Can you please elaborate more on what other ways are you referring to? This particular way was used to communicate with the DB hosted on a different cloud provider from where it was being used. I would like to learn about different ways to accomplish the same securely. This was one of the ways I could find.

lots of ways..

at the network: ipsec, openvpn, wireguard

tcp proxy before the application: stunnel, spiped

mongo protocol is http right?

http tls proxy: haproxy, nginx, etc

I would expect native SSL to have better perf than at least some of those. Maybe. Probably not ipsec and wireguard.