa a2   ....02.....V.,..
b9 7a 97 04 00 a8 21 02  04 63 2c b1 b8 02 01 00   .z....!..c,.....
02 01 00 30 13 30 11 06  0a 2b 06 01 06 03 0f 01   ...0.0...+......
01 04 00 41 03 13 7b 46                            ...A..{F
DEBUG:puresnmp.transport:Socket closed
DEBUG:puresnmp.transport:Sending packet to 192.168.1.1:161
30 81 83 02 01 03 30 11  02 04 63 2c b1 b8 02 03   0.....0...c,....
00 ff e3 04 01 07 02 01  03 04 39 30 37 04 0b 80   ..........907...
00 19 56 03 2c fa a2 b9  7a 97 02 01 00 02 01 00   ..V.,...z.......
04 0a 73 6e 6d 70 76 33  75 73 65 72 04 0c de b8   ..snmpv3user....
74 d2 64 14 ad 01 60 cc  c9 35 04 08 e7 bc 28 ce   t.d...`..5....(.
1c 1a 1e 90 04 30 5a d9  9a 4d 60 c2 ac 97 35 85   .....0Z..M`...5.
2a 5a 73 f8 b1 59 7b a0  20 52 74 9f 7e 52 a3 67   *Zs..Y{. Rt.~R.g
98 f2 6c 51 d3 78 26 61  ff 97 75 f8 2b 9a 97 15   ..lQ.x&a..u.+...
9d 7c 00 9d c9 9f                                  .|....
DEBUG:puresnmp.transport:Received packet from 192.168.1.1:161:
30 7c 02 01 03 30 10 02  04 63 2c b1 b8 02 02 07   0|...0...c,.....
d0 04 01 01 02 01 03 04  34 30 32 04 0b 80 00 19   ........402.....
56 03 2c fa a2 b9 7a 97  02 01 0c 02 04 01 a4 18   V.,...z.........
54 04 0a 73 6e 6d 70 76  33 75 73 65 72 04 0c f9   T..snmpv3user...
84 d5 47 dd bd 84 46 ae  e5 43 ae 04 00 30 2f 04   ..G...F..C...0/.
0b 80 00 19 56 03 2c fa  a2 b9 7a 97 04 00 a8 1e   ....V.,...z.....
02 01 00 02 01 00 02 01  00 30 13 30 11 06 0a 2b   .........0.0...+
06 01 06 03 0f 01 01 02  00 41 03 13 7b 5a         .........A..{Z
DEBUG:puresnmp.transport:Socket closed

exhuma · 2022-09-22T19:14:25Z

Thank you for the debug log. I hope this will lead me onto the right track. Again, considering that this is encrypted it's not going to be trivial and I can't give you a good time estimate.

the credentials used here were created just for this ticket

Perfect. So I assume the values you used were the same as in the original ticket (that is: username=snmpv3user, password=snmpv3password and privkey=snmpv3password). This will allow me do decrypt the payload and look further into the exchanged data.

gcasella · 2022-09-22T19:19:13Z

That's right! Same values from the original ticket.
Let me know if there's anything else you want me to try out.

exhuma · 2022-09-22T19:21:17Z

A quick "from the top-of-my-head" analysis:

My suspicion is that it has something to do with the "discovery message". We can see in the debug log 2 request/response pairs are exchanged. The first is most likely the "discovery" packet in which the client (in this case puresnmp) "asks" the network device for a few pieces of information which is necessary for encryption. One of which is the current "uptime" of the device (if I recall correctly). This is used to avoid/mitigate timing attacks.

Considering that the error message we get says "Not in time window" leads me to believe that it has something to do with that.

Now for some wild guessing: The "time-window" message might suggest that the message which follows the discovery message comes too late. Either there's a latency problem (but that's unlikely given that other tools work), or the second message messes up the timing information. But the latter is also unlikely given that it works for other devices. OR, the device is suuuuuper fussy and really expects packets to be exchanged extremely fast.

We'll see. The above is just a summary for myself and whoever is stumbling across this.

exhuma · 2022-09-26T05:14:31Z

As an update: I'm still working on this. I ran into an unexpected side effect with pycrypto (it's no longer supported) and needed to switch to cryptography instead. I have to deal with that first or puresnmp will break in the near future anyhow.

This is unrelated and switching to cryptography will surely not fix this "out of time window" issue, but it currently prevents me from digging deeper into it.

exhuma · 2022-09-27T07:06:14Z

I found something that could explain the behaviour and am working on a solution. It might take a couple of days as I'm currently swamped with a project with higher priority.

I might need your help in verifying the behaviour as - at the moment - I don't have a device which triggers this error myself.

gcasella · 2022-09-27T13:05:44Z

No problem at all on the timeline. I am more than happy to assist in the testing of this as well!

gcasella · 2022-10-26T23:57:54Z

Hey Hey!
Just checking in to see how things are going with this request.

exhuma · 2022-10-29T07:35:54Z

Hi. Sorry for the radio silence. A couple of bumpy weeks at the office and this issue needed me to dig in deeper into the RFCs as expected.

My biggest slowdown right now is that I have no physical device that lets me reproduce the issue so I need to triple and quadruple check that I implement it properly.

I have now the pre-release 2.0.1a1 ready for this bugfix: https://pypi.org/project/puresnmp/2.0.1a1/#history

My internal tests seem fine but I don't know yet if it fixes this issue right here. This depends on the exact behaviour of the device you are interfacing with. Your packet trace shows me that it returns 0 for the timing values during the initial discovery phase. And as far as I can tell that is RFC compliant. It just happens that most devices return the time-sync information in the initial discovery phase making the second packet-exchange unnecessary, which is why this has not manifested itself until now.

The updated implementation should now detect the 0 values and send a second discovery-packed to get the time-sync information. I hope this will fix your issue. I also hope that this does not break anything unexpectedly. But I can run this against a few thousand devices soonish which should hopefully surface any unexpected side-effects.

When you have the time, give 2.0.1a1 a spin and let me know how it goes :)

gcasella · 2022-10-29T16:48:22Z

No need to apologize!!
I'll give it a shot today and let you know the result.

gcasella · 2022-10-29T17:42:48Z

Hey @exhuma this is what I'm getting now;

Traceback (most recent call last):
  File "/usr/lib/python3.10/code.py", line 90, in runcode
    exec(code, self.locals)
  File "<input>", line 1, in <module>
  File "/usr/lib/python3.10/asyncio/runners.py", line 44, in run
    return loop.run_until_complete(main)
  File "/usr/lib/python3.10/asyncio/base_events.py", line 646, in run_until_complete
    return future.result()
  File "<input>", line 15, in snmp
  File "/opt/wnce/development/venv-3.10/lib/python3.10/site-packages/puresnmp/api/raw.py", line 426, in walk
    async for row in self.multiwalk([oid], errors=errors):
  File "/opt/wnce/development/venv-3.10/lib/python3.10/site-packages/puresnmp/api/raw.py", line 463, in multiwalk
    varbinds = await fetcher(oids)
  File "/opt/wnce/development/venv-3.10/lib/python3.10/site-packages/puresnmp/api/raw.py", line 528, in multigetnext
    response_object = await self._send(pdu, request_id)
  File "/opt/wnce/development/venv-3.10/lib/python3.10/site-packages/puresnmp/api/raw.py", line 335, in _send
    packet, _ = await self.mpm.encode(
  File "/opt/wnce/development/venv-3.10/lib/python3.10/site-packages/puresnmp_plugins/mpm/v3.py", line 83, in encode
    self.disco = await self.security_model.send_discovery_message(
  File "/opt/wnce/development/venv-3.10/lib/python3.10/site-packages/puresnmp_plugins/security/usm.py", line 583, in send_discovery_message
    out = await self.initial_timesync(
  File "/opt/wnce/development/venv-3.10/lib/python3.10/site-packages/puresnmp_plugins/security/usm.py", line 618, in initial_timesync
    authoritative_engine_boots=response.authoritative_engine_boots,
AttributeError: 'PlainMessage' object has no attribute 'authoritative_engine_boots'

Also while trying with a juniper EX4300-24T (regular snmpwalk works) But now i'm seeing this;
You can see from the below, only two varbinds are being returned, and after the oid 1.3.6.1.2.1.1.2.0 is returned, that message appears. -- Didn't see this one before but it is also present in 2.0.0

The next mib should be DISMAN-EVENT-MIB::sysUpTimeInstance = Timeticks: (1437383849) for uptime.

