Help Center/ Config/ User Guide/ Resource Compliance/ Built-In Policies/ Document Database Service/ DDS Instances Should Not Use Unallowed Ports

Updated on 2025-08-25 GMT+08:00

View PDF

DDS Instances Should Not Use Unallowed Ports

Rule Details

**Table 1** Rule details
Parameter	Description
Rule Name	dds-instance-port-check
Identifier	DDS Instances Should Not Use Unallowed Ports
Description	If a DDS instance is using an unallowed port, this instance is non-compliant.
Tag	dds
Trigger Type	Configuration change
Filter Type	dds.instances
Rule Parameters	disabledPortsPatterns: Unallowed ports. The value must be an array.

Application Scenarios

The default port for MongoDB is 27017. The default port is more likely to be eavesdropped, so a non-default port is recommended. For details, see Security Best Practices.

Solution

Change the instance port by referring to Changing a Database Port. The port number must be in the range of 2100 to 65535 (excluding 12017 and 33071).

Rule Logic

If a DDS instance is using an unallowed port, this instance is non-compliant.
If a DDS instance has unallowed ports disabled, this instance is compliant.

Parent topic: Document Database Service

Previous topic: DDS Instances Should Not Use EPIs

Next topic: DDS Instance Version Check

Feedback

Was this page helpful?

Helpful Not helpful

Provide feedback

Thank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.

The system is busy. Please try again later.

Which of the following issues have you encountered?

Content is inconsistent with the product UI

Unclear descriptions

Lack of examples or code

Incorrect steps

Can't find what I need

Lack of best practices

Feedback (optional)

0/500

Select at least one type of issue, and enter your comments or suggestions.

Enter a maximum of 500 characters.

Submit Cancel

For any further questions, feel free to contact us through the chatbot.