I am new to OpenVAs and have had a nightmare trying to install it in the various guises.
I am now running it in a docker container, as suggested in another post…
I am using bridged network on the VM Host as I need to be able to interact with local network devices.
I am trying to connect from my local PC running VirtualBox. Virtualbox hosts a Ubuntu 22.04.3 Guest, on which Docker is running.
Heres a Picture
I have installed it from the instructions here for Greenbone Community Containers 22.4.
It is being run via the setup-and-start-greenbone-community-edition.sh script
It seems to be up and running. I look at it via docker ps -a
Every 2.0s: docker ps -a openVAS: Mon Nov 6 13:12:47 2023
CONTAINER ID IMAGE COMMAND CREATED STATUS PORTS NAMES
bb67d11e50e3 greenbone/gsa:stable "/usr/local/bin/entr…" 2 hours ago Up 23 minutes 127.0.0.1:9392->80/tcp greenbone-community-edition-gsa-1
6a87283a46a2 greenbone/gvm-tools "/usr/local/bin/entr…" 2 hours ago Exited (0) 23 minutes ago greenbone-community-edition-gvm-tools-1
7f7a9c6cba36 greenbone/gvmd:stable "/usr/local/bin/entr…" 2 hours ago Up 23 minutes greenbone-community-edition-gvmd-1
fb12dcd06e7e greenbone/notus-scanner:stable "/usr/local/bin/entr…" 2 hours ago Up 23 minutes greenbone-community-edition-notus-scanner-1
f3c7b0f3d763 greenbone/ospd-openvas:stable "/usr/bin/tini -- /u…" 2 hours ago Up 23 minutes greenbone-community-edition-ospd-openvas-1
4f97f016897b greenbone/dfn-cert-data "/bin/init.sh" 2 hours ago Exited (0) 23 minutes ago greenbone-community-edition-dfn-cert-data-1
d615c7ebc4df greenbone/report-formats "/bin/init.sh" 2 hours ago Exited (0) 23 minutes ago greenbone-community-edition-report-formats-1
91af97e76a43 greenbone/vulnerability-tests "/bin/init.sh" 2 hours ago Exited (0) 23 minutes ago greenbone-community-edition-vulnerability-tests-1
6307a8bad227 greenbone/data-objects "/bin/init.sh" 2 hours ago Exited (0) 23 minutes ago greenbone-community-edition-data-objects-1
93f6b5c41e8e greenbone/scap-data "/bin/init.sh" 2 hours ago Exited (0) 23 minutes ago greenbone-community-edition-scap-data-1
1524d578cc37 greenbone/cert-bund-data "/bin/init.sh" 2 hours ago Exited (0) 23 minutes ago greenbone-community-edition-cert-bund-data-1
244b5a85340d greenbone/notus-data "/bin/init.sh" 2 hours ago Exited (0) 23 minutes ago greenbone-community-edition-notus-data-1
7274711549e1 greenbone/pg-gvm:stable "/usr/local/bin/entr…" 3 hours ago Up 23 minutes greenbone-community-edition-pg-gvm-1
5a77c1441a80 greenbone/gpg-data "/bin/init.sh" 3 hours ago Exited (0) 23 minutes ago greenbone-community-edition-gpg-data-1
628f9611c7ff greenbone/redis-server "/bin/sh -c 'rm -f /…" 3 hours ago Up 23 minutes greenbone-community-edition-redis-server-1
ee665458b21e greenbone/mqtt-broker "/bin/sh -c 'mosquit…" 3 hours ago Up 23 minutes greenbone-community-edition-mqtt-broker-1
And I can see that my Ubuntu box ‘openVAS’ is listening on localhost :9392 via netstat
Active Internet connections (only servers)
Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name
tcp 0 0 localhost:53 0.0.0.0:* LISTEN -
tcp 0 0 localhost:9392 0.0.0.0:* LISTEN -
tcp 0 0 0.0.0.0:22 0.0.0.0:* LISTEN -
tcp6 0 0 [::]:22 [::]:* LISTEN -
However when I try to connect from my PC to openVAS via the VM I get my connections reset
tcpdump: verbose output suppressed, use -v[v]... for full protocol decode
listening on enp0s3, link-type EN10MB (Ethernet), snapshot length 262144 bytes
13:10:15.069349 IP 192.168.0.69.19088 > openVAS.9392: Flags [S], seq 3779732241, win 64240, options [mss 1460,nop,wscale 8,nop,nop,sackOK], length 0
13:10:15.069392 IP openVAS.9392 > 192.168.0.69.19088: Flags [R.], seq 0, ack 3779732242, win 0, length 0
13:10:15.071175 IP 192.168.0.69.19089 > openVAS.9392: Flags [S], seq 275205811, win 64240, options [mss 1460,nop,wscale 8,nop,nop,sackOK], length 0
13:10:15.071206 IP openVAS.9392 > 192.168.0.69.19089: Flags [R.], seq 0, ack 275205812, win 0, length 0
13:10:15.321142 IP 192.168.0.69.19090 > openVAS.9392: Flags [S], seq 895398121, win 64240, options [mss 1460,nop,wscale 8,nop,nop,sackOK], length 0
13:10:15.321201 IP openVAS.9392 > 192.168.0.69.19090: Flags [R.], seq 0, ack 895398122, win 0, length 0
13:10:15.570571 IP 192.168.0.69.19088 > openVAS.9392: Flags [S], seq 3779732241, win 64240, options [mss 1460,nop,wscale 8,nop,nop,sackOK], length 0
13:10:15.570664 IP openVAS.9392 > 192.168.0.69.19088: Flags [R.], seq 0, ack 1, win 0, length 0
13:10:15.572270 IP 192.168.0.69.19089 > openVAS.9392: Flags [S], seq 275205811, win 64240, options [mss 1460,nop,wscale 8,nop,nop,sackOK], length 0
13:10:15.572326 IP openVAS.9392 > 192.168.0.69.19089: Flags [R.], seq 0, ack 1, win 0, length 0
13:10:15.822277 IP 192.168.0.69.19090 > openVAS.9392: Flags [S], seq 895398121, win 64240, options [mss 1460,nop,wscale 8,nop,nop,sackOK], length 0
13:10:15.822366 IP openVAS.9392 > 192.168.0.69.19090: Flags [R.], seq 0, ack 1, win 0, length 0
13:10:16.071118 IP 192.168.0.69.19088 > openVAS.9392: Flags [S], seq 3779732241, win 64240, options [mss 1460,nop,wscale 8,nop,nop,sackOK], length 0
13:10:16.071169 IP openVAS.9392 > 192.168.0.69.19088: Flags [R.], seq 0, ack 1, win 0, length 0
13:10:16.072961 IP 192.168.0.69.19089 > openVAS.9392: Flags [S], seq 275205811, win 64240, options [mss 1460,nop,wscale 8,nop,nop,sackOK], length 0
I suspect the issue is somewhere in the guest VM in VirtualBOX, but as I am new to that and docker, I thought I’d better reach out. Any suggestions on where I can look?
