Openvas is returning 0 hosts alive, even though it is up running. Nmap clearly shows open ports.
Openvas logs:
gvmd_1 | event target:MESSAGE:2024-08-13 09h25.30 utc:294: Target could not be created by admin
gvmd_1 | event task:MESSAGE:2024-08-13 09h25.30 utc:306: Status of task (a67b990c-d0bd-4d4d-a6ce-0fcee4e30c08) has changed to New
gvmd_1 | event task:MESSAGE:2024-08-13 09h25.30 utc:306: Task AccelQ@publicIpScan-3 (a67b990c-d0bd-4d4d-a6ce-0fcee4e30c08) has been created by admin
gvmd_1 | event task:MESSAGE:2024-08-13 09h25.30 utc:310: Status of task AccelQ@publicIpScan-3 (a67b990c-d0bd-4d4d-a6ce-0fcee4e30c08) has changed to Requested
gvmd_1 | event task:MESSAGE:2024-08-13 09h25.30 utc:310: Task AccelQ@publicIpScan-3 (a67b990c-d0bd-4d4d-a6ce-0fcee4e30c08) has been requested to start by admin
ospd-openvas_1 | OSPD[8] 2024-08-13 09:25:35,100: INFO: (ospd.command.command) Scan 6f76b244-584d-46bf-8f68-c77a840bed9a added to the queue in position 2.
gvmd_1 | event task:MESSAGE:2024-08-13 09h25.35 utc:312: Status of task AccelQ@publicIpScan-3 (a67b990c-d0bd-4d4d-a6ce-0fcee4e30c08) has changed to Queued
ospd-openvas_1 | OSPD[8] 2024-08-13 09:25:35,953: INFO: (ospd.ospd) Currently 1 queued scans.
ospd-openvas_1 | OSPD[8] 2024-08-13 09:25:36,043: INFO: (ospd.ospd) Starting scan 6f76b244-584d-46bf-8f68-c77a840bed9a.
gvmd_1 | event task:MESSAGE:2024-08-13 09h25.40 utc:312: Status of task AccelQ@publicIpScan-3 (a67b990c-d0bd-4d4d-a6ce-0fcee4e30c08) has changed to Running
openvas_1 | sd main:MESSAGE:2024-08-13 09h26.01 utc:470: openvas 23.0.1 started
openvas_1 | libgvm util: DEBUG:2024-08-13 09h26.01 utc:470: fetch_max_db_index: maximum DB number: 1025
openvas_1 | sd main:MESSAGE:2024-08-13 09h26.01 utc:470: attack_network_init: LSC via openvasd
openvas_1 | sd main: DEBUG:2024-08-13 09h26.01 utc:470: Start loading scan preferences.
openvas_1 | libgvm util: DEBUG:2024-08-13 09h26.01 utc:470: fetch_max_db_index: maximum DB number: 1025
openvas_1 | sd main: DEBUG:2024-08-13 09h26.01 utc:470: End loading scan preferences.
openvas_1 | libgvm util: DEBUG:2024-08-13 09h26.01 utc:470: fetch_max_db_index: maximum DB number: 1025
openvas_1 | libgvm util: DEBUG:2024-08-13 09h26.01 utc:470: get_redis_ctx: connected to redis:///run/redis/redis.sock/4
openvas_1 | libgvm util: DEBUG:2024-08-13 09h26.01 utc:470: redis_delete_all: deleting all elements from KB #4
openvas_1 | libgvm util: DEBUG:2024-08-13 09h26.01 utc:470: redis_delete_all: deleting all elements from KB #4
openvas_1 | libgvm util: DEBUG:2024-08-13 09h26.01 utc:470: get_redis_ctx: connected to redis:///run/redis/redis.sock/2
openvas_1 | sd main: DEBUG:2024-08-13 09h26.05 utc:470: Client tried to raise the maximum hosts number - 32. Using 30. Change 'max_hosts' in openvas.conf if you believe this is incorrect
openvas_1 | sd main: DEBUG:2024-08-13 09h26.05 utc:470: Client tried to raise the maximum checks number - 32. Using 10. Change 'max_checks' in openvas.conf if you believe this is incorrect
openvas_1 | libgvm util: DEBUG:2024-08-13 09h26.05 utc:470: get_redis_ctx: connected to redis:///run/redis/redis.sock/3
openvas_1 | sd main:MESSAGE:2024-08-13 09h26.05 utc:470: Vulnerability scan 6f76b244-584d-46bf-8f68-c77a840bed9a started: Target has 1 hosts: 34.208.169.106, with max_hosts = 30 and max_checks = 10
openvas_1 | sd main: DEBUG:2024-08-13 09h26.05 utc:470: attack_network: started alive detection.
