1. Ensure that mongodb is placed in a safe and reliable network; the online server can be configured with dual network cards, 1 network card accesses the external network, and 1 network card accesses the mongodb internal network
2. The mongodb server can configure the firewall iptables and only open necessary services
3. Modify the default listening port
4. enable ssl
2. Account and password
Use the enterprise version of Kerberos authentication to avoid direct exposure of account and password
3. Supplement
Depending on how important your data is. If it is sensitive data, it is recommended to consider MongoDB Enterprise Edition, which has more comprehensive security features.
In addition, you can refer to a relatively large mongodb data leakage event that occurred this year:
![[Web front-end] Node.js quick start](https://img.php.cn/upload/course/000/000/067/662b5d34ba7c0227.png)
The problem has been solved.
Because the amount of data is relatively large, a layer of kafka is added in the middle
1. Network access control:
1. Ensure that mongodb is placed in a safe and reliable network; the online server can be configured with dual network cards, 1 network card accesses the external network, and 1 network card accesses the mongodb internal network
2. The mongodb server can configure the firewall iptables and only open necessary services
3. Modify the default listening port
4. enable ssl
2. Account and password
Use the enterprise version of Kerberos authentication to avoid direct exposure of account and password
3. Supplement
Depending on how important your data is. If it is sensitive data, it is recommended to consider MongoDB Enterprise Edition, which has more comprehensive security features.
In addition, you can refer to a relatively large mongodb data leakage event that occurred this year:
http://www.internet-security....