RDS

Question 1

What AWS service simplifies the relational database setup, operation, and scaling in the cloud?

Answer 1

Amazon Relational Database Service (RDS)

Question 2

Can you access the operating system of RDS instances?

Answer 2

No, RDS is a managed service that does not provide access to the operating system or allow SSH access

Question 3

Which database engines are supported by RDS?

Answer 3

Amazon Aurora, MySQL, MariaDB, PostgreSQL, Oracle, and Microsoft SQL Server

Question 4

What type of replication is used when data is replicated to a standby instance?

Answer 4

Synchronous replication, ensuring that both the primary and standby instances have identical data

Question 5

Where are RDS instances hosted?

Answer 5

RDS instances are hosted within a VPC in a specific AWS region, each instance has dedicated storage provided by EBS, and deployments can include multiple databases

Question 6

Where are RDS backups stored?

Answer 6

Both automated backups and manual snapshots are stored in Amazon S3 (AWS-managed bucket)

Question 7

Why is running and managing a database directly on an EC2 instance generally considered a bad practice?

Answer 7

• It involves significant administrative overhead and risk
• Managing backups and disaster recovery is complex
• EC2 and EBS are limited to a single availability zone
• Lacks advanced features and performance enhancements offered by AWS database products
• Does not support serverless options, easy scaling, or replication

Question 7

What type of replication is used when data is replicated to a read replica, typically located in another region?

Answer 7

Asynchronous replication

Question 8

What are the billing components of the RDS service?

Answer 8

• Instance size and type
• Multi-AZ deployment (additional instances)
• Monthly storage fee per GB
• Data transfer cost per GB (inbound and outbound from the internet or other AWS regions)
• Backup and snapshot storage per GB (snapshot storage is free up to the amount of provisioned storage, e.g., 2TB of storage equals 2TB of free snapshot storage)
• Licensing fees for commercial database engines (if applicable)

Question 9

When might you consider running a database directly on an EC2 instance instead of using RDS?

Answer 9

• When access to the database instance’s operating system is required
• When advanced database tuning options are needed
• When the database engine or version is not supported by RDS
• When a specific OS or database combination that AWS does not provide is required
• When a particular architecture not supported by AWS is necessary (e.g., specific replication or resilience requirements)
• When there are vendor-specific requirements
• When decision-makers have a strong preference for direct control

Question 10

What feature of RDS automatically creates a standby database instance, synchronously replicates data to it in a different availability zone, and provides automatic failover without manual intervention?

Answer 10

RDS Multi-AZ

Question 11

What are the most common RDS Multi-AZ architectures?

Answer 11

• Instance Multi-AZ architecture (primary-secondary)
• Cluster Multi-AZ architecture (writer-reader-reader)

Question 12

Based on the following characteristics, identify the Multi-AZ architecture:

• Synchronous data replication
• Only one standby replica
• Standby replica cannot be used for reads or writes until failover
• Failover takes 60-120 seconds (DNS update)
• Located in the same region (different AZ)
• Backups can be taken from the standby replica to improve performance
• Provides one endpoint that points to either the primary instance or the standby instance during failover

Answer 12

Instance Multi-AZ architecture (primary-secondary)

Question 13

Based on the following characteristics, identify the Multi-AZ architecture:

• One writer synchronously replicates to readers in different AZs
• Two readers only
• Primary instance is used for write operations only
• Reader instances are used for read operations only
• Utilizes high-performance hardware (e.g., Graviton + local NVMe SSD storage)
• More efficient replication via transaction logs
• Writes are committed when at least one reader confirms replication
• Two endpoints provided:
  
  • Cluster endpoint for primary instance (writer), used for reads, writes, and administration
  • Reader endpoint for available readers, used for reads (may point to the primary instance for reads)
  • Instance endpoints for specific instance access, generally for testing and troubleshooting

Answer 13

Cluster Multi-AZ architecture (writer-reader-reader)

Question 14

What might trigger an RDS failover event?

Answer 14

• Availability Zone outage
• Primary instance failure
• Manual failover
• Instance type change
• Software patching

Question 15

What backup and restore services are available within AWS RDS?