openvas_1 | libgvm boreas: DEBUG:2024-08-13 09h26.05 utc:470: alive_detection_init: Initialise alive scanner.
openvas_1 | libgvm boreas: DEBUG:2024-08-13 09h26.05 utc:470: alive_detection_init: Initialisation of alive scanner finished.
openvas_1 | libgvm boreas:MESSAGE:2024-08-13 09h26.05 utc:470: Alive scan 6f76b244-584d-46bf-8f68-c77a840bed9a started: Target has 1 hosts
openvas_1 | libgvm boreas: DEBUG:2024-08-13 09h26.05 utc:470: scan: ICMP Ping
openvas_1 | libgvm boreas: DEBUG:2024-08-13 09h26.06 utc:470: scan: TCP-ACK Service Ping
openvas_1 | libgvm boreas: DEBUG:2024-08-13 09h26.06 utc:470: scan: ARP Ping
openvas_1 | libgvm boreas: DEBUG:2024-08-13 09h26.07 utc:470: send_arp_v4: Ping 34.208.169.106 Interface: eth0 Src IP: 172.18.0.6 Src MAC: 02:42:ac:12:00:06
openvas_1 | libgvm boreas: DEBUG:2024-08-13 09h26.07 utc:470: scan: all ping packets have been sent, wait a bit for rest of replies.
openvas_1 | libgvm boreas: DEBUG:2024-08-13 09h26.10 utc:470: stop_sniffer_thread: Try to stop thread which is sniffing for alive hosts.
openvas_1 | libgvm boreas: DEBUG:2024-08-13 09h26.10 utc:470: sniffer_thread: Loop was successfully broken after call to pcap_breakloop
openvas_1 | libgvm boreas: DEBUG:2024-08-13 09h26.10 utc:470: stop_sniffer_thread: Stopped thread which was sniffing for alive hosts.
openvas_1 | libgvm boreas:MESSAGE:2024-08-13 09h26.10 utc:470: Alive scan 6f76b244-584d-46bf-8f68-c77a840bed9a finished in 5 seconds: 0 alive hosts of 1.
openvas_1 | libgvm boreas: DEBUG:2024-08-13 09h26.11 utc:470: get_host_from_queue: Boreas already finished scanning and we reached the end of the Queue of alive hosts.
openvas_1 | sd main: DEBUG:2024-08-13 09h26.11 utc:470: Test complete
openvas_1 | sd main: DEBUG:2024-08-13 09h26.11 utc:470: attack_network: free alive detection data
openvas_1 | sd main: DEBUG:2024-08-13 09h26.11 utc:470: attack_network: waiting for alive detection thread to be finished...
openvas_1 | sd main: DEBUG:2024-08-13 09h26.11 utc:470: attack_network: Finished waiting for alive detection thread.
openvas_1 | sd main:MESSAGE:2024-08-13 09h26.11 utc:470: Vulnerability scan 6f76b244-584d-46bf-8f68-c77a840bed9a finished in 10 seconds: 0 alive hosts of 1
ospd-openvas_1 | OSPD[8] 2024-08-13 09:26:12,657: INFO: (ospd.ospd) 6f76b244-584d-46bf-8f68-c77a840bed9a: Host scan finished.
ospd-openvas_1 | OSPD[8] 2024-08-13 09:26:12,659: INFO: (ospd.ospd) 6f76b244-584d-46bf-8f68-c77a840bed9a: Scan finished.
gvmd_1 | event task:MESSAGE:2024-08-13 09h26.15 utc:312: Status of task AccelQ@publicIpScan-3 (a67b990c-d0bd-4d4d-a6ce-0fcee4e30c08) has changed to Processing
gvmd_1 | event task:MESSAGE:2024-08-13 09h26.15 utc:312: Status of task AccelQ@publicIpScan-3 (a67b990c-d0bd-4d4d-a6ce-0fcee4e30c08) has changed to Done
gvmd_1 | event target:MESSAGE:2024-08-13 09h28.55 utc:335: Target could not be created by admin
I tried all the alive scan settings: āICMP, TCP Service & ARP Ping|TCP Service & ARP Ping|Iāµ
CMP & ARP Ping|ICMP & TCP Service Ping|ARP Ping|TCP Service Ping|ICMP Ping|Sāµ
can Config Defaultā
But in all cases it said 0 hosts alive.