!nostupidquestions is a community dedicated to being helpful and answering each others' questions on various topics.
The rules for posting and commenting, besides the rules defined here for lemmy.world, are as follows:
Rule 1- All posts must be legitimate questions. All post titles must include a question.
All posts must be legitimate questions, and all post titles must include a question. Questions that are joke or trolling questions, memes, song lyrics as title, etc. are not allowed here. See Rule 6 for all exceptions.
Rule 2- Your question subject cannot be illegal or NSFW material.
Your question subject cannot be illegal or NSFW material. You will be warned first, banned second.
Rule 3- Do not seek mental, medical and professional help here.
Do not seek mental, medical and professional help here. Breaking this rule will not get you or your post removed, but it will put you at risk, and possibly in danger.
Rule 4- No self promotion or upvote-farming of any kind.
That's it.
Rule 5- No baiting or sealioning or promoting an agenda.
Questions which, instead of being of an innocuous nature, are specifically intended (based on reports and in the opinion of our crack moderation team) to bait users into ideological wars on charged political topics will be removed and the authors warned - or banned - depending on severity.
Rule 6- Regarding META posts and joke questions.
Provided it is about the community itself, you may post non-question posts using the [META] tag on your post title.
On fridays, you are allowed to post meme and troll questions, on the condition that it's in text format only, and conforms with our other rules. These posts MUST include the [NSQ Friday] tag in their title.
If you post a serious question on friday and are looking only for legitimate answers, then please include the [Serious] tag on your post. Irrelevant replies will then be removed by moderators.
Rule 7- You can't intentionally annoy, mock, or harass other members.
If you intentionally annoy, mock, harass, or discriminate against any individual member, you will be removed.
Likewise, if you are a member, sympathiser or a resemblant of a movement that is known to largely hate, mock, discriminate against, and/or want to take lives of a group of people, and you were provably vocal about your hate, then you will be banned on sight.
Rule 8- All comments should try to stay relevant to their parent content.
Rule 9- Reposts from other platforms are not allowed.
Let everyone have their own content.
Rule 10- Majority of bots aren't allowed to participate here. This includes using AI responses and summaries.
Our breathtaking icon was bestowed upon us by @Cevilia!
The greatest banner of all time: by @TheOneWithTheHair!
The company's rule isn't arbitrary; it's due to state income taxes being paid based on where the employee actually works, not where the company is located. It's payroll, not IT, who are going to be coming after your friend, because the state tax collectors are going to be coming after everybody when your friend's lie causes them to not file the taxes correctly.
TL:DR this is tax fraud.
First, this approach is going to fail at some point. Depending on how far away it is, that could be a major issue. It also makes some very bold assumptions about connection speed and latency that are probably not true.
Second, IP doesn't reliably show location. My cable ISP is typically geolocated to Chicago, despite it being 2 states away. Same for T Mobile connections.
Third, it's incredibly unlikely that the employer is going to be looking at IP addresses to determine location. Even if they wanted to use tech for this purpose, they would use location services/GPS/etc. Which a VPN won't conceal.
Fourth, changing the physical mailing address on file would be a bigger flag. But presumably he'll list that family's address, which could create other implications.
I think you are trying to solve a legal issue using a technological solution. The issue isn't where his connections are coming from, the issue is where he's a resident. It's probably related to taxes or some other legal thing.
No matter what sort of technology you apply, you ain't solving the legal issue.
It is 100% related to his company's income tax footprint. If they have an employee in a state, they almost always have to file corporate income taxes in that state.
If they don't have an employee there, they may have very good and legal reasons to not file there.
The issue is as someone who's not exposed to corporate taxes and works on the company's tax returns, you have no idea just how much of an issue this can be. Say your salary is $100,000; you think what's the issue, I only cost the company that much.. Your dumb ass just moves into a state where your employer said you can't work there. All of a sudden, the company owes $1+ million in taxes they weren't on the hook for before because they have to file a combined unitary tax return. You didn't being just your stupid ass into the state, you brought 20 other companies into the state.
Go ahead and absolutely move. When your corporate tax department finds out, your ass will get canned.
If it was me I would purchase two gl inet routers. Their super easy gui can setup VPN servers and Tailscale. Can also use Luci for Openrouter. All my routers are this brand. I use them for Tailscale but I know the VPN server exists for both OPENVPN and wireguard. Very plug and play and if they installed Tailscale they could easily troubleshoot out of state as long as there’s power and internet
Hmm, not sure if this will help, but I bought an Asus router a couple years ago and discovered last year it had this functionality built in. Really easy to setup on the router, installed openvpn client on phone and laptop and now I have access to my home network.
Works pretty flawlessly for me, but I should mention that Asus has had some security issues in the past, but they did release updates pretty quickly
Id just setup a Tailscale exit node on the old address. That can ran even on an apple tv device even when it’s off. And a tailscale subnet router on the new address. The docs on it pretty informative so should be a hassle. Ive done something similar in the past let me know if you need further help.
What I would do is find a router that allows a VPN to be set up on it like an ASUS AX6000 (quick search found it would support it, probably shop around to find something that's quality). Then I would set it up to broadcast for the personal use and a separate wifi name like WORK WIFI and set a password on it that's different than the rest of the wifi you broadcast for home use. Only connect to the work wifi with his work device and all the traffic will go through that VPN. He can get a cheap dedicated IP address for the state he needs from someone like Private Internet Access. They have deals like 3 years for $79 for their dedicated IPs (so less than $3 a month, not 79 a month) So really he can go cheaper if he thinks he only needs it for a year and his IP would always stay the same in that state. You just want to make sure the router has a decent enough processor to ensure the VPN can work nicely. Hopefully someone will throw in a mention of one they have used.
Apparently they also have something called fusion that is just VPN split tunnels that you can proscribe to devices, so you could just reserve the IP for the work device and set that to a tunnel instead of broadcasting a separate SSID (wifi name) for it.
Oracle cloud free tier?
Raspberrypi with pivpn. Put it right next to the router. Can possibly be powered by the routers usb port as well. Connect with ssh to administer. Easy as pie.
For always staying on the vpn: Get a pfsense router and configure it to always connect to the vpn and route all traffic through it.
Tailscale is by far the easiest way. Zerotier works as well.