SlideShare a Scribd company logo

Deep Dive into the RDS PostgreSQL Universe

Jignesh Shah
Jignesh Shah

Slides for: https://pgconf.ru/en/2019/239393 In this session we will deep dive into the exciting features of Amazon RDS for PostgreSQL, including new versions of PostgreSQL releases, new extensions, larger instances. We will also show benchmarks of new RDS instance types, and their value proposition. We will also look at how high availability and read scaling works on RDS PostgreSQL. We will also explore lessons we have learned managing a large fleet of PostgreSQL instances, including important tunables and possible gotchas around pg_upgrade.

Technology
1 of 33
Download to read offline
Jignesh Shah, Amazon RDS PGConf RU 2019 Deep Dive on Amazon RDS PostgreSQL
PostgreSQL Robust feature sets and extensions Multi-Version Concurrency Control (MVCC), point in time recovery, granular access controls, tablespaces, asynchronous replication, nested transactions, online/hot backups, a refined query planner/optimizer, and write ahead logging Supports international character sets, multi-byte character encodings, Unicode, and it is locale-aware for sorting, case- sensitivity, and formatting Reliable High fault tolerance, ACID compliance, and full support for foreign keys, joins, views, triggers, and stored procedures Standards-compliant Includes most SQL:2008 data types, including INTEGER, NUMERIC, BOOLEAN, CHAR, VARCHAR, DATE, INTERVAL, and TIMESTAMP. Supports storage of binary large objects, including pictures, sounds, or video
© 2019, Amazon Web Services, Inc. or its Affiliates. All rights reserved. PostgreSQL Deployment Options On-Premises Hosted EC2 DB Services Managed
© 2019, Amazon Web Services, Inc. or its Affiliates. All rights reserved. Full control over parameters of server, OS, and database Remote access to host via ssh Customer can install 3rd party applications and extensions Self Managed PostgreSQL • Customer has full responsibility for upgrades and backup • Customer has major responsibility for security • High Availability and replication are expensive, complex, and require a lot of engineering Running PostgreSQL on EC2
© 2019, Amazon Web Services, Inc. or its Affiliates. All rights reserved. Amazon Relational Database Service Multi-engine support: Amazon Aurora, MySQL, MariaDB, PostgreSQL, Oracle, SQL Server Automated provisioning, patching, scaling, replicas, backup/restore, failover High availability with RDS Multi-AZ and Amazon Aurora
© 2019, Amazon Web Services, Inc. or its Affiliates. All rights reserved. Security and Compliance Cloud security at AWS is the highest priority Compliance is important to meet industry and local regulations
© 2019, Amazon Web Services, Inc. or its Affiliates. All rights reserved. Security Groups Database IP firewall protection Protocol Port Range Source TCP 3306 172.31.0.0/16 TCP 3306 “Application security group” Corporate address admins Application tier
© 2019, Amazon Web Services, Inc. or its Affiliates. All rights reserved. Amazon Virtual Private Cloud (Amazon VPC) Private Network Security Group for fine grained control Availability Zone AWS Region 10.1.0.0/16 10.1.1.0/24
© 2019, Amazon Web Services, Inc. or its Affiliates. All rights reserved. At Rest Encryption Default key available for encryption • Cannot share outside account Recommended to security use separate keys for each instances Benefits: • Ability to share encrypted snapshots across accounts • Limited risks of a compromised key Leveraging AWS Key Management Service (KMS) Data key 1 Data key 2 Data key 3 Data key 4 Customer master key(s) Amazon RDS instance 3 Amazon RDS instance 2 Amazon RDS instance 1
© 2019, Amazon Web Services, Inc. or its Affiliates. All rights reserved. Forcing SSL on all connections DB Instance Snapshot Application Host SSL Log Backups Security Group VPC Encryption at Rest ssl_mode=disable rds.force_ssl=1 (default 0)
© 2019, Amazon Web Services, Inc. or its Affiliates. All rights reserved. IAM Governed Access Use AWS Identity and Access Management (IAM) to control who can perform actions on RDS using web console or “aws” command line interface Examples: 1. Deploy, Modify, delete instances 2. Create, delete, promote read replicas 3. Reboot, Start/Stop instance DBA and Ops RDS Controlled with IAM
© 2019, Amazon Web Services, Inc. or its Affiliates. All rights reserved. Database Users Access Connects to the database instance using PostgreSQL Clients Examples: CREATE USER foobar ALTER DATABASE testdb RENAME to proddb Your database Users and DBAApplications Controlled with database grants
© 2019, Amazon Web Services, Inc. or its Affiliates. All rights reserved. AWS Identity and Access Management (IAM) authentication PostgreSQL authentication is managed externally using IAM • Available for Amazon RDS PostgreSQL and Aurora PostgreSQL Authentication tokens are used to validate the user • Tokens have a lifetime of 15 minutes • Generated using AWS Signature Version 4 New role rds_iam available when IAM integration is enabled
© 2019, Amazon Web Services, Inc. or its Affiliates. All rights reserved. Database Parameter Groups Create a standard group based on your needs (IAM protected) rds.force_ssl=true shared_preload_libraries=pgaudit, auto_explain,pg_stat_statements,pg_re pack pgaudit.role = rds_pgaudit huge_pages = on Use your standard group or copy to instance specific parameter group Avoid typos while editing parameters