VarBind(oid=ObjectIdentifier('1.3.6.1.2.1.1.1.0'), value=OctetString(b'Juniper Networks, Inc. ex4300-24t Ethernet Switch, kernel JUNOS 17.4R3-S5.2, Build date: 2021-06-22 15:42:59 UTC Copyright (c) 1996-2021 Juniper Networks, Inc.'))
VarBind(oid=ObjectIdentifier('1.3.6.1.2.1.1.2.0'), value=ObjectIdentifier('1.3.6.1.4.1.2636.1.1.1.2.63'))
Traceback (most recent call last):
  File "/usr/lib/python3.10/code.py", line 90, in runcode
    exec(code, self.locals)
  File "<input>", line 1, in <module>
  File "/usr/lib/python3.10/asyncio/runners.py", line 44, in run
    return loop.run_until_complete(main)
  File "/usr/lib/python3.10/asyncio/base_events.py", line 646, in run_until_complete
    return future.result()
  File "<input>", line 15, in snmp
  File "/opt/wnce/development/venv-3.10/lib/python3.10/site-packages/puresnmp/api/raw.py", line 426, in walk
    async for row in self.multiwalk([oid], errors=errors):
  File "/opt/wnce/development/venv-3.10/lib/python3.10/site-packages/puresnmp/api/raw.py", line 475, in multiwalk
    varbinds = await fetcher(next_fetches)
  File "/opt/wnce/development/venv-3.10/lib/python3.10/site-packages/puresnmp/api/raw.py", line 528, in multigetnext
    response_object = await self._send(pdu, request_id)
  File "/opt/wnce/development/venv-3.10/lib/python3.10/site-packages/puresnmp/api/raw.py", line 348, in _send
    response = self.mpm.decode(raw_response, self.credentials)
  File "/opt/wnce/development/venv-3.10/lib/python3.10/site-packages/puresnmp_plugins/mpm/v3.py", line 61, in decode
    msg = self.security_model.process_incoming_message(message, credentials)
  File "/opt/wnce/development/venv-3.10/lib/python3.10/site-packages/puresnmp_plugins/security/usm.py", line 469, in process_incoming_message
    verify_authentication(message, credentials, security_params)
  File "/opt/wnce/development/venv-3.10/lib/python3.10/site-packages/puresnmp_plugins/security/usm.py", line 333, in verify_authentication
    raise AuthenticationError(
puresnmp_plugins.security.usm.AuthenticationError: Incoming message could not be authenticated!

exhuma · 2022-10-30T09:10:55Z

Huh... that is interesting. And it's hard to tell just from the tracebacks, without seeing the exchanged packets. Could you maybe run both requests using snmpwalk on the CLI using the -d flag to see the exchanged packets? I must have misinterpreted something somewhere in the RFCs.

gcasella · 2022-10-30T16:20:29Z

Here's the -d related to the traceback AttributeError: 'PlainMessage' object has no attribute 'authoritative_engine_boots'

Sending 64 bytes to UDP: [10.252.242.59]:161->[0.0.0.0]:0
0000: 30 3E 02 01  03 30 11 02  04 29 7B E7  5D 02 03 00    0>...0...){.]...
0016: FF E3 04 01  04 02 01 03  04 10 30 0E  04 00 02 01    ..........0.....
0032: 00 02 01 00  04 00 04 00  04 00 30 14  04 00 04 00    ..........0.....
0048: A0 0E 02 04  46 AA 31 32  02 01 00 02  01 00 30 00    ....F.12......0.


Received 104 byte packet from UDP: [10.252.242.59]:161->[0.0.0.0]:46559
0000: 30 66 02 01  03 30 10 02  04 29 7B E7  5D 02 02 07    0f...0...){.]...
0016: D0 04 01 00  02 01 03 04  1B 30 19 04  0B 80 00 19    .........0......
0032: 56 03 94 24  E1 49 45 1D  02 01 00 02  01 00 04 00    V..$.IE.........
0048: 04 00 04 00  30 32 04 0B  80 00 19 56  03 94 24 E1    ....02.....V..$.
0064: 49 45 1D 04  00 A8 21 02  04 46 AA 31  32 02 01 00    IE....!..F.12...
0080: 02 01 00 30  13 30 11 06  0A 2B 06 01  06 03 0F 01    ...0.0...+......
0096: 01 04 00 41  03 06 26 DC                              ...A..&.


Sending 131 bytes to UDP: [10.252.242.59]:161->[0.0.0.0]:0
0000: 30 81 80 02  01 03 30 11  02 04 29 7B  E7 5C 02 03    0.....0...){.\..
0016: 00 FF E3 04  01 07 02 01  03 04 39 30  37 04 0B 80    ..........907...
0032: 00 19 56 03  94 24 E1 49  45 1D 02 01  00 02 01 00    ..V..$.IE.......
0048: 04 0A 73 6E  6D 70 76 33  75 73 65 72  04 0C F1 33    ..snmpv3user...3
0064: 6D 6D 06 7C  3B 8C 76 50  6C 48 04 08  82 E1 C4 81    mm.|;.vPlH......
0080: E2 55 B6 2A  04 2D CB E5  3E DD 5C 51  42 A6 9F 9C    .U.*.-..>.\QB...
0096: AD 85 9F 50  3B 73 3F 09  16 E2 D8 C7  03 5B 16 1B    ...P;s?......[..
0112: 3A 95 EC 20  7C 5A FA 61  36 0C 72 EC  FA 6C BB 8F    :.. |Z.a6.r..l..
0128: F7 4B B3                                              .K.


Sending 131 bytes to UDP: [10.252.242.59]:161->[0.0.0.0]:0
0000: 30 81 80 02  01 03 30 11  02 04 29 7B  E7 5E 02 03    0.....0...){.^..
0016: 00 FF E3 04  01 07 02 01  03 04 39 30  37 04 0B 80    ..........907...
0032: 00 19 56 03  94 24 E1 49  45 1D 02 01  00 02 01 01    ..V..$.IE.......
0048: 04 0A 73 6E  6D 70 76 33  75 73 65 72  04 0C 96 EF    ..snmpv3user....
0064: 70 FE 81 6F  33 F3 66 F7  E4 4C 04 08  82 E1 C4 81    p..o3.f..L......
0080: E2 55 B6 2B  04 2D 43 0B  2F ED 51 EF  3D 55 60 12    .U.+.-C./.Q.=U`.
0096: 86 E1 31 99  C5 6D 71 5B  9F A1 B6 27  6A 2A CF CB    ..1..mq[...'j*..
0112: F2 66 FE AA  4B 96 A5 31  7C 47 71 D7  56 62 1D DD    .f..K..1|Gq.Vb..
0128: 63 69 B8                                              ci.