Answer 15

Automated Backups and Manual Snapshots

Question 16

Based on the following characteristics, identify the RDS backup type:

• Automated, snapshots taken daily
• Retention period from 0 to 35 days
• Stores transaction logs every 5 minutes
• Can be deleted with RDS or retained until the expiration of the retention period
• Cross-region replication can be configured (not default)
• Allows recovery to any 5-minute point in time using the latest snapshots and transaction logs

Answer 16

Automated Backup

Question 17

Based on the following characteristics, identify the RDS backup type:

• Not automatic
• Persist after RDS instance termination (must be manually deleted)
• Represents a single point in time

Answer 17

Manual Snapshot

Question 18

Are automated backups or manual snapshots restored directly to the current RDS instance?

Answer 18

No, restoring from backups or snapshots creates a new RDS instance, resulting in a new database endpoint, and the restoration process can be slow

Question 19

Which RDS feature allows the creation of one or more read-only copies of database instances within the same AWS region or across different regions to enhance scalability?

Answer 19

RDS Read Replica (improves global availability and resiliency)

Question 20

Should applications using RDS be aware of read replicas?

Answer 20

Yes, applications should be aware of read replicas as they have their own endpoint addresses

Question 21

How many direct read replicas can an RDS instance have?

Answer 21

Up to 5 read replicas per database instance, read replicas can also have their own read replicas, so replication lag may occur

Question 22

Can RDS read replicas be used for write operations?

Answer 22

Only after a read replica has been promoted to a primary instance

Question 23

How do RDS snapshots and read replicas impact RPO (Recovery Point Objective) and RTO (Recovery Time Objective)?

Answer 23

• Snapshots and backups improve RPO, as they allow recovery to a specific point in time, however, they do not directly impact RTO, as restoring from backups can be time-consuming
• Read replicas offer near-zero RPO and can be quickly promoted to a primary instance, resulting in a low RTO if recovering from failure, but not from data corruption

Question 24

What data security features are available in RDS?

Answer 24

• Authentication
• Authorization: Controlled by the internal database engine (IAM is used to authenticate, not authorize).
• Encryption in Transit: Data between the client and RDS instance is encrypted using SSL/TLS (can be mandatory).
• Encryption at Rest: EBS + KMS encryption, handled by the host; the database engine is unaware of encryption (default)

Question 25

Which components of Amazon RDS are encrypted?

Answer 25

Storage, logs, snapshots, and replicas are encrypted using the same customer master key, once encryption is enabled, it cannot be removed

Question 26

Which RDS-supported database engines offer support for Transparent Data Encryption (TDE)?

Answer 26

MSSQL and Oracle, encryption is handled by the database engine (not the host), additionally, Oracle supports TDE integration with CloudHSM, ensuring no key exposure to AWS

Question 27

Which managed database service is designed for applications that require customization of the underlying operating system and database environment?

Answer 27

RDS Custom

Question 28

Which database engines are supported by RDS Custom?

Answer 28

Oracle and Microsoft SQL Server

Question 29

What is the maximum storage capacity that RDS (Aurora provisioned) can have?

Answer 29

Aurora provisioned uses shared cluster volume (instead of local storage) available for all compute instances within a cluster, with a maximum of 128 TiB. This includes:
- SSD high IOPS low latency storage nodes
- Storage nodes accessible by all compute instances
- The primary instance can write to the storage node, and replica and primary instances can read
- Automatic repair of storage nodes
- Adding or removing replicas without storage provisioning or removal
- Storage is billed based on consumption

Question 29

What are the primary benefits of using RDS Custom?

Answer 29

• Provides the benefits of RDS automation with the access needed for legacy, packaged, and custom applications
• Enables connection through SSH, RDP, or Session Manager
• Provides limited access to the Operating System and Database Engine

Question 30

What is the maximum number of read replicas that can be created with RDS (Aurora provisioned)?

Answer 30

Aurora provisioned supports a cluster consisting of a single primary DB and 0-15 replicas, which can be used for both availability and read operations

Question 31

What endpoints are exposed when using RDS (Aurora provisioned)?

Answer 31

• Cluster endpoint (pointing to the primary instance)
• Reader endpoint (balancing load between replicas and the primary instance)

Question 32

What primary benefits does Amazon Aurora offer when used with RDS (Aurora provisioned)?

Answer 32

Faster provisioning, improved availability, and better performance

Question 33

What are the primary considerations when using Amazon RDS (Aurora provisioned)?

