Securing Mongo in hybrid enviroment

Hallo!

We have several serverless functions and a classic server-based Mongo installation. Is there a nice way to make it more secure?
Basic practice is disabling access to Mongo by limiting external IP’s to a list, but that seems to be not realistic with serveless (right?). Should only login/password auth be enough?
Every example out there was dealing with one or another cloud database provider.

P.S. newbies guide got nothing on this.

quote: make it more secure
Basic practice is disabling access to Mongo by limiting external IP’s to a list, but that seems to be not realistic with serveless (right?). Should only login/password auth be enough?

So you need build mongodb in VPC and set lambda functions in that VPC as well.

Hallo!
Thanks Bill, that is a nice idea. I was hoping that something like this was possible.
I will try to find more info on Google VPC and how to put serverless function (cloud functions) there.