dokucama

User Tools

Site Tools

Trace:
network_stuff:zscaler

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revisionPrevious revision
Next revision		Previous revision
network_stuff:zscaler [2024/09/01 18:38] jotasandokunetwork_stuff:zscaler [2024/09/02 09:00] (current) jotasandoku
Line 1: Line 1:
-Allows the same kind of segmentation we can get in an EC2 instance (security groups, ACL and so on) but in end user stations.+Allows the same kind of segmentation we can get in an EC2 instance (security groups, ACL and so on) but in end user stations.\\
 Zscaler has their own cloud. they offer there: authentication, firewall (inspection) and metrics Zscaler has their own cloud. they offer there: authentication, firewall (inspection) and metrics
  
-=== Agents ===+==== Agents ====
   * Requires Zscaler agent running on the computers ''client connector''   * Requires Zscaler agent running on the computers ''client connector''
   * ''app connectors'' (for applications) [[https://help.zscaler.com/zpa/about-connectors|External_Link]]   * ''app connectors'' (for applications) [[https://help.zscaler.com/zpa/about-connectors|External_Link]]
  
-=== Cloud === +==== Cloud ==== 
-    Zscaler Internet Access (ZIA) service. [[https://youtu.be/TVBbnxpo7V0?|External Link]] +=== Zscaler Internet Access (ZIA) service === 
-    * ZIA uses GRE tunnel/s to the zscaler location to 'bundle' all users inside the same tunnel. That optimizes the routing to the zscaler cloud.+    * When connection from 'on-site', ZIA uses **GRE tunnel/s** to get to he zscaler location 
 +      * The tunnel 'bundles' all on-site users inside the same tunnel. That optimizes the routing to the zscaler cloud.
     * That tunnel is limited to 1G and to 1k users. More users require more locations with more tunnels.     * That tunnel is limited to 1G and to 1k users. More users require more locations with more tunnels.
       * [[https://help.zscaler.com/zia/ranges-limitations|Limitations]]:       * [[https://help.zscaler.com/zia/ranges-limitations|Limitations]]:
         * (1G/250Mb per GRE tunnel (outbound)). If more throughput, we need more tunnels (and more public IPs). [[https://help.zscaler.com/zia/understanding-generic-routing-encapsulation-gre|Link]]         * (1G/250Mb per GRE tunnel (outbound)). If more throughput, we need more tunnels (and more public IPs). [[https://help.zscaler.com/zia/understanding-generic-routing-encapsulation-gre|Link]]
         *          * 
-    * Zscaler Private Access (ZPA) enabled. To access your organization's internal resources from any location. [[https://youtu.be/kvbKr7MVBlk|External Link]]+=== Zscaler Private Access (ZPA) ===  
 +  * To access your organization's internal resources from any location. [[https://youtu.be/kvbKr7MVBlk|External Link]] 
 +  * ZPA uses **TLS tunnels** to meet-in-the middle: remote user >>>> ZS BROKER <<<< connectors(target infra) 
 +  * Makes use of the ''connectors'' 
 +    * In admin.private.zscaler.com > Config & control > Private infrastructure > App Connectors 
  
  
network_stuff/zscaler.1725215907.txt.gz · Last modified: by jotasandoku

Page Tools

Except where otherwise noted, content on this wiki is licensed under the following license: CC Attribution-Share Alike 4.0 International
CC Attribution-Share Alike 4.0 International Donate Powered by PHP Valid HTML5 Valid CSS Driven by DokuWiki