Set Up a Network Peering Connection
On this page
Note
This feature is not available for
M0free clusters,M2, andM5clusters. To learn more, see Atlas M0 (Free Cluster), M2, and M5 Limitations.This feature is not supported on Serverless instances at this time. To learn more, see Serverless Instance Limitations.
Atlas supports network peering connections for dedicated clusters hosted on AWS, Google Cloud, and Azure, and on multi-cloud sharded clusters.
Network peering establishes a private connection between your Atlas VPC and your cloud provider's VPC. The connection isolates traffic from public networks for added security.
Warning
Atlas does not support Network Peering between clusters deployed in a single region on different cloud providers. For example, you cannot set up Network Peering between an Atlas cluster hosted in a single region on AWS and an application hosted in a single region on GCP.
Required Access
To set up a Network Peering connection, you must have
Organization Owner or Project Owner access to
the project.
Configure Network Containers
Create a Network Container
To configure the Atlas CIDR without configuring Network Peering, see Create a New Network Peering Container. You must use the API to create the container without Network Peering.
View Network Containers
Delete Network Containers
Configure an Atlas Network Peering Connection
To configure Atlas Network Peering for a cluster, perform the procedure on the tab corresponding to your cluster's cloud provider. You also configure the Atlas VPC CIDR during this procedure.
View Atlas Network Peering Connections
Remove an Atlas Network Peering Connection
Network Peering Architectures
Multiple cloud-hosted applications might need to connect securely to the same Atlas project.
Network Peering between an Atlas VPC and Two Virtual Networks with Identical CIDR Blocks
Consider a case where two applications use virtual networks (VPC, VNet) with identical IP CIDR blocks. You want both applications to securely connect to the same Atlas cluster via VPC peering. To achieve this, create one network peering connection between each application's virtual network and your Atlas cluster.
Cloud provider virtual networks can’t peer to each other if they have identical CIDR blocks. However, you can peer each of the applications' virtual networks with the Atlas virtual network if the Atlas virtual network includes two non-overlapping CIDR blocks. Configure each of the peering connections to have non-overlapping route-back CIDR blocks in the Atlas virtual network.
Follow this general process:
Before you deploy any clusters, create a network peering connection for each virtual network that you want to peer with Atlas. You do this by creating a CIDR block in the Atlas virtual network for each application's virtual network.
In the virtual network's configuration for your cloud provider, establish routing between each of your application's virtual networks and their respective Atlas CIDR blocks.
Deploy your Atlas cluster.