Received 126 byte packet from UDP: [10.252.242.59]:161->[0.0.0.0]:46559
0000: 30 7C 02 01  03 30 10 02  04 29 7B E7  5E 02 02 07    0|...0...){.^...
0016: D0 04 01 01  02 01 03 04  34 30 32 04  0B 80 00 19    ........402.....
0032: 56 03 94 24  E1 49 45 1D  02 01 0C 02  04 00 8C D8    V..$.IE.........
0048: 84 04 0A 73  6E 6D 70 76  33 75 73 65  72 04 0C 13    ...snmpv3user...
0064: D2 9C DB FB  7C A3 57 77  0D CE 6C 04  00 30 2F 04    ....|.Ww..l..0/.
0080: 0B 80 00 19  56 03 94 24  E1 49 45 1D  04 00 A8 1E    ....V..$.IE.....
0096: 02 01 00 02  01 00 02 01  00 30 13 30  11 06 0A 2B    .........0.0...+
0112: 06 01 06 03  0F 01 01 02  00 41 03 06  26 6F          .........A..&o


Sending 134 bytes to UDP: [10.252.242.59]:161->[0.0.0.0]:0
0000: 30 81 83 02  01 03 30 11  02 04 29 7B  E7 5F 02 03    0.....0...){._..
0016: 00 FF E3 04  01 07 02 01  03 04 3C 30  3A 04 0B 80    ..........<0:...
0032: 00 19 56 03  94 24 E1 49  45 1D 02 01  0C 02 04 00    ..V..$.IE.......
0048: 8C D8 84 04  0A 73 6E 6D  70 76 33 75  73 65 72 04    .....snmpv3user.
0064: 0C 08 92 05  8D B2 70 89  8D 3D 8B 0C  50 04 08 82    ......p..=..P...
0080: E1 C4 81 E2  55 B6 2C 04  2D 39 BF F1  13 7E 65 CB    ....U.,.-9...~e.
0096: A1 1B C7 D1  0D 55 EE 10  19 49 C6 6C  68 4E 56 E5    .....U...I.lhNV.
0112: 89 05 19 FF  10 DC 56 0E  42 2A 32 FF  9C F2 0C 71    ......V.B*2....q
0128: A5 0C 63 75  C6 E4                                    ..cu..


Received 209 byte packet from UDP: [10.252.242.59]:161->[0.0.0.0]:46559
0000: 30 81 CE 02  01 03 30 10  02 04 29 7B  E7 5F 02 02    0.....0...){._..
0016: 07 D0 04 01  03 02 01 03  04 3C 30 3A  04 0B 80 00    .........<0:....
0032: 19 56 03 94  24 E1 49 45  1D 02 01 0C  02 04 00 8C    .V..$.IE........
0048: D8 84 04 0A  73 6E 6D 70  76 33 75 73  65 72 04 0C    ....snmpv3user..
0064: 08 B8 F9 43  4E FB 7A EF  2C 2B 36 2E  04 08 00 00    ...CN.z.,+6.....
0080: 00 00 00 42  47 EE 04 79  92 CE 7A 9E  FD DE 73 CB    ...BG..y..z...s.
0096: FA AB 27 A4  64 AE 69 36  E6 EC 6B B9  2F 15 B7 A5    ..'.d.i6..k./...
0112: AD 36 35 A4  2E C0 D9 14  AE 2F 02 C8  DD B6 F3 83    .65....../......
0128: 3A 6C C5 AC  E1 8A F0 86  9E 6A 6D D4  52 AE 25 E5    :l.......jm.R.%.
0144: AD 58 20 0E  92 0D C7 46  55 B2 F3 67  74 99 64 1F    .X ....FU..gt.d.
0160: BF D3 D1 7E  8F 70 A4 4C  07 AC FC 03  DA 80 27 BC    ...~.p.L......'.
0176: AD 72 6D F3  97 71 F0 AB  9D 53 BF A9  C2 DC EC D4    .rm..q...S......
0192: A9 CE 83 C5  72 5E 9F ED  57 DA 54 A6  D0 D9 32 C2    ....r^..W.T...2.
0208: E2                                                    .

SNMPv2-MIB::sysDescr.0 = STRING: Alcatel-Lucent Enterprise OS6450-P10S 6.7.2.102.R07 GA, February 03, 2020.

Sending 136 bytes to UDP: [10.252.242.59]:161->[0.0.0.0]:0
0000: 30 81 85 02  01 03 30 11  02 04 29 7B  E7 60 02 03    0.....0...){.`..
0016: 00 FF E3 04  01 07 02 01  03 04 3C 30  3A 04 0B 80    ..........<0:...
0032: 00 19 56 03  94 24 E1 49  45 1D 02 01  0C 02 04 00    ..V..$.IE.......
0048: 8C D8 84 04  0A 73 6E 6D  70 76 33 75  73 65 72 04    .....snmpv3user.
0064: 0C CD 01 DA  21 3C C7 74  DC BB 61 6E  03 04 08 82    ....!<.t..an....
0080: E1 C4 81 E2  55 B6 2D 04  2F 42 A1 76  9E 5A 10 36    ....U.-./B.v.Z.6
0096: F5 C0 98 15  18 20 BF 9D  90 A7 07 AA  13 81 6B 55    ..... ........kU
0112: B0 6C C8 F3  C8 3A 6A 36  6B C3 22 7C  21 E4 D7 65    .l...:j6k."|!..e
0128: BB 89 9C 61  1B E2 05 E0                              ...a....


Received 151 byte packet from UDP: [10.252.242.59]:161->[0.0.0.0]:46559
0000: 30 81 94 02  01 03 30 10  02 04 29 7B  E7 60 02 02    0.....0...){.`..
0016: 07 D0 04 01  03 02 01 03  04 3C 30 3A  04 0B 80 00    .........<0:....
0032: 19 56 03 94  24 E1 49 45  1D 02 01 0C  02 04 00 8C    .V..$.IE........
0048: D8 84 04 0A  73 6E 6D 70  76 33 75 73  65 72 04 0C    ....snmpv3user..
0064: 00 EF F3 2A  75 4A EE 6A  97 D2 78 E7  04 08 00 00    ...*uJ.j..x.....
0080: 00 00 00 42  47 EF 04 3F  3D 10 32 ED  31 3E 30 93    ...BG..?=.2.1>0.
0096: 03 9F F3 56  61 92 7E 9E  20 3D C1 DC  CB 35 C7 52    ...Va.~. =...5.R
0112: 58 89 06 D9  E5 F5 11 0D  7D 20 9D C8  5E EB D5 E2    X.......} ..^...
0128: 49 7A CC A3  85 CD BC E5  8A A2 CB BA  CD FB 22 4E    Iz............"N
0144: 1E F6 27 19  D4 99 40                                 ..'...@

SNMPv2-MIB::sysObjectID.0 = OID: SNMPv2-SMI::enterprises.6486.800.1.1.2.1.12.1.14

Sending 136 bytes to UDP: [10.252.242.59]:161->[0.0.0.0]:0
0000: 30 81 85 02  01 03 30 11  02 04 29 7B  E7 61 02 03    0.....0...){.a..
0016: 00 FF E3 04  01 07 02 01  03 04 3C 30  3A 04 0B 80    ..........<0:...
0032: 00 19 56 03  94 24 E1 49  45 1D 02 01  0C 02 04 00    ..V..$.IE.......
0048: 8C D8 84 04  0A 73 6E 6D  70 76 33 75  73 65 72 04    .....snmpv3user.
0064: 0C 3E F8 31  D3 F3 A7 09  32 E5 B2 0C  52 04 08 82    .>.1....2...R...
0080: E1 C4 81 E2  55 B6 2E 04  2F 75 AF 8B  56 9F 65 7E    ....U.../u..V.e~
0096: 20 EB C7 43  98 6E 38 FC  51 80 9F D1  F1 B0 51 BA     ..C.n8.Q.....Q.
0112: AC A6 B4 19  81 CB 15 24  26 57 C7 06  09 FB D0 78    .......$&W.....x
0128: 57 2D 93 81  73 47 F5 0F                              W-..sG..


Received 139 byte packet from UDP: [10.252.242.59]:161->[0.0.0.0]:46559
0000: 30 81 88 02  01 03 30 10  02 04 29 7B  E7 61 02 02    0.....0...){.a..
0016: 07 D0 04 01  03 02 01 03  04 3C 30 3A  04 0B 80 00    .........<0:....
0032: 19 56 03 94  24 E1 49 45  1D 02 01 0C  02 04 00 8C    .V..$.IE........
0048: D8 84 04 0A  73 6E 6D 70  76 33 75 73  65 72 04 0C    ....snmpv3user..
0064: C3 69 1A 81  3D C7 7E 49  DA DC 5F 12  04 08 00 00    .i..=.~I.._.....
0080: 00 00 00 42  47 F0 04 33  7E 3B CD 24  17 47 90 F8    ...BG..3~;.$.G..
0096: 50 C5 CF EE  83 16 6B 57  09 1F 6C 51  4F 12 D0 25    P.....kW..lQO..%
0112: E8 9E E3 3E  AA 2B B7 B4  BC 01 BF AE  BB 8E EB 20    ...>.+......... 
0128: D4 7E 93 64  DB E3 D2 99  A0 02 02                    .~.d.......

