Help
FortiSIEM
FortiSIEM provides Security Information and Event Management (SIEM) and User and Entity Behavior Analytics (UEBA)
koolishami
Staff
Staff

Created on ‎12-18-2024 01:04 AM Edited on ‎12-18-2024 01:04 AM By Moderator

Article Id 365384

Troubleshooting Tip: Changing IP Address via configFSM.sh Results in 'Connection Timed Out'

Description

This article provides a step-by-step guide for troubleshooting issues encountered when changing the IP address of a FortiSIEM appliance using configFSM.sh. Specifically, it addresses the error:

 

unable to connect to database: connection to server at "<old_IP>", port 5432 failed: Connection timed out.
Scope FortiSIEM v7.x+.
Solution

Important: Before proceeding, ensure a snapshot of the virtual machine is taken for recovery purposes.

This error typically occurs due to misconfiguration during the IP address change process, particularly when moving the IP from one interface to another.

 

Reference Article:
Technical Tip: How to change IP address of a FortiSIEM appliance

 

Follow these steps to resolve the issue:

  1. Verify IP Address Assignment.

Run the following commands to verify the current IP address configuration:

 

ifconfig

ip a

 

The output should display the new IP address if the related article's steps were followed.

 

  1. Update the New IP Address in Configuration Files.

     

    1. /etc/hosts.

      Add or edit the host file with the new IP and hostname:


      NEW_IP hostname

       

       

    2. PostgreSQL Database.

      Run these commands to update the database records:

      psql -U phoenix phoenixdb -c "update ph_sys_server set ip_addr='NEW_IP' where id='1';"

      psql -U phoenix phoenixdb -c "update ph_health_status set host_ip='NEW_IP';"

      psql -U phoenix phoenixdb -c "update ph_sys_conf set value='https://NEW_IP/svn' where property like 'svn_url%';"

       

       

    3. phoenix_config.txt.

      Search for references for the old and new IPs:

      cat /opt/phoenix/config/phoenix_config.txt | grep 'OLD_IP'

      cat /opt/phoenix/config/phoenix_config.txt | grep 'NEW_IP' --> Should not return any output.

      Edit phoenix_config.txt to replace all occurrences of SERVER_HOST and server_host with NEW_IP:

      vim /opt/phoenix/config/phoenix_config.txt

       

       

    4. License Configuration.

      Update the license configuration:

      phLicenseTool --hostip NEW_IP

       

  2. Restart Services.

Stop and restart Java processes:

 

 

killall -9 java

phtools --start all

 

Check the status of all processes:

 

phstatus

 

Following these steps should resolve the connection timeout issue and ensure proper functionality after the IP address change.
1202
Suggest New Article
Article Feedback
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.