Secure your MongoDB Server


MongoDB is a free cross-platform document-oriented database. When this service is running and accessible on the internet, it is exposed to scans or intrusion attempts which could generate system information disclosure or data leaks. Therefore it is important to enable the authentication and restrict the access to this service.


In order to secure your infrastructure, specifically the MongoDB service, we suggest that you:

 bind_ip =
  • Add firewall rules to allow trusted connections (such as localhost or other known and trusted networks) and block other incoming connections to your server's port 27017 from the Internet.  (see details about the default ports used by MongoDB

You will also find additional recommandations to secure your MongoDB server in the official website and


Article is closed for comments.
Powered by Zendesk