© 2019, Amazon Web Services, Inc. or its Affiliates. All rights reserved. Database server instance types General purpose (T2/T3) • 1 vCPU / 1 GB RAM to 8 vCPU 32 GB RAM • Moderate networking performance • Good for smaller or variable workloads • T2.micro is eligible for free tier General purpose (M4/M5) • 2 vCPU / 8 GiB RAM to 96 vCPU 384 GiB RAM • High performance networking • Good for running CPU intensive workloads (e.g. WordPress) Memory optimized (R4/R5) • 2 vCPU / 16 GiB RAM to 96 vCPU 768 GiB RAM • High performance networking • Good for query intensive workloads or high connection counts
High performance database storage General purpose (GP2) • SSD storage • Maximum of 32 TB • Latency in milliseconds • IOPS determined by volume size • Bursts to 3,000 IOPS (applicable below 1.3 TB) • Affordable performance Provisioned IOPS (IO1) • SSD storage • Maximum of 32 TB • Single digit millisecond latencies • Maximum of 40 K IOPS • Delivers within 10% of the IOPS performance 99.9% of the time • High performance and consistency
© 2019, Amazon Web Services, Inc. or its Affiliates. All rights reserved. Automated Backup Snapshots RDS PostgreSQL Snapshots • Scheduled daily volume backup of entire instance • Archive database change logs (WAL) • 35-day retention • Multiple copies in each AZ when running multi-AZ • Taken from standby when running multi-AZ Aurora PostgreSQL Snapshots • Automatic, continuous, incremental backups • No impact on database performance • 35-day retention Every day during your backup window, RDS creates a storage volume snapshot of your database Every five minutes, RDS backs up the transaction logs of your database
© 2019, Amazon Web Services, Inc. or its Affiliates. All rights reserved. Availability – Read and Write – Multi-AZ Physical Synchronous Replication AZ1 AZ2 DNS cname update Primary Update
© 2019, Amazon Web Services, Inc. or its Affiliates. All rights reserved. Read Replicas • Relieve pressure on your master node with additional read capacity • Bring data close to your applications in different regions • Promote a Read Replica to a master for faster recovery in the event of disaster
© 2019, Amazon Web Services, Inc. or its Affiliates. All rights reserved. Read Replicas = Availability Sync Replication Multi-AZ Async Replication
© 2019, Amazon Web Services, Inc. or its Affiliates. All rights reserved. Cross Region Replicas – Reduce Latency AZ1 AZ2 AZ1 Async Replication US-EAST-1 EU-WEST-1
© 2019, Amazon Web Services, Inc. or its Affiliates. All rights reserved. Cross Region Replicas – DR & Moves AZ1 AZ2 AZ1 Async Replication US-EAST-1 EU-WEST-1 EU-WEST-1 AZ2
© 2019, Amazon Web Services, Inc. or its Affiliates. All rights reserved. Minor version upgrade Prod 10.1 Prod 10.3 reboot Minor Versions upgrade on managed services - Shutdown instance - Replace version binaries - Start instance
© 2019, Amazon Web Services, Inc. or its Affiliates. All rights reserved. Major version upgrade Prod 9.6 Prod 10 pg_upgrade Backup Backup No PITR Test 9.6 Test 10 pg_upgrade Restore to a test instance Application Testing
© 2019, Amazon Web Services, Inc. or its Affiliates. All rights reserved. Upgrade with minimum downtime using DMS Create new target instance Create Schema on Target ( SCT) Start a replication instance Connect to source and target databases Select tables, schemas, or databases RDS PostgreSQL 9.5 Application Users RDS PostgreSQL 10 Let the AWS Database Migration Service truncate tables and load data Uses change data capture to keep them in sync Switch applications over to the target at your convenience AWS Database Migration Service
Replication in Amazon RDS PostgreSQL • Statement based • Trigger BasedLogical - SQL • Standard PostgreSQL • Extension “pglogical” • AWS DMS • Third-party Logical - Engine • Read replicas • Multi-AZPhysical - Engine
© 2019, Amazon Web Services, Inc. or its Affiliates. All rights reserved. Logical Replication Support • Set rds.logical_replication parameter to 1 • As user who has rds_replication & rds_superuser role SELECT * FROM pg_create_logical_replication_slot('test_slot', 'test_decoding'); pg_recvlogical -d postgres --slot test_slot -U master --host $rds_hostname -f - -- start • Support for Event Triggers • Now support • Native Logical replication • Pglogical • wal2json • decoder_raw RDS Postgres RDS Postgres Logical Replica Redshift EC2 Postgres On Premise Postgres DMS RDS/Aurora PostgreSQL Custom Logical Handler NoSQL DB
Monitoring Amazon RDS Performance Insights • Measures database load to help you identify bottlenecks • Top SQL/most intensive queries • Adjustable timeframe: hour, day, week, longer • Compliments other key tools • query execution plans • pg_stat_statements
Monitoring Amazon RDS Enhanced Monitoring Enhanced Monitoring for Amazon RDS Access to over 50 CPU, memory, file system, and disk I/O metrics Access to top processes As low as 1 second intervals
Monitoring Amazon RDS Amazon CloudWatch Amazon CloudWatch metrics Displayed in the Amazon RDS Console or personalized CloudWatch dashboards As low as one minute intervals Amazon CloudWatch alarms Trigger actions based on a metric value relative to a threshold you set
Upload PostgreSQL Logs to Amazon Cloudwatch Amazon CloudWatch Amazon CloudWatch Upload PostgreSQL logs to CloudWatch Export logs to S3 from CloudWatch
© 2019, Amazon Web Services, Inc. or its Affiliates. All rights reserved. AWS Forums EC2 • https://forums.aws.amazon.com/forum.jspa?forumID=30 Amazon RDS • https://forums.aws.amazon.com/forum.jspa?forumID=60 Aurora with PostgreSQL compatibility • https://forums.aws.amazon.com/forum.jspa?forumID=227
Thank you! aws.amazon.com/rds/postgresql

