VPN Tunnel for single device?

I have a few devices on my network for work that MUST be IP whitelisted. No problem, check my IP, call up IT, get it fixed.

This past week my ISP has gone down like 10 times. New IP every router reboot. Lots of IT calls. Everyone is annoyed.

I would like to stuff just one or two devices into a VPN tunnel with a static IP, but still allow other devices to interact.

Alternatively, I could stuff the whole house into a VPN but that will significantly damage my network speed for everyone in the house.

Anyone got a good solution for this?

Ask IT if they can use a FQDN instead of an IP address. If they can, then create an account on duckdns, and run the updater on one of your computers

Tailscale. Just install the agent on the devices you want and they’ll have their static tailnet ip.