dokucama

User Tools

Site Tools

Trace: tcpdump haproxy
network_stuff:zscaler

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revisionPrevious revision
Next revision		Previous revision
network_stuff:zscaler [2024/09/01 18:38] jotasandokunetwork_stuff:zscaler [2024/09/02 09:00] (current) jotasandoku
Line 2: Line 2:
 Zscaler has their own cloud. they offer there: authentication, firewall (inspection) and metrics Zscaler has their own cloud. they offer there: authentication, firewall (inspection) and metrics
  
-=== Agents ===+==== Agents ====
   * Requires Zscaler agent running on the computers ''client connector''   * Requires Zscaler agent running on the computers ''client connector''
   * ''app connectors'' (for applications) [[https://help.zscaler.com/zpa/about-connectors|External_Link]]   * ''app connectors'' (for applications) [[https://help.zscaler.com/zpa/about-connectors|External_Link]]
  
-=== Cloud === +==== Cloud ==== 
-    Zscaler Internet Access (ZIA) service. [[https://youtu.be/TVBbnxpo7V0?|External Link]] +=== Zscaler Internet Access (ZIA) service === 
-    * ZIA uses GRE tunnel/s to the zscaler location to 'bundle' all users inside the same tunnel. That optimizes the routing to the zscaler cloud.+    * When connection from 'on-site', ZIA uses **GRE tunnel/s** to get to he zscaler location 
 +      * The tunnel 'bundles' all on-site users inside the same tunnel. That optimizes the routing to the zscaler cloud.
     * That tunnel is limited to 1G and to 1k users. More users require more locations with more tunnels.     * That tunnel is limited to 1G and to 1k users. More users require more locations with more tunnels.
       * [[https://help.zscaler.com/zia/ranges-limitations|Limitations]]:       * [[https://help.zscaler.com/zia/ranges-limitations|Limitations]]:
         * (1G/250Mb per GRE tunnel (outbound)). If more throughput, we need more tunnels (and more public IPs). [[https://help.zscaler.com/zia/understanding-generic-routing-encapsulation-gre|Link]]         * (1G/250Mb per GRE tunnel (outbound)). If more throughput, we need more tunnels (and more public IPs). [[https://help.zscaler.com/zia/understanding-generic-routing-encapsulation-gre|Link]]
         *          * 
-    * Zscaler Private Access (ZPA) enabled. To access your organization's internal resources from any location. [[https://youtu.be/kvbKr7MVBlk|External Link]]+=== Zscaler Private Access (ZPA) ===  
 +  * To access your organization's internal resources from any location. [[https://youtu.be/kvbKr7MVBlk|External Link]] 
 +  * ZPA uses **TLS tunnels** to meet-in-the middle: remote user >>>> ZS BROKER <<<< connectors(target infra) 
 +  * Makes use of the ''connectors'' 
 +    * In admin.private.zscaler.com > Config & control > Private infrastructure > App Connectors 
  
  
network_stuff/zscaler.1725215917.txt.gz · Last modified: by jotasandoku

Page Tools

Except where otherwise noted, content on this wiki is licensed under the following license: CC Attribution-Share Alike 4.0 International
CC Attribution-Share Alike 4.0 International Donate Powered by PHP Valid HTML5 Valid CSS Driven by DokuWiki