Recommended

Problems with PostgreSQL on Multi-core Systems with MultiTerabyte Data
Problems with PostgreSQL on Multi-core Systems with MultiTerabyte DataProblems with PostgreSQL on Multi-core Systems with MultiTerabyte Data
Problems with PostgreSQL on Multi-core Systems with MultiTerabyte DataJignesh Shah
 
PostgreSQL Extensions: A deeper look
PostgreSQL Extensions: A deeper lookPostgreSQL Extensions: A deeper look
PostgreSQL Extensions: A deeper lookJignesh Shah
 
Deep Dive into RDS PostgreSQL Universe
Deep Dive into RDS PostgreSQL UniverseDeep Dive into RDS PostgreSQL Universe
Deep Dive into RDS PostgreSQL UniverseJignesh Shah
 
PostgreSQL High Availability in a Containerized World
PostgreSQL High Availability in a Containerized WorldPostgreSQL High Availability in a Containerized World
PostgreSQL High Availability in a Containerized WorldJignesh Shah
 
PostgreSQL High Availability in a Containerized World
PostgreSQL High Availability in a Containerized WorldPostgreSQL High Availability in a Containerized World
PostgreSQL High Availability in a Containerized WorldJignesh Shah
 
PostgreSQL and Benchmarks
PostgreSQL and BenchmarksPostgreSQL and Benchmarks
PostgreSQL and BenchmarksJignesh Shah
 
Tuning DB2 in a Solaris Environment
Tuning DB2 in a Solaris EnvironmentTuning DB2 in a Solaris Environment
Tuning DB2 in a Solaris EnvironmentJignesh Shah
 
Best Practices with PostgreSQL on Solaris
Best Practices with PostgreSQL on SolarisBest Practices with PostgreSQL on Solaris
Best Practices with PostgreSQL on SolarisJignesh Shah
 

Recommended

Problems with PostgreSQL on Multi-core Systems with MultiTerabyte Data
Problems with PostgreSQL on Multi-core Systems with MultiTerabyte DataProblems with PostgreSQL on Multi-core Systems with MultiTerabyte Data
Problems with PostgreSQL on Multi-core Systems with MultiTerabyte DataJignesh Shah
 
PostgreSQL Extensions: A deeper look
PostgreSQL Extensions: A deeper lookPostgreSQL Extensions: A deeper look
PostgreSQL Extensions: A deeper lookJignesh Shah
 
Deep Dive into RDS PostgreSQL Universe
Deep Dive into RDS PostgreSQL UniverseDeep Dive into RDS PostgreSQL Universe
Deep Dive into RDS PostgreSQL UniverseJignesh Shah
 
PostgreSQL High Availability in a Containerized World
PostgreSQL High Availability in a Containerized WorldPostgreSQL High Availability in a Containerized World
PostgreSQL High Availability in a Containerized WorldJignesh Shah
 
PostgreSQL High Availability in a Containerized World
PostgreSQL High Availability in a Containerized WorldPostgreSQL High Availability in a Containerized World
PostgreSQL High Availability in a Containerized WorldJignesh Shah
 
PostgreSQL and Benchmarks
PostgreSQL and BenchmarksPostgreSQL and Benchmarks
PostgreSQL and BenchmarksJignesh Shah
 
Tuning DB2 in a Solaris Environment
Tuning DB2 in a Solaris EnvironmentTuning DB2 in a Solaris Environment
Tuning DB2 in a Solaris EnvironmentJignesh Shah
 
Best Practices with PostgreSQL on Solaris
Best Practices with PostgreSQL on SolarisBest Practices with PostgreSQL on Solaris
Best Practices with PostgreSQL on SolarisJignesh Shah
 
PostgreSQL and Linux Containers
PostgreSQL and Linux ContainersPostgreSQL and Linux Containers
PostgreSQL and Linux ContainersJignesh Shah
 
My experience with embedding PostgreSQL
My experience with embedding PostgreSQL My experience with embedding PostgreSQL
My experience with embedding PostgreSQLJignesh Shah
 
SFPUG - DVDStore Performance Benchmark and PostgreSQL
SFPUG - DVDStore Performance Benchmark and PostgreSQLSFPUG - DVDStore Performance Benchmark and PostgreSQL
SFPUG - DVDStore Performance Benchmark and PostgreSQLJignesh Shah
 
Best Practices of running PostgreSQL in Virtual Environments
Best Practices of running PostgreSQL in Virtual EnvironmentsBest Practices of running PostgreSQL in Virtual Environments
Best Practices of running PostgreSQL in Virtual EnvironmentsJignesh Shah
 
Understanding PostgreSQL LW Locks
Understanding PostgreSQL LW LocksUnderstanding PostgreSQL LW Locks
Understanding PostgreSQL LW LocksJignesh Shah
 
