Hello experts,
I have an application running in customer’s plant on a Windows 10 PC that needs to send data to MongoDB Atlas cluster. The PC is behind the customer firewall, so they requested needed IPs and ports for the connection. Given that Mongo cluster IPs changed regularly, and for better secure design, I figured the best way is to have a private endpoint connection to the cluster.
Below is the setup I made so far
- Azure
- Virtual Network created with no firewall, microsoft defender, peerings, route table or lock
- Subnet 10.0.64.0/18 created inside the VNet
- Private endpoint 10.0.64.4 with no security groups, locks, routings (Provisioning state: Succeeded, Connection status: Approved)
- Private DNS zone named mongodb.net linked to the VNet (Link Status: Completed) with a record set Type A named machinedata-pl-0.rcdjg
- Mongo
- M10 cluster named MachineData, private connection string mongodb+srv://<db_username>:<db_password>@machinedata-pl-0.rcdjg.mongodb.net/
- Private endpoint created (both Atlas and Azure endpoints statutes are active)
Can’t connect to Mongo cluster using the connection string (error: connect ETIMEDOUT 10.0.64.4:1026) the private endpoint 10.0.64.4 appears here.
nslookup command from PC cmd outputs the following:
nslookup machinedata-pl-0.rcdjg.mongodb.net
Server: UnKnown
Address: 192.168.140.168
Name: machinedata-pl-0.rcdjg.mongodb.net
Gladly appreciate any help on this topic, or suggestions on how to connect securely to database with fixed IP and port open in firewall settings
(P.S: testing is done now on home router internet with no firewall restrictions)