[RPKI] "Permission denied (13)" rsync errors

Martin Hoffmann martin at nlnetlabs.nl
Wed Mar 4 17:16:50 UTC 2020 

Compton, Rich A wrote:
> Hi, yes, all outbound traffic is permitted.  The rsync commands when
> launched by routinator seem to work fine when I start it from the
> command line but the rsync commands get that error “Permission denied
> (13)” and seem to fail when routinator is launched by systemd.

Hm. Could you change the '-v' in your ExecStart line to '-vv' and post
the log content for one of those rsync runs? Not sure if this is to do
with Centos’ systemd or if we are overlooking something here ...

Kind regards,
Martin

> 
> From: Martin Hoffmann <martin at nlnetlabs.nl>
> Date: Wednesday, March 4, 2020 at 4:23 AM
> To: "Compton, Rich A" <Rich.Compton at charter.com>
> Cc: Alex Band <alex at nlnetlabs.nl>, "rpki at lists.nlnetlabs.nl"
> <rpki at lists.nlnetlabs.nl> Subject: Re: [RPKI] "Permission denied
> (13)" rsync errors
> 
> Hi Rich!
> 
> 
> On 3 Mar 2020, at 23:52, Compton, Rich A via RPKI
> <rpki at lists.nlnetlabs.nl<mailto:rpki at lists.nlnetlabs.nl>> wrote:
> 
> Hi, yeah, I am starting routinator with a systemd script on Centos7.
> I think there is an issue with the rsync commands that are launched
> by routinator that prevent rsync from successfully putting files into
> the ".rpki-cache/repository/" directories.
> 
> From your errors, RRDP works fine, so permission in that directory
> shouldn’t be the error.
> 
> Rsync seems to complain about socket errors and not being allowed to
> connect. This may be a firewall issue. Rsync uses port 873. Is your
> machine allowed to connect out for that?
> 
> Kind regards,
> Martin
> 
> 
> E-MAIL CONFIDENTIALITY NOTICE: 
> The contents of this e-mail message and any attachments are intended
> solely for the addressee(s) and may contain confidential and/or
> legally privileged information. If you are not the intended recipient
> of this message or if this message has been addressed to you in
> error, please immediately alert the sender by reply e-mail and then
> delete this message and any attachments. If you are not the intended
> recipient, you are notified that any use, dissemination,
> distribution, copying, or storage of this message or any attachment
> is strictly prohibited.

More information about the RPKI mailing list