OLTP Performance Benchmark Review
OLTP Performance Benchmark ReviewOLTP Performance Benchmark Review
OLTP Performance Benchmark ReviewJignesh Shah
 
Introduction to PostgreSQL for System Administrators
Introduction to PostgreSQL for System AdministratorsIntroduction to PostgreSQL for System Administrators
Introduction to PostgreSQL for System AdministratorsJignesh Shah
 
Best Practices of HA and Replication of PostgreSQL in Virtualized Environments
Best Practices of HA and Replication of PostgreSQL in Virtualized EnvironmentsBest Practices of HA and Replication of PostgreSQL in Virtualized Environments
Best Practices of HA and Replication of PostgreSQL in Virtualized EnvironmentsJignesh Shah
 
CloudStudio User manual (basic edition):
CloudStudio User manual (basic edition):CloudStudio User manual (basic edition):
CloudStudio User manual (basic edition):comworks
 
Developer Data Modeling Mistakes: From Postgres to NoSQL
Developer Data Modeling Mistakes: From Postgres to NoSQLDeveloper Data Modeling Mistakes: From Postgres to NoSQL
Developer Data Modeling Mistakes: From Postgres to NoSQLScyllaDB
 
The Future of Software Development - Devin AI Innovative Approach.pdf
The Future of Software Development - Devin AI Innovative Approach.pdfThe Future of Software Development - Devin AI Innovative Approach.pdf
The Future of Software Development - Devin AI Innovative Approach.pdfSeasiaInfotech2
 
Connect Wave/ connectwave Pitch Deck Presentation
Connect Wave/ connectwave Pitch Deck PresentationConnect Wave/ connectwave Pitch Deck Presentation
Connect Wave/ connectwave Pitch Deck PresentationSlibray Presentation
 
Gen AI in Business - Global Trends Report 2024.pdf
Gen AI in Business - Global Trends Report 2024.pdfGen AI in Business - Global Trends Report 2024.pdf
Gen AI in Business - Global Trends Report 2024.pdfAddepto
 
"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack
"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack
"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek SchlawackFwdays
 
Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024BookNet Canada
 
Commit 2024 - Secret Management made easy
Commit 2024 - Secret Management made easyCommit 2024 - Secret Management made easy
Commit 2024 - Secret Management made easyAlfredo García Lavilla
 
Beyond Boundaries: Leveraging No-Code Solutions for Industry Innovation
Beyond Boundaries: Leveraging No-Code Solutions for Industry InnovationBeyond Boundaries: Leveraging No-Code Solutions for Industry Innovation
Beyond Boundaries: Leveraging No-Code Solutions for Industry InnovationSafe Software
 
SIP trunking in Janus @ Kamailio World 2024
SIP trunking in Janus @ Kamailio World 2024SIP trunking in Janus @ Kamailio World 2024
SIP trunking in Janus @ Kamailio World 2024Lorenzo Miniero
 
Unleash Your Potential - Namagunga Girls Coding Club
Unleash Your Potential - Namagunga Girls Coding ClubUnleash Your Potential - Namagunga Girls Coding Club
Unleash Your Potential - Namagunga Girls Coding ClubKalema Edgar
 
Install Stable Diffusion in windows machine
Install Stable Diffusion in windows machineInstall Stable Diffusion in windows machine
Install Stable Diffusion in windows machinePadma Pradeep
 
Leverage Zilliz Serverless - Up to 50X Saving for Your Vector Storage Cost
Leverage Zilliz Serverless - Up to 50X Saving for Your Vector Storage CostLeverage Zilliz Serverless - Up to 50X Saving for Your Vector Storage Cost
Leverage Zilliz Serverless - Up to 50X Saving for Your Vector Storage CostZilliz
 
Are Multi-Cloud and Serverless Good or Bad?
Are Multi-Cloud and Serverless Good or Bad?Are Multi-Cloud and Serverless Good or Bad?
Are Multi-Cloud and Serverless Good or Bad?Mattias Andersson
 

More Related Content

More from Jignesh Shah

PostgreSQL and Linux Containers
PostgreSQL and Linux ContainersPostgreSQL and Linux Containers
PostgreSQL and Linux ContainersJignesh Shah
 
My experience with embedding PostgreSQL
My experience with embedding PostgreSQL My experience with embedding PostgreSQL
My experience with embedding PostgreSQLJignesh Shah
 
SFPUG - DVDStore Performance Benchmark and PostgreSQL
SFPUG - DVDStore Performance Benchmark and PostgreSQLSFPUG - DVDStore Performance Benchmark and PostgreSQL
SFPUG - DVDStore Performance Benchmark and PostgreSQLJignesh Shah
 
Best Practices of running PostgreSQL in Virtual Environments
Best Practices of running PostgreSQL in Virtual EnvironmentsBest Practices of running PostgreSQL in Virtual Environments
Best Practices of running PostgreSQL in Virtual EnvironmentsJignesh Shah
 
Understanding PostgreSQL LW Locks
Understanding PostgreSQL LW LocksUnderstanding PostgreSQL LW Locks
Understanding PostgreSQL LW LocksJignesh Shah
 
OLTP Performance Benchmark Review
OLTP Performance Benchmark ReviewOLTP Performance Benchmark Review
OLTP Performance Benchmark ReviewJignesh Shah
 
Introduction to PostgreSQL for System Administrators
Introduction to PostgreSQL for System AdministratorsIntroduction to PostgreSQL for System Administrators
Introduction to PostgreSQL for System AdministratorsJignesh Shah
 
