πππ₯πππ’π¨π§ππ₯ πππππππ¬π ππ¨πππ₯
In a relational database the data is structured into tables, rows, columns.
Amazon RDS is a managed service which provides encryption at rest and transit.
RDS has two types of storage 1. General purpose SSD (Solid State Drive) 2. Provisioned IOPS SSD where you can set the input output operations per second.
It's a self managed service means patching, maintenance is taken care by Amazon the customer need not be worried about it.
RDS has to be deployed in Multi Availability Zone as per AWS best practice because it's mainly used to host production data's. Example Banking Datas.
RDS instance to be created in Private Subnet ie the subnet associated with NAT Gateway.
RDS instance should not be publicly accessible as per AWS best practice.
RDS instance's storage can be automatically increased based on the threshold value set.
RDS instance can be accessed and to be accessed using IPSec tunnel between Onpremise and AWS RDS VPC.
The other ways to access RDS instances are through Jump Server, we must allow the Jump Server's security group in RDS instance security group for to enable traffic flow between Jump Server and RDS instance. The. Master password for RDS instance has to be in caps.
We can also connect RDS instances through Amazon Direct Connect and through Site to site VPN.
RDS instance can be used for either dev or Production database hosting.
The best practice to connect to RDS instance from onpremise is through KMS encryption keys. KMS keys can be used for both encryption and decryption
My articles - https://lnkd.in/gq7fdDvR
(writing in progress) #amazon # #database
For further actions, you may consider blocking this person and/or reporting abuse
Top comments (0)