DISMAN-EVENT-MIB::sysUpTimeInstance = Timeticks: (923055700) 106 days, 20:02:37.00

Sending 136 bytes to UDP: [10.252.242.59]:161->[0.0.0.0]:0
0000: 30 81 85 02  01 03 30 11  02 04 29 7B  E7 62 02 03    0.....0...){.b..
0016: 00 FF E3 04  01 07 02 01  03 04 3C 30  3A 04 0B 80    ..........<0:...
0032: 00 19 56 03  94 24 E1 49  45 1D 02 01  0C 02 04 00    ..V..$.IE.......
0048: 8C D8 84 04  0A 73 6E 6D  70 76 33 75  73 65 72 04    .....snmpv3user.
0064: 0C D5 38 02  BF 35 21 D8  C7 22 FD E2  7B 04 08 82    ..8..5!.."..{...
0080: E1 C4 81 E2  55 B6 2F 04  2F 08 E2 F4  84 28 6B D3    ....U././....(k.
0096: 5B 87 32 ED  73 30 AE 19  F4 7A 4A 91  D2 54 96 DA    [.2.s0...zJ..T..
0112: 4C EC 1C 20  FD FD F5 32  38 AE BD 99  CC CB 42 AE    L.. ...28.....B.
0128: 3B D1 C9 5E  BB B3 65 F3                              ;..^..e.


Received 191 byte packet from UDP: [10.252.242.59]:161->[0.0.0.0]:46559
0000: 30 81 BC 02  01 03 30 10  02 04 29 7B  E7 62 02 02    0.....0...){.b..
0016: 07 D0 04 01  03 02 01 03  04 3C 30 3A  04 0B 80 00    .........<0:....
0032: 19 56 03 94  24 E1 49 45  1D 02 01 0C  02 04 00 8C    .V..$.IE........
0048: D8 84 04 0A  73 6E 6D 70  76 33 75 73  65 72 04 0C    ....snmpv3user..
0064: AE 92 BA B6  A8 EE A2 7C  5A 1E FB AF  04 08 00 00    .......|Z.......
0080: 00 00 00 42  47 F1 04 67  46 79 9A 5E  15 91 3A 16    ...BG..gFy.^..:.
0096: 40 66 00 3F  34 DE B1 27  A3 29 82 40  8E 1F 9F EE    @f.?4..'.).@....
0112: 2E 53 EB 68  96 71 A3 05  DA C9 71 C4  F5 EA A5 D7    .S.h.q....q.....
0128: 21 95 F5 0A  C9 59 A2 E3  69 23 5C C3  8E 25 64 BD    !....Y..i#\..%d.
0144: F6 03 1B 8A  C1 B9 7E 97  76 E9 74 6B  82 BA 51 8C    ......~.v.tk..Q.
0160: C2 D0 67 D8  A3 F2 0C DF  02 67 F6 B1  D1 78 16 FC    ..g......g...x..
0176: 18 91 33 BB  55 81 BC 31  64 13 02 61  A5 06 8B       ..3.U..1d..a...

SNMPv2-MIB::sysContact.0 = STRING: Alcatel-Lucent Enterprise, https://www.al-enterprise.com

Sending 136 bytes to UDP: [10.252.242.59]:161->[0.0.0.0]:0
0000: 30 81 85 02  01 03 30 11  02 04 29 7B  E7 63 02 03    0.....0...){.c..
0016: 00 FF E3 04  01 07 02 01  03 04 3C 30  3A 04 0B 80    ..........<0:...
0032: 00 19 56 03  94 24 E1 49  45 1D 02 01  0C 02 04 00    ..V..$.IE.......
0048: 8C D8 84 04  0A 73 6E 6D  70 76 33 75  73 65 72 04    .....snmpv3user.
0064: 0C 85 D6 1E  91 F1 C6 7D  79 2E ED A8  E5 04 08 82    .......}y.......
0080: E1 C4 81 E2  55 B6 30 04  2F 7E E5 80  1D 24 0C 06    ....U.0./~...$..
0096: 53 DC B0 FF  B9 DF 4F 52  B8 43 83 51  3A D7 91 68    S.....OR.C.Q:..h
0112: BA F9 D4 BA  A6 EB 15 57  8F 58 CB 3A  A0 DA 6B ED    .......W.X.:..k.
0128: 64 BB B9 54  97 54 59 BA                              d..T.TY.


Received 150 byte packet from UDP: [10.252.242.59]:161->[0.0.0.0]:46559
0000: 30 81 93 02  01 03 30 10  02 04 29 7B  E7 63 02 02    0.....0...){.c..
0016: 07 D0 04 01  03 02 01 03  04 3C 30 3A  04 0B 80 00    .........<0:....
0032: 19 56 03 94  24 E1 49 45  1D 02 01 0C  02 04 00 8C    .V..$.IE........
0048: D8 84 04 0A  73 6E 6D 70  76 33 75 73  65 72 04 0C    ....snmpv3user..
0064: 35 C0 10 85  77 C9 FD C9  F2 FA 57 13  04 08 00 00    5...w.....W.....
0080: 00 00 00 42  47 F2 04 3E  B4 F1 99 F7  A4 FA 24 CC    ...BG..>......$.
0096: A9 AE E3 7C  16 B9 6A 90  DB BB FC A3  E5 C2 1C E5    ...|..j.........
0112: 78 34 22 29  E0 32 98 C5  A0 5E BA 22  C9 8E F5 DB    x4").2...^."....
0128: B2 76 27 1C  8B B0 C2 DF  21 C9 34 E9  29 6C 5A 45    .v'.....!.4.)lZE
0144: 4F D7 40 0B  AC 6C                                    [email protected]

SNMPv2-MIB::sysName.0 = STRING: Alcatel_Switch

Sending 136 bytes to UDP: [10.252.242.59]:161->[0.0.0.0]:0
0000: 30 81 85 02  01 03 30 11  02 04 29 7B  E7 64 02 03    0.....0...){.d..
0016: 00 FF E3 04  01 07 02 01  03 04 3C 30  3A 04 0B 80    ..........<0:...
0032: 00 19 56 03  94 24 E1 49  45 1D 02 01  0C 02 04 00    ..V..$.IE.......
0048: 8C D8 84 04  0A 73 6E 6D  70 76 33 75  73 65 72 04    .....snmpv3user.
0064: 0C 3F DE 96  F6 AE FA 72  F3 F3 2C CF  7E 04 08 82    .?.....r..,.~...
0080: E1 C4 81 E2  55 B6 31 04  2F 30 71 27  FE 51 DE 71    ....U.1./0q'.Q.q
0096: 5F E6 4B AC  E3 10 4B 02  8C B2 06 57  E3 60 13 B6    _.K...K....W.`..
0112: FA C0 4C 70  CE FB 2F A4  17 43 BA 61  C7 52 77 26    ..Lp../..C.a.Rw&
0128: 3B 59 F3 04  E3 BB F4 9A                              ;Y......


Received 142 byte packet from UDP: [10.252.242.59]:161->[0.0.0.0]:46559
0000: 30 81 8B 02  01 03 30 10  02 04 29 7B  E7 64 02 02    0.....0...){.d..
0016: 07 D0 04 01  03 02 01 03  04 3C 30 3A  04 0B 80 00    .........<0:....
0032: 19 56 03 94  24 E1 49 45  1D 02 01 0C  02 04 00 8C    .V..$.IE........
0048: D8 84 04 0A  73 6E 6D 70  76 33 75 73  65 72 04 0C    ....snmpv3user..
0064: 31 49 D5 7B  3A 4F 9A CC  E6 8F 50 2C  04 08 00 00    1I.{:O....P,....
0080: 00 00 00 42  47 F3 04 36  8C C6 13 C7  D0 D1 89 91    ...BG..6........
0096: 59 28 09 B2  62 0D 87 FA  70 E6 E7 7B  57 EC 40 2C    Y(..b...p..{W.@,
0112: E6 E1 BA 22  FD D8 9A F8  56 21 A3 BF  57 9D 91 0E    ..."....V!..W...
0128: 60 45 4A D6  32 41 12 60  D6 FB 87 EE  31 A9          `EJ.2A.`....1.