Best Practices of HA and Replication of PostgreSQL in Virtualized Environments
Best Practices of HA and Replication of PostgreSQL in Virtualized EnvironmentsBest Practices of HA and Replication of PostgreSQL in Virtualized Environments
Best Practices of HA and Replication of PostgreSQL in Virtualized EnvironmentsJignesh Shah
 

More from Jignesh Shah (8)

PostgreSQL and Linux Containers
PostgreSQL and Linux ContainersPostgreSQL and Linux Containers
PostgreSQL and Linux Containers
 
My experience with embedding PostgreSQL
My experience with embedding PostgreSQL My experience with embedding PostgreSQL
My experience with embedding PostgreSQL
 
SFPUG - DVDStore Performance Benchmark and PostgreSQL
SFPUG - DVDStore Performance Benchmark and PostgreSQLSFPUG - DVDStore Performance Benchmark and PostgreSQL
SFPUG - DVDStore Performance Benchmark and PostgreSQL
 
Best Practices of running PostgreSQL in Virtual Environments
Best Practices of running PostgreSQL in Virtual EnvironmentsBest Practices of running PostgreSQL in Virtual Environments
Best Practices of running PostgreSQL in Virtual Environments
 
Understanding PostgreSQL LW Locks
Understanding PostgreSQL LW LocksUnderstanding PostgreSQL LW Locks
Understanding PostgreSQL LW Locks
 
OLTP Performance Benchmark Review
OLTP Performance Benchmark ReviewOLTP Performance Benchmark Review
OLTP Performance Benchmark Review
 
Introduction to PostgreSQL for System Administrators
Introduction to PostgreSQL for System AdministratorsIntroduction to PostgreSQL for System Administrators
Introduction to PostgreSQL for System Administrators
 
Best Practices of HA and Replication of PostgreSQL in Virtualized Environments
Best Practices of HA and Replication of PostgreSQL in Virtualized EnvironmentsBest Practices of HA and Replication of PostgreSQL in Virtualized Environments
Best Practices of HA and Replication of PostgreSQL in Virtualized Environments
 

Recently uploaded

CloudStudio User manual (basic edition):
CloudStudio User manual (basic edition):CloudStudio User manual (basic edition):
CloudStudio User manual (basic edition):comworks
 
Developer Data Modeling Mistakes: From Postgres to NoSQL
Developer Data Modeling Mistakes: From Postgres to NoSQLDeveloper Data Modeling Mistakes: From Postgres to NoSQL
Developer Data Modeling Mistakes: From Postgres to NoSQLScyllaDB
 
The Future of Software Development - Devin AI Innovative Approach.pdf
The Future of Software Development - Devin AI Innovative Approach.pdfThe Future of Software Development - Devin AI Innovative Approach.pdf
The Future of Software Development - Devin AI Innovative Approach.pdfSeasiaInfotech2
 
Connect Wave/ connectwave Pitch Deck Presentation
Connect Wave/ connectwave Pitch Deck PresentationConnect Wave/ connectwave Pitch Deck Presentation
Connect Wave/ connectwave Pitch Deck PresentationSlibray Presentation
 
Gen AI in Business - Global Trends Report 2024.pdf
Gen AI in Business - Global Trends Report 2024.pdfGen AI in Business - Global Trends Report 2024.pdf
Gen AI in Business - Global Trends Report 2024.pdfAddepto
 
"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack
"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack
"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek SchlawackFwdays
 
Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024BookNet Canada
 
Commit 2024 - Secret Management made easy
Commit 2024 - Secret Management made easyCommit 2024 - Secret Management made easy
Commit 2024 - Secret Management made easyAlfredo García Lavilla
 
Beyond Boundaries: Leveraging No-Code Solutions for Industry Innovation
Beyond Boundaries: Leveraging No-Code Solutions for Industry InnovationBeyond Boundaries: Leveraging No-Code Solutions for Industry Innovation
Beyond Boundaries: Leveraging No-Code Solutions for Industry InnovationSafe Software
 
SIP trunking in Janus @ Kamailio World 2024
SIP trunking in Janus @ Kamailio World 2024SIP trunking in Janus @ Kamailio World 2024
SIP trunking in Janus @ Kamailio World 2024Lorenzo Miniero
 
Unleash Your Potential - Namagunga Girls Coding Club
Unleash Your Potential - Namagunga Girls Coding ClubUnleash Your Potential - Namagunga Girls Coding Club
Unleash Your Potential - Namagunga Girls Coding ClubKalema Edgar
 
Install Stable Diffusion in windows machine
Install Stable Diffusion in windows machineInstall Stable Diffusion in windows machine
Install Stable Diffusion in windows machinePadma Pradeep
 
Leverage Zilliz Serverless - Up to 50X Saving for Your Vector Storage Cost
Leverage Zilliz Serverless - Up to 50X Saving for Your Vector Storage CostLeverage Zilliz Serverless - Up to 50X Saving for Your Vector Storage Cost
Leverage Zilliz Serverless - Up to 50X Saving for Your Vector Storage CostZilliz
 
Are Multi-Cloud and Serverless Good or Bad?
Are Multi-Cloud and Serverless Good or Bad?Are Multi-Cloud and Serverless Good or Bad?
Are Multi-Cloud and Serverless Good or Bad?Mattias Andersson
 
