Squid 3.5 not responding to SNMP on multi-interface host

Squid config:

acl localnet src 172.17.17.0/24

snmp_port 3401
acl snmppublic snmp_community public
snmp_access allow snmppublic localhost
snmp_access allow snmppublic localnet
snmp_access allow snmppublic all
nmp_access deny all

snmp_incoming_address 0.0.0.0
snmp_outgoing_address 255.255.255.255

Query from remote does not work:
librenms:~$ snmpwalk -c public -v 1 172.17.17.13:3401 .1.3.6.1.4.1.3495
Timeout: No Response from 172.17.17.13:3401

Localhost query works:
squid:/etc/squid# snmpwalk -c public -v 1 localhost:3401 .1.3.6.1.4.1.3495
iso.3.6.1.4.1.3495.1.1.1.0 = INTEGER: 216
iso.3.6.1.4.1.3495.1.1.2.0 = INTEGER: 31104
iso.3.6.1.4.1.3495.1.1.3.0 = Timeticks: (374824) 1:02:28.24
iso.3.6.1.4.1.3495.1.2.1.0 = STRING: "webmaster"
iso.3.6.1.4.1.3495.1.2.2.0 = STRING: "squid"
iso.3.6.1.4.1.3495.1.2.3.0 = STRING: "3.5.27"

Squid host details:
squid:/etc/squid# ip ad
1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000
    link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
    inet 127.0.0.1/8 scope host lo
       valid_lft forever preferred_lft forever
    inet6 ::1/128 scope host
       valid_lft forever preferred_lft forever
95: eth0@if96: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP group default qlen 1000
    link/ether 16:e5:65:cc:be:b0 brd ff:ff:ff:ff:ff:ff link-netnsid 0
    inet 172.17.17.13/24 brd 172.17.17.255 scope global eth0
       valid_lft forever preferred_lft forever
    inet6 fdb0:657b:9d08:ede2::17:13/64 scope global
       valid_lft forever preferred_lft forever
    inet6 fe80::14e5:65ff:fecc:beb0/64 scope link
       valid_lft forever preferred_lft forever
97: eth1@if98: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP group default qlen 1000
    link/ether 22:c1:dc:50:49:0c brd ff:ff:ff:ff:ff:ff link-netnsid 0
    inet 10.168.120.13/24 brd 10.168.120.255 scope global eth1
       valid_lft forever preferred_lft forever
    inet6 fd98:189a:2124:4468::13/64 scope global
       valid_lft forever preferred_lft forever
    inet6 fe80::20c1:dcff:fe50:490c/64 scope link
       valid_lft forever preferred_lft forever
99: eth3@if100: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP group default qlen 1000
    link/ether aa:c2:39:03:27:9b brd ff:ff:ff:ff:ff:ff link-netnsid 0
    inet 192.168.19.13/24 brd 192.168.19.255 scope global eth3
       valid_lft forever preferred_lft forever
    inet6 fe80::a8c2:39ff:fe03:279b/64 scope link
       valid_lft forever preferred_lft forever

squid:/etc/squid# ufw status verbose
Status: active
Logging: on (low)
Default: deny (incoming), allow (outgoing), deny (routed)
New profiles: skip

To Action From
-- ------ ----
Anywhere on eth3 DENY IN Anywhere
22/tcp ALLOW IN Anywhere
80/tcp ALLOW IN Anywhere
2048,3128,3130,3401,4827/tcp (Squid) ALLOW IN Anywhere
3128/tcp ALLOW IN Anywhere
8000/tcp ALLOW IN Anywhere
5353/udp ALLOW IN Anywhere
161 ALLOW IN Anywhere
224.0.0.251 5353/udp ALLOW IN Anywhere
179/tcp ALLOW IN Anywhere
Anywhere (v6) on eth3 DENY IN Anywhere (v6)
22/tcp (v6) ALLOW IN Anywhere (v6)
80/tcp (v6) ALLOW IN Anywhere (v6)
2048,3128,3130,3401,4827/tcp (Squid (v6)) ALLOW IN Anywhere (v6)
3128/tcp (v6) ALLOW IN Anywhere (v6)
8000/tcp (v6) ALLOW IN Anywhere (v6)
5353/udp (v6) ALLOW IN Anywhere (v6)
161 (v6) ALLOW IN Anywhere (v6)
ff02::fb 5353/udp ALLOW IN Anywhere (v6)
179/tcp (v6) ALLOW IN Anywhere (v6)