SNMPv2-MIB::sysLocation.0 = STRING: Unknown

Sending 136 bytes to UDP: [10.252.242.59]:161->[0.0.0.0]:0
0000: 30 81 85 02  01 03 30 11  02 04 29 7B  E7 65 02 03    0.....0...){.e..
0016: 00 FF E3 04  01 07 02 01  03 04 3C 30  3A 04 0B 80    ..........<0:...
0032: 00 19 56 03  94 24 E1 49  45 1D 02 01  0C 02 04 00    ..V..$.IE.......
0048: 8C D8 84 04  0A 73 6E 6D  70 76 33 75  73 65 72 04    .....snmpv3user.
0064: 0C C1 C5 11  EB FF 3F 82  D6 E4 66 30  59 04 08 82    ......?...f0Y...
0080: E1 C4 81 E2  55 B6 32 04  2F E6 5B BB  64 91 27 95    ....U.2./.[.d.'.
0096: 68 B7 6C 0F  71 10 76 72  41 22 EE A7  1F F7 E5 07    h.l.q.vrA"......
0112: 88 65 19 02  3B D3 95 D9  FA DC 3A FE  CE 35 77 E1    .e..;.....:..5w.
0128: 81 0A A0 41  D8 9B 30 B3                              ...A..0.


Received 136 byte packet from UDP: [10.252.242.59]:161->[0.0.0.0]:46559
0000: 30 81 85 02  01 03 30 10  02 04 29 7B  E7 65 02 02    0.....0...){.e..
0016: 07 D0 04 01  03 02 01 03  04 3C 30 3A  04 0B 80 00    .........<0:....
0032: 19 56 03 94  24 E1 49 45  1D 02 01 0C  02 04 00 8C    .V..$.IE........
0048: D8 84 04 0A  73 6E 6D 70  76 33 75 73  65 72 04 0C    ....snmpv3user..
0064: EF 87 6D 65  E0 93 DC CF  AA F8 F3 43  04 08 00 00    ..me.......C....
0080: 00 00 00 42  47 F4 04 30  91 74 AA 7F  38 13 6A 13    ...BG..0.t..8.j.
0096: B5 79 4C 4C  F7 08 4C 70  BA CB E3 F3  4A F3 C0 63    .yLL..Lp....J..c
0112: 03 5C 89 5E  DD E7 AE A1  DE F6 E0 49  B7 BA 6D 24    .\.^.......I..m$
0128: 8A 1D 57 C8  0B 5F 94 DA                              ..W.._..

SNMPv2-MIB::sysServices.0 = INTEGER: 78

Sending 136 bytes to UDP: [10.252.242.59]:161->[0.0.0.0]:0
0000: 30 81 85 02  01 03 30 11  02 04 29 7B  E7 66 02 03    0.....0...){.f..
0016: 00 FF E3 04  01 07 02 01  03 04 3C 30  3A 04 0B 80    ..........<0:...
0032: 00 19 56 03  94 24 E1 49  45 1D 02 01  0C 02 04 00    ..V..$.IE.......
0048: 8C D8 84 04  0A 73 6E 6D  70 76 33 75  73 65 72 04    .....snmpv3user.
0064: 0C D4 B1 63  37 1F 95 C0  FF 47 AE F1  46 04 08 82    ...c7....G..F...
0080: E1 C4 81 E2  55 B6 33 04  2F FB B6 BF  22 84 00 A1    ....U.3./..."...
0096: E5 0B 00 1B  64 6F 85 2E  4F 5A FA 75  0A 4F 49 8F    ....do..OZ.u.OI.
0112: 94 E9 FF 15  90 BE 21 11  48 72 9F 61  4C 7B DF CB    ......!.Hr.aL{..
0128: 96 25 72 66  89 B0 21 73                              .%rf..!s


Received 136 byte packet from UDP: [10.252.242.59]:161->[0.0.0.0]:46559
0000: 30 81 85 02  01 03 30 10  02 04 29 7B  E7 66 02 02    0.....0...){.f..
0016: 07 D0 04 01  03 02 01 03  04 3C 30 3A  04 0B 80 00    .........<0:....
0032: 19 56 03 94  24 E1 49 45  1D 02 01 0C  02 04 00 8C    .V..$.IE........
0048: D8 84 04 0A  73 6E 6D 70  76 33 75 73  65 72 04 0C    ....snmpv3user..
0064: F6 EF BF 23  7D 0C 2C FC  E7 4B 8C 88  04 08 00 00    ...#}.,..K......
0080: 00 00 00 42  47 F5 04 30  89 E4 EF D7  B6 AF 1F 23    ...BG..0.......#
0096: 33 FB FF 76  B4 42 3D CD  78 9D AA 48  92 1B D4 1A    3..v.B=.x..H....
0112: C7 7F 97 36  8D 65 C9 BC  BF 69 EE 0E  E7 C2 2B EB    ...6.e...i....+.
0128: 08 9F 5D 5D  B4 FB 48 F8                              ..]]..H.

gcasella · 2022-10-30T16:24:42Z

-d related to puresnmp_plugins.security.usm.AuthenticationError: Incoming message could not be authenticated!


Sending 64 bytes to UDP: [10.117.224.144]:161->[0.0.0.0]:0
0000: 30 3E 02 01  03 30 11 02  04 7A 58 64  67 02 03 00    0>...0...zXdg...
0016: FF E3 04 01  04 02 01 03  04 10 30 0E  04 00 02 01    ..........0.....
0032: 00 02 01 00  04 00 04 00  04 00 30 14  04 00 04 00    ..........0.....
0048: A0 0E 02 04  5E C7 5A 1C  02 01 00 02  01 00 30 00    ....^.Z.......0.


Received 104 byte packet from UDP: [10.117.224.144]:161->[0.0.0.0]:46913
0000: 30 66 02 01  03 30 11 02  04 7A 58 64  67 02 03 00    0f...0...zXdg...
0016: FF E3 04 01  00 02 01 03  04 1C 30 1A  04 09 80 00    ..........0.....
0032: 0A 4C 01 8E  60 D3 4A 02  01 02 02 04  00 DC 95 23    .L..`.J........#
0048: 04 00 04 00  04 00 30 30  04 09 80 00  0A 4C 01 8E    ......00.....L..
0064: 60 D3 4A 04  00 A8 21 02  04 5E C7 5A  1C 02 01 00    `.J...!..^.Z....
0080: 02 01 00 30  13 30 11 06  0A 2B 06 01  06 03 0F 01    ...0.0...+......
0096: 01 04 00 41  03 12 75 F7                              ...A..u.


Sending 129 bytes to UDP: [10.117.224.144]:161->[0.0.0.0]:0
0000: 30 7F 02 01  03 30 11 02  04 7A 58 64  66 02 03 00    0....0...zXdf...
0016: FF E3 04 01  07 02 01 03  04 3A 30 38  04 09 80 00    .........:08....
0032: 0A 4C 01 8E  60 D3 4A 02  01 02 02 04  00 DC 95 23    .L..`.J........#
0048: 04 0A 73 6E  6D 70 76 33  75 73 65 72  04 0C F1 C9    ..snmpv3user....
0064: D0 47 47 DD  83 30 37 68  DD 9B 04 08  0D 1F F5 E0    .GG..07h........
0080: E4 CA DB 04  04 2B 45 17  02 D3 C1 57  AD 0F C8 BB    .....+E....W....
0096: F5 D4 18 43  40 CB F7 B5  D1 7C 34 4D  A5 7D B6 48    ...C@....|4M.}.H
0112: 42 0E A5 AC  2D 0A 0E BD  2D 39 D2 22  8E 44 DB 9A    B...-...-9.".D..
0128: D4                                                    .