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...Integration and Automation in Practice: CI/CD in Mule Integration and Automat...
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...Patryk Bandurski
 
Anypoint Exchange: It’s Not Just a Repo!
Anypoint Exchange: It’s Not Just a Repo!Anypoint Exchange: It’s Not Just a Repo!
Anypoint Exchange: It’s Not Just a Repo!Manik S Magar
 
Advanced Test Driven-Development @ php[tek] 2024
Advanced Test Driven-Development @ php[tek] 2024Advanced Test Driven-Development @ php[tek] 2024
Advanced Test Driven-Development @ php[tek] 2024Scott Keck-Warren
 
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmatics
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmaticsKotlin Multiplatform & Compose Multiplatform - Starter kit for pragmatics
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmaticscarlostorres15106
 
"ML in Production",Oleksandr Bagan
"ML in Production",Oleksandr Bagan"ML in Production",Oleksandr Bagan
"ML in Production",Oleksandr BaganFwdays
 
Story boards and shot lists for my a level piece
Story boards and shot lists for my a level pieceStory boards and shot lists for my a level piece
Story boards and shot lists for my a level piececharlottematthew16
 

Recently uploaded (20)

CloudStudio User manual (basic edition):
CloudStudio User manual (basic edition):CloudStudio User manual (basic edition):
CloudStudio User manual (basic edition):
 
Developer Data Modeling Mistakes: From Postgres to NoSQL
Developer Data Modeling Mistakes: From Postgres to NoSQLDeveloper Data Modeling Mistakes: From Postgres to NoSQL
Developer Data Modeling Mistakes: From Postgres to NoSQL
 
The Future of Software Development - Devin AI Innovative Approach.pdf
The Future of Software Development - Devin AI Innovative Approach.pdfThe Future of Software Development - Devin AI Innovative Approach.pdf
The Future of Software Development - Devin AI Innovative Approach.pdf
 
Connect Wave/ connectwave Pitch Deck Presentation
Connect Wave/ connectwave Pitch Deck PresentationConnect Wave/ connectwave Pitch Deck Presentation
Connect Wave/ connectwave Pitch Deck Presentation
 
Gen AI in Business - Global Trends Report 2024.pdf
Gen AI in Business - Global Trends Report 2024.pdfGen AI in Business - Global Trends Report 2024.pdf
Gen AI in Business - Global Trends Report 2024.pdf
 
"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack
"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack
"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack
 
Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
 
Commit 2024 - Secret Management made easy
Commit 2024 - Secret Management made easyCommit 2024 - Secret Management made easy
Commit 2024 - Secret Management made easy
 
Beyond Boundaries: Leveraging No-Code Solutions for Industry Innovation
Beyond Boundaries: Leveraging No-Code Solutions for Industry InnovationBeyond Boundaries: Leveraging No-Code Solutions for Industry Innovation
Beyond Boundaries: Leveraging No-Code Solutions for Industry Innovation
 
SIP trunking in Janus @ Kamailio World 2024
SIP trunking in Janus @ Kamailio World 2024SIP trunking in Janus @ Kamailio World 2024
SIP trunking in Janus @ Kamailio World 2024
 
Unleash Your Potential - Namagunga Girls Coding Club
Unleash Your Potential - Namagunga Girls Coding ClubUnleash Your Potential - Namagunga Girls Coding Club
Unleash Your Potential - Namagunga Girls Coding Club
 
Install Stable Diffusion in windows machine
Install Stable Diffusion in windows machineInstall Stable Diffusion in windows machine
Install Stable Diffusion in windows machine
 
Leverage Zilliz Serverless - Up to 50X Saving for Your Vector Storage Cost
Leverage Zilliz Serverless - Up to 50X Saving for Your Vector Storage CostLeverage Zilliz Serverless - Up to 50X Saving for Your Vector Storage Cost
Leverage Zilliz Serverless - Up to 50X Saving for Your Vector Storage Cost
 
Are Multi-Cloud and Serverless Good or Bad?
Are Multi-Cloud and Serverless Good or Bad?Are Multi-Cloud and Serverless Good or Bad?
Are Multi-Cloud and Serverless Good or Bad?
 
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...Integration and Automation in Practice: CI/CD in Mule Integration and Automat...
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...
 
Anypoint Exchange: It’s Not Just a Repo!
Anypoint Exchange: It’s Not Just a Repo!Anypoint Exchange: It’s Not Just a Repo!
Anypoint Exchange: It’s Not Just a Repo!
 
Advanced Test Driven-Development @ php[tek] 2024
Advanced Test Driven-Development @ php[tek] 2024Advanced Test Driven-Development @ php[tek] 2024
Advanced Test Driven-Development @ php[tek] 2024
 
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmatics
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmaticsKotlin Multiplatform & Compose Multiplatform - Starter kit for pragmatics
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmatics
 
"ML in Production",Oleksandr Bagan
"ML in Production",Oleksandr Bagan"ML in Production",Oleksandr Bagan
"ML in Production",Oleksandr Bagan
 
Story boards and shot lists for my a level piece
Story boards and shot lists for my a level pieceStory boards and shot lists for my a level piece
Story boards and shot lists for my a level piece
 

