Practice Test

True/False: AWS Direct Connect is a low-latency, high-bandwidth connection that bypasses the public internet.

  • True
  • False

Answer: True

Explanation: AWS Direct Connect allows for a dedicated, private connection from on-premises directly to AWS. This results in higher speed and lower latency because it doesn’t rely on public internet access.

Single Select: Which of the following is used to create a secure connection to a relational database service?

  • a. Amazon RDS Proxy
  • b. Amazon DynamoDB
  • c. Amazon S3
  • d. Amazon EC2

Answer: a. Amazon RDS Proxy

Explanation: Amazon RDS Proxy allows applications to pool and share database connections to help with scalability, security and manageability.

True/False: Amazon RDS Proxy supports both MySQL and PostgreSQL compatible databases.

  • True
  • False

Answer: True

Explanation: As of now, Amazon RDS Proxy indeed does support both MySQL and PostgreSQL compatible databases.

Single Select: What is the primary purpose of a proxy server within a database architecture?

  • a. Data storage
  • b. Server migration
  • c. Manage connectivity
  • d. Facilitate backups

Answer: c. Manage connectivity

Explanation: The main function of a proxy server in a database environment is to handle and manage connectivity between the application and the database.

Multiple Select: What are the benefits of Amazon RDS Proxy? (Select all that apply)

  • a. Increases security
  • b. Decreases latency and improves performance
  • c. Helps to save costs
  • d. Makes it easier to manage database connections

Answer: a. Increases security, d. Makes it easier to manage database connections

Explanation: Amazon RDS Proxy is mainly to manage database connections and enhance security, but doesn’t necessarily improve performance or save costs.

True/False: Using AWS Direct Connect does not contain cost benefits.

  • True
  • False

Answer: False

Explanation: AWS Direct Connect can help to reduce network costs, increase bandwidth throughput, and provide a more consistent network experience than internet-based connections.

Single Select: AWS Shield is primarily used to protect against:

  • a. Unauthorized database access
  • b. Malicious web traffic
  • c. Unencrypted data transfers
  • d. Inefficient database connections

Answer: b. Malicious web traffic

Explanation: AWS Shield is a managed Distributed Denial of Service (DDoS) protection service that safeguards applications running on AWS.

True/False: A database proxy can reduce the number of database connections an application needs to manage.

  • True
  • False

Answer: True

Explanation: A database proxy helps manage connections to the database by allowing the application to share connections rather than each connection having its own.

Single Select: The primary benefit of using Amazon VPC for database connections is:

  • a. Cost reduction
  • b. Improved performance
  • c. Isolation and security
  • d. Simplified management

Answer: c. Isolation and security

Explanation: Amazon VPC provides a secure, isolated virtual network for running your AWS resources.

Multiple Select: When using Amazon VPC with Amazon RDS, which of the following security options are available to help protect your databases? (Select all that apply)

  • a. Security group rules
  • b. Network Access Control Lists (ACLs)
  • c. IP whitelisting
  • d. AWS Shield

Answer: a. Security group rules, b. Network Access Control Lists (ACLs)

Explanation: On Amazon VPC, you can use security group rules and Network ACLs to control inbound and outbound traffic at the instance and subnet level respectively. AWS Shield is used for DDoS protection and not specifically for database protection.

Interview Questions

What is an Amazon RDS Proxy?

Amazon RDS Proxy is a fully managed, highly available database proxy for Amazon Relational Database Service (RDS). It enables applications to pool and share connections established with the database, improving database efficiency and application scalability.

How does Amazon RDS Proxy maintain high availability?

Amazon RDS Proxy maintains high availability by automatically routing traffic to a new database instance in the event of instance failure, which reduces application downtime.

In which situations is it recommended to use an Amazon RDS Proxy?

It’s recommended to use Amazon RDS Proxy in situations where:
– Your application experiences significant variance in database load.
– It opens and closes database connections at a high rate, exceeding database capacity.
– It is implemented with a microservices architecture.

Name the databases compatible with Amazon RDS Proxy?

Amazon RDS Proxy is compatible with RDS databases running MySQL version 5.6 or 5.7, PostgreSQL version 10.11 or later, and Aurora with MySQL or PostgreSQL compatibility.

How does Amazon RDS Proxy authenticate with the database?

Amazon RDS Proxy can authenticate with the database using either database credentials stored in AWS Secrets Manager or IAM role-based authentication.

What are the benefits of using IAM role-based authentication with RDS Proxy?

Using IAM roles with RDS Proxy eliminates the need to include database passwords in your application code, thereby reducing risk. It also allows for policy-based access control to the database.

What are the limitations of Amazon RDS Proxy?

Some limitations include support for certain databases only, specific AWS regions, and restrictions on the maximum connections that a proxy can handle, among others.

Does RDS proxy support DB failover with no interruption?

Yes, RDS Proxy maintains connections to your application and transparently reroutes them to the new DB instance during failover, thus minimizing disruption.

What is a connection pooling in the context of Amazon RDS Proxy?

Connection pooling is a method used to minimize the overhead of creating a new connection to a database. By reusing database connections, RDS Proxy allows you to save resources and increase the overall efficiency of your application.

Can you use RDS Proxy with Aurora Serverless?

Yes, you can use Amazon RDS Proxy with both the MySQL-compatible and PostgreSQL-compatible editions of Aurora Serverless.

Is it possible to encrypt connections between your application and RDS Proxy?

Yes, RDS Proxy supports SSL (Secure Sockets Layer) encryption to secure data in transit between your application and the proxy, and from the proxy to the database.

What AWS service can you use to manage secrets when using Amazon RDS Proxy?

You can use AWS Secrets Manager to securely store and manage sensitive information such as database credentials when using Amazon RDS Proxy.

Does RDS Proxy support load balancing?

No, RDS Proxy doesn’t provide load balancing. It mainly provides enhancements for connection pooling and failover scenarios.

Will you incur additional charges for using Amazon RDS Proxy?

Yes, usage of RDS Proxy is not included in the Amazon RDS pricing and is billed separately.

Can you monitor Amazon RDS Proxy?

Yes, you can use Amazon CloudWatch to monitor the performance of your proxies and to set alarms on any unusual activity.

Leave a Reply

Your email address will not be published. Required fields are marked *