ApsaraDB for MongoDB is fully compatible with the MongoDB protocol. Based on the Apsara distributed system and high-reliability storage engine, it provides a multiple-node HA architecture and various solutions, such as elastic scaling, disaster recovery, rollback by using backup files, and performance optimization. This topic describes the features of ApsaraDB for MongoDB.

Flexible architecture

ApsaraDB for MongoDB has flexible deployment architectures, such as standalone, replica set, and sharded cluster instances, meeting requirements of different business scenarios.

Elastic scaling

You can change the configuration of an ApsaraDB for MongoDB instance, including its specifications, storage space, and number of nodes, based on your business needs. You can also set the effective time for the configuration change. We recommend that you set the effective time to off-peak hours to avoid impacts on business.

Data security

Security technology Description
Anti-DDoS Monitors inbound traffic in real time, filters source IP addresses to scrub large amounts of malicious traffic, and triggers the black hole mechanism when traffic scrubbing becomes ineffective.
IP address whitelist Filters IP addresses for instance access to implement high-level security protection. You can configure up to 1,000 IP addresses in a whitelist. For more information, see Configure a whitelist for an ApsaraDB for MongoDB instance.
VPC A VPC is an isolated network with higher security and performance than a classic network. You must create a VPC in advance. For more information, see Create a default VPC and VSwitch.
Disaster recovery

ApsaraDB for MongoDB provides zone-disaster recovery to further meet high-reliability and data security requirements.

You can select a multi-zone when you create an instance. For more information, see Create a multi-zone replica set instance or Create a multi-zone sharded cluster instance. You can also migrate a replica set instance to a multi-zone. For more information, see Migrate an ApsaraDB for MongoDB instance across zones in the same region.

SSL encryption Encrypts network connections in compliance with SSL at the transport layer to improve data security and guarantee data integrity during communication. For more information, see Configure SSL encryption for an ApsaraDB for MongoDB instance.
TDE Performs real-time I/O encryption and decryption on data files. Data is encrypted before being written to a disk and decrypted when being read from the disk and written into the memory. TDE does not increase the size of data files. You can use TDE without modifying your application that uses ApsaraDB for MongoDB. For more information, see Configure TDE.
Automatic backup You can set a backup policy to configure the start time for data backup during off-peak hours. For more information about how set a backup policy, see Automatically back up ApsaraDB for MongoDB data
Temporary backup You can manually back up ApsaraDB for MongoDB data. For more information, see Manually back up an ApsaraDB for MongoDB instance. Both physical backup and logical backup are supported.
Data restoration You can create an instance based on a backup file, create an instance based on the backup file generated at a time point, and restore backup data in the current instance. For more information, see Restore data to a new ApsaraDB for MongoDB instance by backup set, Restore data to a new ApsaraDB for MongoDB instance by point in time, and Restore data to your current ApsaraDB for MongoDB instance.
Backup file download ApsaraDB for MongoDB retains your backup files free for up to seven days. During this period, you can log on to the ApsaraDB for MongoDB console and download the backup files to a local device.

Comprehensive monitoring

ApsaraDB for MongoDB provides up to 20 system performance metrics, such as disk capacity, IOPS, connections, CPU utilization, network traffic, transactions per second (TPS), queries per second (QPS), and cache hit ratio. For more information, see View monitoring information.

Professional tools

Data Management (DMS) allows you to manage relational databases such as MySQL, SQL Server, and PostgreSQL, non-relational databases such as MongoDB and Redis, and Linux servers. DMS offers an integrated solution to view BI charts and data trends, track data, optimize performance, implement access control, and manage data, schemas, and servers.

Data Transmission Service (DTS) is a data service provided by Alibaba Cloud to support data exchange between data sources such as relational database management system (RDBMS), NoSQL, and online analytical processing (OLAP). It provides data transmission capabilities such as data migration, real-time data subscription, and real-time data synchronization. DTS applies to scenarios such as data migration without server downtime, geo-disaster recovery, cross-border data synchronization, and cache refresh policies. It helps you build a secure, scalable, and highly available data architecture.