Deep Dive into the RDS PostgreSQL Universe

  • 1. Jignesh Shah, Amazon RDS PGConf RU 2019 Deep Dive on Amazon RDS PostgreSQL
  • 2. PostgreSQL Robust feature sets and extensions Multi-Version Concurrency Control (MVCC), point in time recovery, granular access controls, tablespaces, asynchronous replication, nested transactions, online/hot backups, a refined query planner/optimizer, and write ahead logging Supports international character sets, multi-byte character encodings, Unicode, and it is locale-aware for sorting, case- sensitivity, and formatting Reliable High fault tolerance, ACID compliance, and full support for foreign keys, joins, views, triggers, and stored procedures Standards-compliant Includes most SQL:2008 data types, including INTEGER, NUMERIC, BOOLEAN, CHAR, VARCHAR, DATE, INTERVAL, and TIMESTAMP. Supports storage of binary large objects, including pictures, sounds, or video
  • 3. © 2019, Amazon Web Services, Inc. or its Affiliates. All rights reserved. PostgreSQL Deployment Options On-Premises Hosted EC2 DB Services Managed
  • 4. © 2019, Amazon Web Services, Inc. or its Affiliates. All rights reserved. Full control over parameters of server, OS, and database Remote access to host via ssh Customer can install 3rd party applications and extensions Self Managed PostgreSQL • Customer has full responsibility for upgrades and backup • Customer has major responsibility for security • High Availability and replication are expensive, complex, and require a lot of engineering Running PostgreSQL on EC2
  • 5. © 2019, Amazon Web Services, Inc. or its Affiliates. All rights reserved. Amazon Relational Database Service Multi-engine support: Amazon Aurora, MySQL, MariaDB, PostgreSQL, Oracle, SQL Server Automated provisioning, patching, scaling, replicas, backup/restore, failover High availability with RDS Multi-AZ and Amazon Aurora
  • 6. © 2019, Amazon Web Services, Inc. or its Affiliates. All rights reserved. Security and Compliance Cloud security at AWS is the highest priority Compliance is important to meet industry and local regulations
  • 7. © 2019, Amazon Web Services, Inc. or its Affiliates. All rights reserved. Security Groups Database IP firewall protection Protocol Port Range Source TCP 3306 172.31.0.0/16 TCP 3306 “Application security group” Corporate address admins Application tier
  • 8. © 2019, Amazon Web Services, Inc. or its Affiliates. All rights reserved. Amazon Virtual Private Cloud (Amazon VPC) Private Network Security Group for fine grained control Availability Zone AWS Region 10.1.0.0/16 10.1.1.0/24
  • 9. © 2019, Amazon Web Services, Inc. or its Affiliates. All rights reserved. At Rest Encryption Default key available for encryption • Cannot share outside account Recommended to security use separate keys for each instances Benefits: • Ability to share encrypted snapshots across accounts • Limited risks of a compromised key Leveraging AWS Key Management Service (KMS) Data key 1 Data key 2 Data key 3 Data key 4 Customer master key(s) Amazon RDS instance 3 Amazon RDS instance 2 Amazon RDS instance 1
  • 10. © 2019, Amazon Web Services, Inc. or its Affiliates. All rights reserved. Forcing SSL on all connections DB Instance Snapshot Application Host SSL Log Backups Security Group VPC Encryption at Rest ssl_mode=disable rds.force_ssl=1 (default 0)
  • 11. © 2019, Amazon Web Services, Inc. or its Affiliates. All rights reserved. IAM Governed Access Use AWS Identity and Access Management (IAM) to control who can perform actions on RDS using web console or “aws” command line interface Examples: 1. Deploy, Modify, delete instances 2. Create, delete, promote read replicas 3. Reboot, Start/Stop instance DBA and Ops RDS Controlled with IAM
  • 12. © 2019, Amazon Web Services, Inc. or its Affiliates. All rights reserved. Database Users Access Connects to the database instance using PostgreSQL Clients Examples: CREATE USER foobar ALTER DATABASE testdb RENAME to proddb Your database Users and DBAApplications Controlled with database grants
  • 13. © 2019, Amazon Web Services, Inc. or its Affiliates. All rights reserved. AWS Identity and Access Management (IAM) authentication PostgreSQL authentication is managed externally using IAM • Available for Amazon RDS PostgreSQL and Aurora PostgreSQL Authentication tokens are used to validate the user • Tokens have a lifetime of 15 minutes • Generated using AWS Signature Version 4 New role rds_iam available when IAM integration is enabled
  • 14. © 2019, Amazon Web Services, Inc. or its Affiliates. All rights reserved. Database Parameter Groups Create a standard group based on your needs (IAM protected) rds.force_ssl=true shared_preload_libraries=pgaudit, auto_explain,pg_stat_statements,pg_re pack pgaudit.role = rds_pgaudit huge_pages = on Use your standard group or copy to instance specific parameter group Avoid typos while editing parameters
  • 15. © 2019, Amazon Web Services, Inc. or its Affiliates. All rights reserved. Database server instance types General purpose (T2/T3) • 1 vCPU / 1 GB RAM to 8 vCPU 32 GB RAM • Moderate networking performance • Good for smaller or variable workloads • T2.micro is eligible for free tier General purpose (M4/M5) • 2 vCPU / 8 GiB RAM to 96 vCPU 384 GiB RAM • High performance networking • Good for running CPU intensive workloads (e.g. WordPress) Memory optimized (R4/R5) • 2 vCPU / 16 GiB RAM to 96 vCPU 768 GiB RAM • High performance networking • Good for query intensive workloads or high connection counts
