Over a million developers have joined DZone.

Custom Firewalls for Your MongoDB Deployment(s)

· Java Zone

What every Java engineer should know about microservices: Reactive Microservices Architecture.  Brought to you in partnership with Lightbend.

MongoLab runs all of its hosted MongoDB deployments with authorization enabled, which means that username / password authentication is required before your database can be accessed.

For lower-level network security we also allow you to configure custom firewall settings. This feature is available to all MongoLab users on Dedicated plans.

Configuring custom firewalls

If you have yet to configure a custom firewall, you’ll notice a new Firewall tab from your deployment view. By default, your firewall configuration will include, which allows all traffic to your database.

MongoLab MongoDB GUI Firewall feature

To lock down your deployment, we allow three options for configuring new firewall rules. You may:

  • Whitelist IP addresses
  • Whitelist Amazon EC2 Security Groups
  • Copy existing rules from one deployment to another

Whitelisting IP addresses

MongoLab can configure your firewall to limit access to only the IP address(es) (or address ranges) you specify. We use CIDR rules to define the allowable address(es) and secure access to your MongoLab-hosted Dedicated plan databases.

Whitelisting Amazon EC2 security groups (AWS only)

If your Dedicated plan database is hosted on AWS and your application is running from the same AWS region and on EC2-Classic, we recommend allowing access to Security Group(s) instead of IP addresses. This way you won’t need to change your database deployment’s firewall rules as you spin up/down your app servers.

To control access to your MongoLab-hosted database using your EC2 security group, you’ll need to provide your AWS account ID (a 12-digit number) and the name or ID of your Security Group(s).

Copy existing rules

If you have already configured custom allow rules for one MongoDB deployment in your MongoLab account, you can copy these rules to any other Dedicated plan deployment in your account. Simply select which deployment you want to copy from, and we’ll take care of the rest!

Security is our priority

MongoLab takes the security of MongoLab accounts and deployments seriously. We are continuously working to improve the features and tools that increase the safety of your data. To find up-to-date information on what security features are available to MongoLab users, visit our documentation portal. As always, if you have any questions or feedback you can reach us at support@mongolab.com.

Microservices for Java, explained. Revitalize your legacy systems (and your career) with Reactive Microservices Architecture, a free O'Reilly book. Brought to you in partnership with Lightbend.


Published at DZone with permission of Chris Chang, DZone MVB. See the original article here.

Opinions expressed by DZone contributors are their own.

The best of DZone straight to your inbox.

Please provide a valid email address.

Thanks for subscribing!

Awesome! Check your inbox to verify your email so you can start receiving the latest in tech news and resources.

{{ parent.title || parent.header.title}}

{{ parent.tldr }}

{{ parent.urlSource.name }}