Received 298 byte packet from UDP: [10.117.224.144]:161->[0.0.0.0]:46913
0000: 30 82 01 26  02 01 03 30  11 02 04 7A  58 64 66 02    0..&...0...zXdf.
0016: 03 00 FF E3  04 01 03 02  01 03 04 3A  30 38 04 09    ...........:08..
0032: 80 00 0A 4C  01 8E 60 D3  4A 02 01 02  02 04 00 DC    ...L..`.J.......
0048: 95 23 04 0A  73 6E 6D 70  76 33 75 73  65 72 04 0C    .#..snmpv3user..
0064: E6 DE C4 D9  34 AE C1 D4  47 93 81 EB  04 08 F1 DA    ....4...G.......
0080: A7 76 A1 9F  5F 3B 04 81  D1 68 ED 00  F2 50 08 C0    .v.._;...h...P..
0096: 6F F8 46 2F  DB CE 22 C9  60 3B 46 1E  AF A4 BE FF    o.F/..".`;F.....
0112: D5 8C 58 4C  37 E4 3B E3  84 29 2B 7C  BB 0A 5C BB    ..XL7.;..)+|..\.
0128: 7F B1 4A 5B  F1 BE 61 56  7F 50 91 8E  3E 75 B2 8A    ..J[..aV.P..>u..
0144: 50 4E A7 69  7D F6 99 85  81 1C 47 F6  38 C7 A2 38    PN.i}.....G.8..8
0160: 50 68 B7 0A  91 7B E8 66  91 FA DC BB  D1 17 08 B3    Ph...{.f........
0176: 2F 8A 4B F2  AE 8F DA 6C  80 6C A8 3B  DE 94 04 8A    /.K....l.l.;....
0192: 1A 7B 2D 9E  B7 E1 27 BE  A0 21 A4 12  2B CF 08 B8    .{-...'..!..+...
0208: C3 CB CE 05  37 B2 F9 7E  2D 21 56 A8  40 62 E3 B5    ....7..~-!V.@b..
0224: 37 B2 BA 38  A3 F5 84 96  C7 AB 9C 6A  89 BD 67 90    7..8.......j..g.
0240: D4 8D 0B B7  FC 9C C4 76  E6 A2 F7 36  6C 46 1C C7    .......v...6lF..
0256: 91 E0 09 80  98 6B 79 B0  22 2F 58 E8  CD 00 41 6A    .....ky."/X...Aj
0272: A6 B8 0C 5B  9E 3A 10 E8  F4 0A 61 A6  98 D3 EA C3    ...[.:....a.....
0288: 4F 0D 2C 0A  C9 9A 1B 52  95 EB                       O.,....R..

SNMPv2-MIB::sysDescr.0 = STRING: Juniper Networks, Inc. ex4300-24t Ethernet Switch, kernel JUNOS 17.4R3-S5.2, Build date: 2021-06-22 15:42:59 UTC Copyright (c) 1996-2021 Juniper Networks, Inc.

Sending 132 bytes to UDP: [10.117.224.144]:161->[0.0.0.0]:0
0000: 30 81 81 02  01 03 30 11  02 04 7A 58  64 68 02 03    0.....0...zXdh..
0016: 00 FF E3 04  01 07 02 01  03 04 3A 30  38 04 09 80    ..........:08...
0032: 00 0A 4C 01  8E 60 D3 4A  02 01 02 02  04 00 DC 95    ..L..`.J........
0048: 23 04 0A 73  6E 6D 70 76  33 75 73 65  72 04 0C 87    #..snmpv3user...
0064: DF 22 85 49  13 4C F3 6C  BC 6E 12 04  08 0D 1F F5    .".I.L.l.n......
0080: E0 E4 CA DB  05 04 2D 6F  12 99 69 7B  63 69 D8 BD    ......-o..i{ci..
0096: 30 DB 45 E4  6E 72 5B E7  56 89 D3 99  3A 99 C6 7E    0.E.nr[.V...:..~
0112: 80 49 7E 5D  BB 31 FF E2  65 88 F9 6B  60 FC 15 0C    .I~].1..e..k`...
0128: 60 90 7A 5D                                           `.z]


Received 144 byte packet from UDP: [10.117.224.144]:161->[0.0.0.0]:46913
0000: 30 81 8D 02  01 03 30 11  02 04 7A 58  64 68 02 03    0.....0...zXdh..
0016: 00 FF E3 04  01 03 02 01  03 04 3A 30  38 04 09 80    ..........:08...
0032: 00 0A 4C 01  8E 60 D3 4A  02 01 02 02  04 00 DC 95    ..L..`.J........
0048: 23 04 0A 73  6E 6D 70 76  33 75 73 65  72 04 0C 6A    #..snmpv3user..j
0064: 75 55 97 29  07 60 81 2C  39 B3 9C 04  08 F1 DA A7    uU.).`.,9.......
0080: 76 A1 9F 5F  3C 04 39 E6  00 C8 49 6E  D7 C5 C9 62    v.._<.9...In...b
0096: 62 73 0F E7  B7 39 C4 50  66 D3 C7 0E  D5 75 C7 A6    bs...9.Pf....u..
0112: 20 45 87 3F  54 FC 4A CD  B1 E5 D1 60  C1 E7 F6 F0     E.?T.J....`....
0128: A9 21 2B BD  4C F1 12 8A  35 09 D1 18  BC F3 DC E7    .!+.L...5.......

SNMPv2-MIB::sysObjectID.0 = OID: SNMPv2-SMI::enterprises.2636.1.1.1.2.63

Sending 132 bytes to UDP: [10.117.224.144]:161->[0.0.0.0]:0
0000: 30 81 81 02  01 03 30 11  02 04 7A 58  64 69 02 03    0.....0...zXdi..
0016: 00 FF E3 04  01 07 02 01  03 04 3A 30  38 04 09 80    ..........:08...
0032: 00 0A 4C 01  8E 60 D3 4A  02 01 02 02  04 00 DC 95    ..L..`.J........
0048: 23 04 0A 73  6E 6D 70 76  33 75 73 65  72 04 0C 7F    #..snmpv3user...
0064: 74 17 62 65  2F AE AC FF  1F A5 9B 04  08 0D 1F F5    t.be/...........
0080: E0 E4 CA DB  06 04 2D D3  05 F9 AA D5  B1 89 17 EC    ......-.........
0096: 92 C3 43 D9  10 41 E3 46  CA 3E 17 47  4A C0 4B C0    ..C..A.F.>.GJ.K.
0112: 33 91 C1 11  28 28 01 D4  86 A3 36 D9  AC 55 34 7A    3...((....6..U4z
0128: 0D DC B0 CB                                           ....