Answer 33

• No free tier option
• Does not support micro instances
• Compute hourly charge per second, with a 10-minute minimum
• Charged for storage GB/month consumption and IO cost per request
• 100% DB size in the backup is included for free

Question 34

When restoring an RDS (Aurora provisioned) instance from a snapshot, is the restoration performed in the current database?

Answer 34

No, restoring from snapshot a new cluster is created

Question 35

What feature of RDS (Aurora provisioned) enables in-place rewind?

Answer 35

The Backtrack feature enables rollback in place to a point in time (before data corruption occurred)

Question 36

What feature of RDS (Aurora provisioned) enables much faster database creation?

Answer 36

The Fast Clone feature allows for much faster database creation than copying all the data

Question 37

What are the primary features of Amazon Aurora Serverless?

Answer 37

• Aurora Serverless cluster has MIN and MAX Aurora Capacity Units (ACUs)
• ACUs are allocated from a shared pool managed by AWS
• The cluster adjusts based on load, can scale to 0, and be paused
• Consumption is billed on a per-second basis
• Connections are managed through a shared proxy fleet managed by AWS

Question 38

What is the ideal use case for Amazon Aurora Serverless?

Answer 38

• Infrequently used applications
• New applications
• Test and development workloads
• Variable/unpredictable workloads
• Multi-tenant applications

Question 39

Which Aurora deployment consists of a primary Aurora DB Cluster in one AWS Region, where data is written, and read-only secondary DB clusters in other AWS Regions?

Answer 39

Aurora Global Database enables database reads scaling across the world and places applications close to users

Question 40

What are the primary considerations when using the Aurora Global Database?

Answer 40

• Consists of a primary instance and up to 15 read replicas in the primary region
• Up to 16 read replicas in the secondary region, with up to 5 secondary regions
• Read replicas can be promoted to primary
• The cluster volume has approximately 1-second replication time between regions without impacting DB performance (as it occurs at the storage layer)
• Enables cross-region Disaster Recovery (DR) and Business Continuity (BC)

Question 41

Which feature enables the creation of several read-write instances of the Aurora database across multiple AZs?

Answer 41

Multi-master writes

Question 42

What are the primary considerations when using the Aurora Multi-master writes feature?

Answer 42

• Created instances are capable of both read and write operations
• There is no concept of a load-balanced endpoint; the application manages which instance to connect to
• Data is committed to cluster-shared storage (all nodes) and replicated to the other instances to update their in-memory cache
• During a failover event, switching to another writer is instantaneous

Question 43

Which RDS feature represents a fully managed, highly available database proxy that makes applications more scalable, resilient to database failures, and more secure?

Answer 43

RDS Proxy

Question 44

What are the primary features of RDS Proxy?

Answer 44

• Fully managed DB proxy for RDS and Aurora
• Built-in auto-scaling and high-availability features
• Maintains a long-term connections pool
• Applications connect to the proxy rather than directly to the database
• Accessible only from VPC through a proxy endpoint
• Can enforce SSL/TLS connections
• Reduces failover time by over 60%
• Abstracts database failure from the application

Question 45

What service allows for zero data loss and low or zero downtime migrations between two database endpoints, moving databases into or out of AWS?

Answer 45

Database Migration Service (DMS)

Question 46

Can AWS DMS migrate data between two on-premises databases?

Answer 46

No, at least one endpoint must be on AWS

Question 47

How does the AWS DMS service operate?

Answer 47

It runs a replication instance that executes one or more replication tasks and requires source and destination endpoints, which point to the source and target databases

Question 48

What types of migration jobs are available in AWS DMS?

Answer 48

• Full load: One-off data migration (if an outage is affordable)
• Full load + Change Data Capture (CDC): Migrates data and replicates ongoing changes
• Change Data Capture (CDC) only: Alternative method to transfer bulk DB data using native tooling and then use CDC to replicate changes

Question 49

Which tool assists with schema conversion between different database versions or engines when using AWS DMS?

Answer 49

Schema Conversion Tool (SCT), can be used to migrate database data to S3 and is NOT used when migrating between compatible database engines

Question 50

Can AWS DMS be used with a range of Snow products?

Answer 50

Yes, a common use case for multi-TB database migrations:
1. Use SCT to extract data from the database and store it in the Snowball
2. Ship the Snowball to AWS, where the data is loaded onto an S3 bucket
3. Use DMS to migrate data from S3 to the target store
4. Use CDC to update S3 via the internet with ongoing changes