Ahhh, a recent development — that's great news! Yes, it should be exceedingly simple for Duo to implement IPv6 :-) Thanks for the edification, all! -Dave On Thu, Feb 2, 2017 at 11:41 AM, Christopher Morrow <morrowc.lists@gmail.com
wrote:
On Thu, Feb 2, 2017 at 11:32 AM, David Sotnick <sotnickd-nanog@ddv.com> wrote:
Hi NANOG,
(Apologies if this is slightly off-topic; there are a lot of IPv6-advocates here who might have some insights).
At my day job, we use Duo Security for MFA. It works well, with the caveats that it's cloud-based and heavily dependent on Amazon AWS.
https://aws.amazon.com/blogs/aws/new-ipv6-support-for-ec2- instances-in-virtual-private-clouds/
should be all set, right?
We had an IPv4 outage last weekend and of course our Duo MFA only supports IPv4 and given their dependence on AWS I'm not hopeful that they'll have IPv6 access to their API servers any time this year. If they had, my weekend would have gone a lot easier.
What MFA alternatives are out there that support IPv6? If we found a suitable alternative, I'm sure we'd consider shifting our business their way.
Thanks!
-Dave