Received 136 byte packet from UDP: [10.117.224.144]:161->[0.0.0.0]:46913
0000: 30 81 85 02  01 03 30 11  02 04 7A 58  64 69 02 03    0.....0...zXdi..
0016: 00 FF E3 04  01 03 02 01  03 04 3A 30  38 04 09 80    ..........:08...
0032: 00 0A 4C 01  8E 60 D3 4A  02 01 02 02  04 00 DC 95    ..L..`.J........
0048: 23 04 0A 73  6E 6D 70 76  33 75 73 65  72 04 0C 75    #..snmpv3user..u
0064: D8 2E 41 28  A0 C2 D0 9F  DB 8A 0C 04  08 F1 DA A7    ..A(............
0080: 76 A1 9F 5F  3D 04 31 A9  1A 7B 67 7E  1F 71 67 DB    v.._=.1..{g~.qg.
0096: 57 51 AA 16  F4 5F 5B 10  44 6D 02 CD  D6 B2 67 D5    WQ..._[.Dm....g.
0112: 9C FA BB 85  AD 18 AD 2E  A1 0F 8A 83  99 6A 85 F5    .............j..
0128: 1E A9 D1 08  CB 56 98 46                              .....V.F

DISMAN-EVENT-MIB::sysUpTimeInstance = Timeticks: (1445609963) 167 days, 7:34:59.63

Sending 132 bytes to UDP: [10.117.224.144]:161->[0.0.0.0]:0
0000: 30 81 81 02  01 03 30 11  02 04 7A 58  64 6A 02 03    0.....0...zXdj..
0016: 00 FF E3 04  01 07 02 01  03 04 3A 30  38 04 09 80    ..........:08...
0032: 00 0A 4C 01  8E 60 D3 4A  02 01 02 02  04 00 DC 95    ..L..`.J........
0048: 23 04 0A 73  6E 6D 70 76  33 75 73 65  72 04 0C A3    #..snmpv3user...
0064: 18 4B E4 D1  30 89 2F F8  C7 AF 70 04  08 0D 1F F5    .K..0./...p.....
0080: E0 E4 CA DB  07 04 2D 4B  8D 04 45 D0  5D 19 D7 33    ......-K..E.]..3
0096: 89 03 A7 DC  00 D3 19 C3  07 8C CF FB  A2 82 AE 5C    ...............\
0112: B6 B1 A0 EC  62 D1 0A B2  DE 43 9D 7B  ED AD 84 A3    ....b....C.{....
0128: 61 C2 C3 3F                                           a..?


Received 158 byte packet from UDP: [10.117.224.144]:161->[0.0.0.0]:46913
0000: 30 81 9B 02  01 03 30 11  02 04 7A 58  64 6A 02 03    0.....0...zXdj..
0016: 00 FF E3 04  01 03 02 01  03 04 3A 30  38 04 09 80    ..........:08...
0032: 00 0A 4C 01  8E 60 D3 4A  02 01 02 02  04 00 DC 95    ..L..`.J........
0048: 23 04 0A 73  6E 6D 70 76  33 75 73 65  72 04 0C 78    #..snmpv3user..x
0064: 40 0B EF 22  96 8B F9 B5  E4 31 23 04  08 F1 DA A7    @..".....1#.....
0080: 76 A1 9F 5F  3E 04 47 C7  E3 C1 6A 1C  B2 7F 8D A8    v.._>.G...j.....
0096: B5 71 BD B5  9B 98 AE 65  BA DE 6E 9B  0C 2E D1 BA    .q.....e..n.....
0112: B7 7C BF A7  D6 E4 C3 DA  53 C9 60 D1  5F 6C 97 1B    .|......S.`._l..
0128: 1B 05 74 81  84 FD 1A E9  DC 6F 6F 18  A2 78 79 3C    ..t......oo..xy<
0144: AF 33 07 9D  2E 43 89 4F  C9 AE 9C B9  34 1E          .3...C.O....4.

SNMPv2-MIB::sysContact.0 = STRING: WNOC Access, 1-866-670-662

Sending 132 bytes to UDP: [10.117.224.144]:161->[0.0.0.0]:0
0000: 30 81 81 02  01 03 30 11  02 04 7A 58  64 6B 02 03    0.....0...zXdk..
0016: 00 FF E3 04  01 07 02 01  03 04 3A 30  38 04 09 80    ..........:08...
0032: 00 0A 4C 01  8E 60 D3 4A  02 01 02 02  04 00 DC 95    ..L..`.J........
0048: 23 04 0A 73  6E 6D 70 76  33 75 73 65  72 04 0C 9D    #..snmpv3user...
0064: EC 6D B1 86  D6 FA 9E 5A  1C 47 F9 04  08 0D 1F F5    .m.....Z.G......
0080: E0 E4 CA DB  08 04 2D A4  C5 4B 60 1A  B4 6F BA 00    ......-..K`..o..
0096: 03 7F D4 58  60 38 54 EF  76 57 13 45  1F F2 82 C1    ...X`8T.vW.E....
0112: FC 86 EC 64  72 C3 16 09  F1 09 DE A1  01 70 D5 31    ...dr........p.1
0128: 78 7B 42 84                                           x{B.


Received 147 byte packet from UDP: [10.117.224.144]:161->[0.0.0.0]:46913
0000: 30 81 90 02  01 03 30 11  02 04 7A 58  64 6B 02 03    0.....0...zXdk..
0016: 00 FF E3 04  01 03 02 01  03 04 3A 30  38 04 09 80    ..........:08...
0032: 00 0A 4C 01  8E 60 D3 4A  02 01 02 02  04 00 DC 95    ..L..`.J........
0048: 23 04 0A 73  6E 6D 70 76  33 75 73 65  72 04 0C 3F    #..snmpv3user..?
0064: 79 90 EB 7A  DB D5 06 D5  07 95 DA 04  08 F1 DA A7    y..z............
0080: 76 A1 9F 5F  3F 04 3C A3  56 D2 F7 1B  95 B0 C4 3D    v.._?.<.V......=
0096: D1 01 18 52  DA A0 12 3B  4C 32 8E 3B  D2 8D C8 4C    ...R...;L2.;...L
0112: 44 D4 79 10  F9 48 D1 B7  7E F4 28 15  30 A5 28 60    D.y..H..~.(.0.(`
0128: 61 EE 6A EB  20 6E 77 2E  88 E7 90 29  EC A5 8E A0    a.j. nw....)....
0144: F4 B3 CE                                              ...

SNMPv2-MIB::sysName.0 = STRING: Juniper_Router

Sending 132 bytes to UDP: [10.117.224.144]:161->[0.0.0.0]:0
0000: 30 81 81 02  01 03 30 11  02 04 7A 58  64 6C 02 03    0.....0...zXdl..
0016: 00 FF E3 04  01 07 02 01  03 04 3A 30  38 04 09 80    ..........:08...
0032: 00 0A 4C 01  8E 60 D3 4A  02 01 02 02  04 00 DC 95    ..L..`.J........
0048: 23 04 0A 73  6E 6D 70 76  33 75 73 65  72 04 0C 4D    #..snmpv3user..M
0064: DE 73 CA 94  0A E7 53 83  19 9E 9F 04  08 0D 1F F5    .s....S.........
0080: E0 E4 CA DB  09 04 2D CA  13 87 8B B6  03 BB 27 FA    ......-.......'.
0096: BB 24 B0 0F  F5 A4 84 97  22 4A 2E 47  60 4E 89 FB    .$......"J.G`N..
0112: 5B D7 19 C4  43 A4 3A D2  AD 88 FE 3D  5A 4E FF D0    [...C.:....=ZN..
0128: 8C 84 EF EF                                           ....


Received 170 byte packet from UDP: [10.117.224.144]:161->[0.0.0.0]:46913
0000: 30 81 A7 02  01 03 30 11  02 04 7A 58  64 6C 02 03    0.....0...zXdl..
0016: 00 FF E3 04  01 03 02 01  03 04 3A 30  38 04 09 80    ..........:08...
0032: 00 0A 4C 01  8E 60 D3 4A  02 01 02 02  04 00 DC 95    ..L..`.J........
0048: 23 04 0A 73  6E 6D 70 76  33 75 73 65  72 04 0C B8    #..snmpv3user...
0064: AE 68 EF 31  FC 16 5C 78  50 CB DF 04  08 F1 DA A7    .h.1..\xP.......
0080: 76 A1 9F 5F  40 04 53 3D  7C 41 B0 51  87 DB 70 6E    [email protected]=|A.Q..pn
0096: 49 68 E1 A2  2C 8F D2 1A  D8 75 22 ED  17 1F 6F F9    Ih..,....u"...o.
0112: 71 62 4D 64  C3 AF AF 98  B1 D1 68 82  68 A5 5F A3    qbMd......h.h._.
0128: 3B B5 25 55  E1 5A E3 2B  0B EB 84 AD  7A FE 2A C0    ;.%U.Z.+....z.*.
0144: 57 7C D9 59  9F 48 91 7B  E0 62 A4 F1  AC 0B 27 31    W|.Y.H.{.b....'1
0160: 50 6A AA 3D  C3 16 81 84  2F F3                       Pj.=..../.

