Custom firewalls for your MongoDB deployment(s)

Update 6/16/2016: Updated references to old UI

MongoLab runs all of its hosted MongoDB deployments with authorization enabled, which means that username / password authentication is required before your database can be accessed.

For lower-level network security we also allow you to configure custom firewall settings. This feature is available to all MongoLab users on Dedicated plans.

Configuring custom firewalls

If you have yet to configure a custom firewall, you'll notice a new Networking tab from your deployment view. By default, your firewall configuration will include 0.0.0.0/0, which allows all traffic to your database.

networking-tab

 

To lock down your deployment, we allow three options for configuring new firewall rules. You may:

  • Whitelist IP addresses
  • Whitelist Amazon EC2 Security Groups
  • Copy existing rules from one deployment to another

Whitelisting IP addresses

MongoLab can configure your firewall to limit access to only the IP address(es) (or address ranges) you specify. We use CIDR rules to define the allowable address(es) and secure access to your MongoLab-hosted Dedicated plan databases.

Whitelisting Amazon EC2 security groups (AWS only)

If your Dedicated plan database is hosted on AWS and your application is running from the same AWS region and on EC2-Classic, we recommend allowing access to Security Group(s) instead of IP addresses. This way you won't need to change your database deployment's firewall rules as you spin up/down your app servers.

To control access to your MongoLab-hosted database using your EC2 security group, you'll need to provide your AWS account ID (a 12-digit number) and the name or ID of your Security Group(s).

Copy existing rules

If you have already configured custom allow rules for one MongoDB deployment in your MongoLab account, you can copy these rules to any other Dedicated plan deployment in your account. Simply select which deployment you want to copy from, and we'll take care of the rest!

Security is our priority

MongoLab takes the security of MongoLab accounts and deployments seriously. We are continuously working to improve the features and tools that increase the safety of your data. To find up-to-date information on what security features are available to MongoLab users, visit our documentation portal. As always, if you have any questions or feedback you can reach us at support@mongolab.com.

3 Responses to Custom firewalls for your MongoDB deployment(s)

  1. sebest 2014/09/25 at 11:45 am #

    Great! What about support for SSL?

  2. Chris Chang 2014/10/03 at 11:15 am #

    We expect SSL development to be complete by the end of Fall. Feel free to write in for updates!

Trackbacks/Pingbacks

  1. Custom firewalls for your MongoDB deployment(s) | Blog - 2015/07/23

    […] Tweet Share […]

Leave a Reply