Problem Openvas-setup in CentOs 6.7 !

hi
I installed Openvas we have the following problem
internet Connection is Ok

Even Reinstall the problem is not resolved

Openvas Setup, Version: 0.5


Step 1: Update NVT's and SCAP data
Please note this step could take some time.
Once completed, NVT's and SCAP data will be updated automatically every 24 hours

Updating NVTs....
 This script synchronizes an NVT collection with the 'OpenVAS NVT Feed'.
 The 'OpenVAS NVT Feed' is provided by 'The OpenVAS Project'.
 Online information about this feed: 'http://www.openvas.org/openvas-nvt-feed.html'.
 NVT dir: /var/lib/openvas/plugins
OpenVAS feed server - http://www.openvas.org/
This service is hosted by Intevation GmbH - http://intevation.de/
All transactions are logged.

Please report synchronization problems to openvas-feed@intevation.de.
If you have any other questions, please use the OpenVAS mailing lists
or the OpenVAS IRC chat. See http://www.openvas.org/ for details.

rsync: read error: Connection timed out (110)
rsync error: error in rsync protocol data stream (code 12) at io.c(759) [receiver=3.0.6]
[e] Error: rsync failed.

If possible, guide

Hello mnnn,

As a starting point could you please check rsync entry 873/tcp in /etc/services and you're not blocked by /etc/hosts.deny .

Thanks,
R. Singh

1 Like

thanks fore replay

rsync           873/tcp                         # rsync
rsync           873/udp                         # rsync
rquotad         875/tcp                         # rquota daemon
rquotad         875/udp                         # rquota daemon

Not Block

Hello mnnn,

Not pretty sure, but could you check if you have installed openssh-clients into your machine, it may be the reason for this error.

Thanks,
R. Singh

1 Like

Please tell me what exactly I check

Hello mnnn,

You could check with following command if openssh-clients is installed into your system or not.

rpm -qa openssh-clients

Also following may help you to understand about openssh-clients .

Thanks,
R. Singh

1 Like

Have you tested manually? Can you reach the server you are rsync'ing with through ssh ?.
Is the firewall allowing this connection?
Have you tried to configure it using wget (https) instead of rsync (ssh)? Perhaps that protocol is allowed?

---
@ravindersingh:
/etc/hosts.deny is for incoming connections to services on the hosts itself.
This, however, is an outbound connection from the host to a server on the Internet.
Port 873 is for legacy insecure rsync, and again for incoming connections. Nobody uses that port anymore. Nowadays rsync is typically used with ssh only, which is the default and which usually is on port 22 (but again, for incoming connections, which is not the case here).

2 Likes

thanks for replay

Not Installed openssh

 service iptables status
iptables: Firewall is not running.

The server behind utm
And access to dns http https ftp ssh

openvas-setup --wget

Openvas Setup, Version: 0.5


Step 1: Update NVT's and SCAP data
Please note this step could take some time.
Once completed, NVT's and SCAP data will be updated automatically every 24 hours

Updating NVTs....
 This script synchronizes an NVT collection with the 'OpenVAS NVT Feed'.
 The 'OpenVAS NVT Feed' is provided by 'The OpenVAS Project'.
 Online information about this feed: 'http://www.openvas.org/openvas-nvt-feed.html'.
 NVT dir: /var/lib/openvas/plugins
OpenVAS feed server - http://www.openvas.org/
This service is hosted by Intevation GmbH - http://intevation.de/
All transactions are logged.

Please report synchronization problems to openvas-feed@intevation.de.
If you have any other questions, please use the OpenVAS mailing lists
or the OpenVAS IRC chat. See http://www.openvas.org/ for details.

rsync: read error: Connection timed out (110)
rsync error: error in rsync protocol data stream (code 12) at io.c(759) [receiver=3.0.6]
[e] Error: rsync failed.

Hello mnnn,

So as you confirmed that openssh-clients is not installed and Scrutinizer has also confirmed that rsync requires this facility, so could please try to install openssh into your system and let us know how it goes. You should be root to install the same you could yum for doing the same too.

NOTE: It is just a suggestion it may be or may not be exact solution, please avoid trying this into a LIVE(Production) environment and try to do this into a NON-PROD environment.

Thanks,
R. Singh

1 Like

sorry , I just did not notice
My English is a little weak,

# /sbin/service sshd status
openssh-daemon (pid  12601) is running...

ihave changed ssh the defult port
Can be effective in this error?
thanks

---------- Post updated at 02:34 PM ---------- Previous update was at 01:37 PM ----------

rpm -qa openssh-clients
openssh-clients-5.3p1-114.el6_7.x86_64

Utm sailed from

~]# openvas-nvt-sync -wget
 This script synchronizes an NVT collection with the 'OpenVAS NVT Feed'.
 The 'OpenVAS NVT Feed' is provided by 'The OpenVAS Project'.
 Online information about this feed: 'http://www.openvas.org/openvas-nvt-feed.html'.
 NVT dir: /var/lib/openvas/plugins
rsync: read error: Connection reset by peer (104)
rsync error: error in rsync protocol data stream (code 12) at io.c(759) [receiver=3.0.6]
[e] Error: rsync failed.
openvas-nvt-sync
 This script synchronizes an NVT collection with the 'OpenVAS NVT Feed'.
 The 'OpenVAS NVT Feed' is provided by 'The OpenVAS Project'.
 Online information about this feed: 'http://www.openvas.org/openvas-nvt-feed.html'.
 NVT dir: /var/lib/openvas/plugins
rsync: getaddrinfo: feed.openvas.org 873: Temporary failure in name resolution
rsync error: error in socket IO (code 10) at clientserver.c(124) [receiver=3.0.6]
[e] Error: rsync failed.

Hello mnnn,

Let's try one more step here(I am not *NIX expert but trying to troubleshoot here). Above error may be because of file /etc/resolv.conf , could you please check name servers entry in it and do let us know how it goes then.

Thanks,
R. Singh

1 Like

Hi
Thanks For Replay
The contents of the file
/etc/resolv.conf

nameserver 8.8.8.8
nameserver 4.2.2.3
nameserver 192.168.10.15

The problem was solved by rebooting!
How difficult do you think?!