Search results
Results From The WOW.Com Content Network
Information on the two versions of Z-Tunnel, which Zscaler Client Connector uses to forward traffic.
Information on how to successfully migrate from Z-Tunnel 1.0 to Z-Tunnel 2.0.
Zscaler Tunnel 2.0 is a secure, reliable, and high-performance way to connect users to the Zscaler cloud and access its security and networking services. It offers several benefits over...
During this time, we have introduced multiple options to forward traffic to the Zscaler cloud. These have included Z-tunnel 1.0 aka HTTP-based tunnels, and Z-tunnel 2.0 which brought in the support for TLS/ DTLS-based encrypted tunneling mechanisms. These Z-tunnels are established by the Zscaler Client Connector or the Cloud Connector.
Tunnel 2.0: Tunnel 2.0 has a tunnelling architecture that uses DTLS or TLS to send all endpoint traffic to the Zscaler cloud—regardless of port or protocols. Tunnel 2.0 supports non-web traffic in addition to web traffic and offers enhanced features such as application-aware routing, per-app tunnelling, and advanced threat protection.
By pairing Advanced Cloud Firewall and Z-tunnel 2.0, you can fully control and secure your users’ connections and reduce risk without VPN, backhauling or costly appliances.
Tunnel 2.0 DTLS and TLS mode. Based on multiple reports and data analysis, it is observed that certain ISPs deprioritize UDP-based traffic which includes DTLS. DTLS is the primary transport protocol for Z-Tunnel 2.0. Such de-prioritization leads to performance issues towards internet destinations.
I usually recommend having a separate profile that does Tunnel2.0 over TLS only, and seeing if users still have the issues when going TLS. In my experience, that will resolve about 95% of the users that have issues with tunnel2.0. If that doesn't work, you may have to play with MTU.
Information on how to successfully migrate from Z-Tunnel 1.0 to Z-Tunnel 2.0.
Hello Charlie, to support Tunnel 2.0 you must be on a more recent version of ZCC (3.x). Also from what I recall there was a time when you needed to have the capability enabled in your Mobile Portal by Zscaler.