Displaying IP Location for VPN Access

Simply-Me on 18/01/2024 - 07:36
Last edited 18/01/2024 - 08:58 by 1 other user

Hi all, looking for some advice.

I have been given company's laptop with VPN access to get into internal server and business system. The problem is that I will be accessing the VPN from Australia for the next several months but need to ensure to display the location as overseas. The IT dept asked me to provide specific overseas address where I will be using this VPN and not sure if this is their way to avoid flagging security issue in the system.

My question is that if there is any way to display my IP location in overseas everytime I access the VPN and not to cause any suspicious flag showing that I still access the VPN in Australia?

Appreciate any suggestion and thank you in advance.

• 

  stirlo on 18/01/2024 - 08:09

  +2

  I’m assuming this is some kind of scam you’re pulling on your employer… but hey this is ozbargain so let’s not judge too much…

  If you have a friend or family member who has a home internet connection in the country where you want to appear the best thing would be to ask them to configure the VPN server on their router and let you access through their home internet. This way you’ll avoid being flagged as using a data centre IP or an obvious commercial VPN provider.

  If their router doesn’t support VPN then you could ask them to run software like Tailscale and setup an exit node which will configure private VPN for you with internet access coming from the exit node IP.

  Once your VPN or Tailscale is connecting traffic through your chosen locations internet connection you just login to work VPN as normal.

  Edit: Just saw this is on a company laptop. Tailscale would require admin rights so probably won’t work…

  • • 

      stirlo on 18/01/2024 - 08:42

      Agreed. It’s an interesting challenge as an IT guy though. The main thing I’d caution is to stay away from commercial VPN providers. Their IPs are quickly identified and blocked. By using a real home internet connection they stand a better chance. But then again something as simple as the time zone might betray them anyway

      • • 

          stirlo on 18/01/2024 - 09:39

          @xdpx: Yeah there’s no way to defeat a forensic level investigation but just appearing in Intune as being in from a certain countries IP range is quite possible. Unless there is great suspicion that would probably be enough to satisfy most IT departments unless they were particularly vigilant.

          As you said private point to point VPN link to the desired country and then run the work VPN over that link would be the way you do it. As for OPs ability to do this and not slip up… I’m not confident…

• 

  BoltThrower on 18/01/2024 - 08:25

  +5

  With a half-decent IT dept, you're going to get caught and lose your job.
  Is remote-desktopping to an overseas computer an option or are you only able to access your company using a specific hardware ID?
  The fact that you're asking doesn't instill confidence.
  You're better off being up-front. Tell them you're going overseas. Ask for time-off or reduced duties with lower security in the interim.
  Also ain't worth the stress, wondering if they'll ever find out. Keep a clear conscience and sleep better.

• 

  DingoBlue on 18/01/2024 - 10:59

  +1

  Hotspot off your phone which is VPN'd to the required country

  • 

    Croc2 on 18/01/2024 - 14:18

    Probably the easiest solution. Could go a step further and get a dedicated router that you can set a VPN up on.

  • 

    bonezAU on 25/02/2024 - 13:17

    This has not worked when I've tried it in the past on an Android device, can't speak for iOS.

    It didn't matter if I connected to the VPN before or after turning on the hotspot, traffic ignores the VPN tunnel and just goes out directly through the mobile network.

• 

  DingoBlue on 18/01/2024 - 11:04

  +2

  The IT dept asked me to provide specific overseas address

  Company VPNs are very often setup to reject incoming connections from other countries, I'd suspect they're simply going to open it up for wherever you're going to be.

  Lots of details are missing here but I would doubt (from an IT perspective) you even need to pretend to be anywhere. Just connect from AU and do the pretending.

• 

  Typical16-bitEnjoyer on 18/01/2024 - 11:08

  +2

  You're going to get caught. Just fess up now.

• 

  ericc on 18/01/2024 - 13:14

  mind sharing your scam reason?

• 

  Simply-Me on 18/01/2024 - 15:18

  Just to clarify, I am not doing some scamming. I resigned and they did not accept although I have given the notice as per the signed contract. Just want to avoid further dramas and who knew it is becoming this complicated.

  The IT has just installed Sophos VPN and I doubt my specific address will be playing a significant role. I think it is more like it will show where my IP address is and I just want it to appear as if I am in certain country while using it. I am not an IT person, but any advice is highly appreciated. Thanks.

  • 

    Typical16-bitEnjoyer on 18/01/2024 - 21:11

    If that's the case, what's the problem with telling them you're in Australia?

• 

  djsweet on 18/01/2024 - 15:22

  Sounds like the simpler solution is to just stop responding to anything company related after the end of your notice period and drop the laptop at the office.