SNMPv2-MIB::sysLocation.0 = STRING: addr

Sending 132 bytes to UDP: [10.117.224.144]:161->[0.0.0.0]:0
0000: 30 81 81 02  01 03 30 11  02 04 7A 58  64 6D 02 03    0.....0...zXdm..
0016: 00 FF E3 04  01 07 02 01  03 04 3A 30  38 04 09 80    ..........:08...
0032: 00 0A 4C 01  8E 60 D3 4A  02 01 02 02  04 00 DC 95    ..L..`.J........
0048: 23 04 0A 73  6E 6D 70 76  33 75 73 65  72 04 0C E4    #..snmpv3user...
0064: 43 BA FD FB  11 E4 D0 93  1F 86 C9 04  08 0D 1F F5    C...............
0080: E0 E4 CA DB  0A 04 2D D7  8C F1 97 63  29 7C 9A 8E    ......-....c)|..
0096: D7 76 4E 71  E9 5F AF B5  52 2A 51 85  99 45 9A 69    .vNq._..R*Q..E.i
0112: 64 0B A0 64  A2 DD 7E 11  63 CD FE 1D  8C BC 71 F9    d..d..~.c.....q.
0128: 59 B7 16 6D                                           Y..m


Received 133 byte packet from UDP: [10.117.224.144]:161->[0.0.0.0]:46913
0000: 30 81 82 02  01 03 30 11  02 04 7A 58  64 6D 02 03    0.....0...zXdm..
0016: 00 FF E3 04  01 03 02 01  03 04 3A 30  38 04 09 80    ..........:08...
0032: 00 0A 4C 01  8E 60 D3 4A  02 01 02 02  04 00 DC 95    ..L..`.J........
0048: 23 04 0A 73  6E 6D 70 76  33 75 73 65  72 04 0C BE    #..snmpv3user...
0064: A4 75 34 CE  9C BD E7 2B  DA 9F 78 04  08 F1 DA A7    .u4....+..x.....
0080: 76 A1 9F 5F  41 04 2E BB  F2 2A 2A A1  2C 64 03 42    v.._A....**.,d.B
0096: EF 31 15 88  89 B7 12 63  53 DB B3 02  E7 84 E5 F6    .1.....cS.......
0112: 42 11 C3 6E  AC FE B1 AF  24 A7 96 DE  16 1D 5E 6E    B..n....$.....^n
0128: 5E 92 C3 D8  B1                                       ^....

SNMPv2-MIB::sysServices.0 = INTEGER: 6

Sending 132 bytes to UDP: [10.117.224.144]:161->[0.0.0.0]:0
0000: 30 81 81 02  01 03 30 11  02 04 7A 58  64 6E 02 03    0.....0...zXdn..
0016: 00 FF E3 04  01 07 02 01  03 04 3A 30  38 04 09 80    ..........:08...
0032: 00 0A 4C 01  8E 60 D3 4A  02 01 02 02  04 00 DC 95    ..L..`.J........
0048: 23 04 0A 73  6E 6D 70 76  33 75 73 65  72 04 0C 78    #..snmpv3user..x
0064: CA 97 E8 51  61 E8 68 0E  35 B9 1A 04  08 0D 1F F5    ...Qa.h.5.......
0080: E0 E4 CA DB  0B 04 2D 1F  A4 CD 7A B8  6A 0F 54 DE    ......-...z.j.T.
0096: 2D 8A 5F 8F  96 D3 BA 2C  92 2D 86 9A  87 A8 12 17    -._....,.-......
0112: 02 D4 DC 2E  C5 2B 30 6F  98 4B 52 50  4E 6E FA 6C    .....+0o.KRPNn.l
0128: 4E D5 35 40                                           N.5@


Received 133 byte packet from UDP: [10.117.224.144]:161->[0.0.0.0]:46913
0000: 30 81 82 02  01 03 30 11  02 04 7A 58  64 6E 02 03    0.....0...zXdn..
0016: 00 FF E3 04  01 03 02 01  03 04 3A 30  38 04 09 80    ..........:08...
0032: 00 0A 4C 01  8E 60 D3 4A  02 01 02 02  04 00 DC 95    ..L..`.J........
0048: 23 04 0A 73  6E 6D 70 76  33 75 73 65  72 04 0C 47    #..snmpv3user..G
0064: AD C7 D6 9B  F0 AB EC 19  1F DF B8 04  08 F1 DA A7    ................
0080: 76 A1 9F 5F  42 04 2E 90  E4 83 D6 7C  04 16 E1 A4    v.._B......|....
0096: B7 FB 51 4E  C0 88 C1 AE  FD D3 20 1B  64 6A 10 AB    ..QN...... .dj..
0112: E6 47 E1 60  54 26 20 16  0C 4B 88 A9  EB 53 DD D7    .G.`T& ..K...S..
0128: C2 FA 17 72  1A                                       ...r.

exhuma · 2022-11-08T06:18:37Z

I'm.... stumped... The debug logs above show that the device returns the "out of time window" error directly as a response to the discovery message. Which, by definition cannot be "in the time window" because the discovery is used to establish the time-synchronisation.

I will try a simpler solution as last time and simply disable the error handling during the discovery process.

This is a fiddly issue and I am taking my time to get it right (at least as right as I can 😉 )

gcasella · 2022-11-08T17:38:10Z

No worries at all.
Take your time!

My interim solution is using the easysnmp python package.

scotloach · 2022-11-11T02:37:18Z

I just tried v3 with puresnmp for the first time and ran into the same issue.

@exhuma let me know if there's anything I can do to help you reproduce or test this.

It works fine with pysnmp and command-line net-snmp.

Tofnet · 2024-05-31T08:29:13Z

Same issue for me with "Error response from remote device: Not in time window"
But with 2.0.1a1 I have now: "packet timestamp does not match the recorded local state"

(Same NTP server).

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

SNMPv3 authPriv not working for specific vendor. #104

SNMPv3 authPriv not working for specific vendor. #104

gcasella commented Sep 22, 2022 •

edited

Loading

exhuma commented Sep 22, 2022

gcasella commented Sep 22, 2022

exhuma commented Sep 22, 2022

gcasella commented Sep 22, 2022

exhuma commented Sep 22, 2022

exhuma commented Sep 26, 2022

exhuma commented Sep 27, 2022

gcasella commented Sep 27, 2022

gcasella commented Oct 26, 2022

exhuma commented Oct 29, 2022

gcasella commented Oct 29, 2022

gcasella commented Oct 29, 2022 •

edited

Loading

exhuma commented Oct 30, 2022

gcasella commented Oct 30, 2022 •

edited

Loading

gcasella commented Oct 30, 2022

exhuma commented Nov 8, 2022

gcasella commented Nov 8, 2022

scotloach commented Nov 11, 2022

Tofnet commented May 31, 2024

SNMPv3 authPriv not working for specific vendor. #104

SNMPv3 authPriv not working for specific vendor. #104

Comments

gcasella commented Sep 22, 2022 • edited Loading

Issue Description

HexDump

exhuma commented Sep 22, 2022

gcasella commented Sep 22, 2022

exhuma commented Sep 22, 2022

gcasella commented Sep 22, 2022

exhuma commented Sep 22, 2022

exhuma commented Sep 26, 2022

exhuma commented Sep 27, 2022

gcasella commented Sep 27, 2022

gcasella commented Oct 26, 2022

exhuma commented Oct 29, 2022

gcasella commented Oct 29, 2022

gcasella commented Oct 29, 2022 • edited Loading

exhuma commented Oct 30, 2022

gcasella commented Oct 30, 2022 • edited Loading

gcasella commented Oct 30, 2022

exhuma commented Nov 8, 2022

gcasella commented Nov 8, 2022

scotloach commented Nov 11, 2022

Tofnet commented May 31, 2024

gcasella commented Sep 22, 2022 •

edited

Loading

gcasella commented Oct 29, 2022 •

edited

Loading

gcasella commented Oct 30, 2022 •

edited

Loading