  • 16. High performance database storage General purpose (GP2) • SSD storage • Maximum of 32 TB • Latency in milliseconds • IOPS determined by volume size • Bursts to 3,000 IOPS (applicable below 1.3 TB) • Affordable performance Provisioned IOPS (IO1) • SSD storage • Maximum of 32 TB • Single digit millisecond latencies • Maximum of 40 K IOPS • Delivers within 10% of the IOPS performance 99.9% of the time • High performance and consistency
  • 17. © 2019, Amazon Web Services, Inc. or its Affiliates. All rights reserved. Automated Backup Snapshots RDS PostgreSQL Snapshots • Scheduled daily volume backup of entire instance • Archive database change logs (WAL) • 35-day retention • Multiple copies in each AZ when running multi-AZ • Taken from standby when running multi-AZ Aurora PostgreSQL Snapshots • Automatic, continuous, incremental backups • No impact on database performance • 35-day retention Every day during your backup window, RDS creates a storage volume snapshot of your database Every five minutes, RDS backs up the transaction logs of your database
  • 18. © 2019, Amazon Web Services, Inc. or its Affiliates. All rights reserved. Availability – Read and Write – Multi-AZ Physical Synchronous Replication AZ1 AZ2 DNS cname update Primary Update
  • 19. © 2019, Amazon Web Services, Inc. or its Affiliates. All rights reserved. Read Replicas • Relieve pressure on your master node with additional read capacity • Bring data close to your applications in different regions • Promote a Read Replica to a master for faster recovery in the event of disaster
  • 20. © 2019, Amazon Web Services, Inc. or its Affiliates. All rights reserved. Read Replicas = Availability Sync Replication Multi-AZ Async Replication
  • 21. © 2019, Amazon Web Services, Inc. or its Affiliates. All rights reserved. Cross Region Replicas – Reduce Latency AZ1 AZ2 AZ1 Async Replication US-EAST-1 EU-WEST-1
  • 22. © 2019, Amazon Web Services, Inc. or its Affiliates. All rights reserved. Cross Region Replicas – DR & Moves AZ1 AZ2 AZ1 Async Replication US-EAST-1 EU-WEST-1 EU-WEST-1 AZ2
  • 23. © 2019, Amazon Web Services, Inc. or its Affiliates. All rights reserved. Minor version upgrade Prod 10.1 Prod 10.3 reboot Minor Versions upgrade on managed services - Shutdown instance - Replace version binaries - Start instance
  • 24. © 2019, Amazon Web Services, Inc. or its Affiliates. All rights reserved. Major version upgrade Prod 9.6 Prod 10 pg_upgrade Backup Backup No PITR Test 9.6 Test 10 pg_upgrade Restore to a test instance Application Testing
  • 25. © 2019, Amazon Web Services, Inc. or its Affiliates. All rights reserved. Upgrade with minimum downtime using DMS Create new target instance Create Schema on Target ( SCT) Start a replication instance Connect to source and target databases Select tables, schemas, or databases RDS PostgreSQL 9.5 Application Users RDS PostgreSQL 10 Let the AWS Database Migration Service truncate tables and load data Uses change data capture to keep them in sync Switch applications over to the target at your convenience AWS Database Migration Service
  • 26. Replication in Amazon RDS PostgreSQL • Statement based • Trigger BasedLogical - SQL • Standard PostgreSQL • Extension “pglogical” • AWS DMS • Third-party Logical - Engine • Read replicas • Multi-AZPhysical - Engine
  • 27. © 2019, Amazon Web Services, Inc. or its Affiliates. All rights reserved. Logical Replication Support • Set rds.logical_replication parameter to 1 • As user who has rds_replication & rds_superuser role SELECT * FROM pg_create_logical_replication_slot('test_slot', 'test_decoding'); pg_recvlogical -d postgres --slot test_slot -U master --host $rds_hostname -f - -- start • Support for Event Triggers • Now support • Native Logical replication • Pglogical • wal2json • decoder_raw RDS Postgres RDS Postgres Logical Replica Redshift EC2 Postgres On Premise Postgres DMS RDS/Aurora PostgreSQL Custom Logical Handler NoSQL DB
  • 28. Monitoring Amazon RDS Performance Insights • Measures database load to help you identify bottlenecks • Top SQL/most intensive queries • Adjustable timeframe: hour, day, week, longer • Compliments other key tools • query execution plans • pg_stat_statements
  • 29. Monitoring Amazon RDS Enhanced Monitoring Enhanced Monitoring for Amazon RDS Access to over 50 CPU, memory, file system, and disk I/O metrics Access to top processes As low as 1 second intervals
  • 30. Monitoring Amazon RDS Amazon CloudWatch Amazon CloudWatch metrics Displayed in the Amazon RDS Console or personalized CloudWatch dashboards As low as one minute intervals Amazon CloudWatch alarms Trigger actions based on a metric value relative to a threshold you set
  • 31. Upload PostgreSQL Logs to Amazon Cloudwatch Amazon CloudWatch Amazon CloudWatch Upload PostgreSQL logs to CloudWatch Export logs to S3 from CloudWatch
  • 32. © 2019, Amazon Web Services, Inc. or its Affiliates. All rights reserved. AWS Forums EC2 • https://forums.aws.amazon.com/forum.jspa?forumID=30 Amazon RDS • https://forums.aws.amazon.com/forum.jspa?forumID=60 Aurora with PostgreSQL compatibility • https://forums.aws.amazon.com/forum.jspa?forumID=227