Over a million developers have joined DZone.
{{announcement.body}}
{{announcement.title}}

Custom Firewalls for Your MongoDB Deployment(s)

DZone's Guide to

Custom Firewalls for Your MongoDB Deployment(s)

· Java Zone
Free Resource

Are you joining the containers revolution? Start leveraging container management using Platform9's ultimate guide to Kubernetes deployment.

MongoLab runs all of its hosted MongoDB deployments with authorization enabled, which means that username / password authentication is required before your database can be accessed.

For lower-level network security we also allow you to configure custom firewall settings. This feature is available to all MongoLab users on Dedicated plans.

Configuring custom firewalls

If you have yet to configure a custom firewall, you’ll notice a new Firewall tab from your deployment view. By default, your firewall configuration will include 0.0.0.0/0, which allows all traffic to your database.

MongoLab MongoDB GUI Firewall feature

To lock down your deployment, we allow three options for configuring new firewall rules. You may:

  • Whitelist IP addresses
  • Whitelist Amazon EC2 Security Groups
  • Copy existing rules from one deployment to another

Whitelisting IP addresses

MongoLab can configure your firewall to limit access to only the IP address(es) (or address ranges) you specify. We use CIDR rules to define the allowable address(es) and secure access to your MongoLab-hosted Dedicated plan databases.

Whitelisting Amazon EC2 security groups (AWS only)

If your Dedicated plan database is hosted on AWS and your application is running from the same AWS region and on EC2-Classic, we recommend allowing access to Security Group(s) instead of IP addresses. This way you won’t need to change your database deployment’s firewall rules as you spin up/down your app servers.

To control access to your MongoLab-hosted database using your EC2 security group, you’ll need to provide your AWS account ID (a 12-digit number) and the name or ID of your Security Group(s).

Copy existing rules

If you have already configured custom allow rules for one MongoDB deployment in your MongoLab account, you can copy these rules to any other Dedicated plan deployment in your account. Simply select which deployment you want to copy from, and we’ll take care of the rest!

Security is our priority

MongoLab takes the security of MongoLab accounts and deployments seriously. We are continuously working to improve the features and tools that increase the safety of your data. To find up-to-date information on what security features are available to MongoLab users, visit our documentation portal. As always, if you have any questions or feedback you can reach us at support@mongolab.com.

Using Containers? Read our Kubernetes Comparison eBook to learn the positives and negatives of Kubernetes, Mesos, Docker Swarm and EC2 Container Services.

Topics:

Published at DZone with permission of Chris Chang, DZone MVB. See the original article here.

Opinions expressed by DZone contributors are their own.

THE DZONE NEWSLETTER

Dev Resources & Solutions Straight to Your Inbox

Thanks for subscribing!

Awesome! Check your inbox to verify your email so you can start receiving the latest in tech news and resources.

X

{{ parent.title || parent.header.title}}

{{ parent.tldr }}

{{ parent.urlSource.name }}