squid:/etc/squid# netstat -a | grep 3401
udp 0 0 0.0.0.0:3401 0.0.0.0:*

squid:/etc/squid# squid -v
Squid Cache: Version 3.5.27
Service Name: squid
Ubuntu linux
configure options: '--build=x86_64-linux-gnu' '--prefix=/usr' '--includedir=${prefix}/include' '--mandir=${prefix}/share/man' '--infodir=${prefix}/share/info' '--sysconfdir=/etc' '--localstatedir=/var' '--libexecdir=${prefix}/lib/squid3' '--srcdir=.' '--disable-maintainer-mode' '--disable-dependency-tracking' '--disable-silent-rules' 'BUILDCXXFLAGS=-g -O2 -fdebug-prefix-map=/build/squid3-TZ71Ws/squid3-3.5.27=. -fstack-protector-strong -Wformat -Werror=format-security -Wno-error=deprecated -Wno-error=format-truncation -Wdate-time -D_FORTIFY_SOURCE=2 -Wl,-Bsymbolic-functions -Wl,-z,relro -Wl,-z,now -Wl,--as-needed' '--datadir=/usr/share/squid' '--sysconfdir=/etc/squid' '--libexecdir=/usr/lib/squid' '--mandir=/usr/share/man' '--enable-inline' '--disable-arch-native' '--enable-async-io=8' '--enable-storeio=ufs,aufs,diskd,rock' '--enable-removal-policies=lru,heap' '--enable-delay-pools' '--enable-cache-digests' '--enable-icap-client' '--enable-follow-x-forwarded-for' '--enable-auth-basic=DB,fake,getpwnam,LDAP,NCSA,NIS,PAM,POP3,RADIUS,SASL,SMB' '--enable-auth-digest=file,LDAP' '--enable-auth-negotiate=kerberos,wrapper' '--enable-auth-ntlm=fake,smb_lm' '--enable-external-acl-helpers=file_userip,kerberos_ldap_group,LDAP_group,session,SQL_session,time_quota,unix_group,wbinfo_group' '--enable-url-rewrite-helpers=fake' '--enable-eui' '--enable-esi' '--enable-icmp' '--enable-zph-qos' '--enable-ecap' '--disable-translation' '--with-swapdir=/var/spool/squid' '--with-logdir=/var/log/squid' '--with-pidfile=/var/run/squid.pid' '--with-filedescriptors=65536' '--with-large-files' '--with-default-user=proxy' '--enable-build-info=Ubuntu linux' '--enable-linux-netfilter' 'build_alias=x86_64-linux-gnu' 'CFLAGS=-g -O2 -fdebug-prefix-map=/build/squid3-TZ71Ws/squid3-3.5.27=. -fstack-protector-strong -Wformat -Werror=format-security -Wall' 'LDFLAGS=-Wl,-Bsymbolic-functions -Wl,-z,relro -Wl,-z,now -Wl,--as-needed' 'CPPFLAGS=-Wdate-time -D_FORTIFY_SOURCE=2' 'CXXFLAGS=-g -O2 -fdebug-prefix-map=/build/squid3-TZ71Ws/squid3-3.5.27=. -fstack-protector-strong -Wformat -Werror=format-security -Wno-error=deprecated -Wno-error=format-truncation'

squid:/etc/squid# cat /etc/lsb-release
DISTRIB_ID=Ubuntu
DISTRIB_RELEASE=18.04
DISTRIB_CODENAME=bionic
DISTRIB_DESCRIPTION="Ubuntu 18.04.2 LTS"