zlacker

[parent] [thread] 4 comments
1. nick2k+(OP)[view] [source] 2026-01-11 23:50:12
All fine and great with Tailscale until you company places an iOS restriction on external VPNs and your work phone is also your primary phone :(
replies(3): >>jacobt+L >>ivanje+b1 >>teifer+MZ
2. jacobt+L[view] [source] 2026-01-11 23:56:49
>>nick2k+(OP)
My work WiFi blocked traffic to port 51820, the default WireGuard port. I was wondering why my VPN started failing to handshake one day. I changed my ports to 51821 that night and back in business. I checked our technology policy and there’s no “thou shalt not use a VPN” clause so no clue why someone one day decided to drop WireGuard traffic on the network.
replies(1): >>teifer+001
3. ivanje+b1[view] [source] 2026-01-11 23:59:20
>>nick2k+(OP)
Usually you can ask for a separate phone for work. I can't stand when personal devices are poisoned with Intune and other company crap.
4. teifer+MZ[view] [source] 2026-01-12 08:36:20
>>nick2k+(OP)
> your work phone is also your primary phone :(

That's the flaw right there. Don't mix company assets with pricate use. Phone, laptop, car. Your life is already very dependent on your employer (through income), don't get yourself locked in even more by depending on them for personal tech. Plus it's a security risk to your company.

Unless you have a low paying job, which rarely anybody on HN does, you can afford your own phone and laptop. And IT won't find your messages to girlfriend or pictures you don't want others to see or browsing history.

◧◩
5. teifer+001[view] [source] [discussion] 2026-01-12 08:38:08
>>jacobt+L
Restrict use of private devices?

Though just blocking particular ports for this purpose is very 90s and obviously ineffective, as you demonstrated. Anybody proficient in installing wireguard also knows how to change ports.

[go to top]