This article covers how to set up your Zscaler Cloud Application for use with ON24.
As a supplement to the ON24 Allowlist, this article specifically details the steps required to ensure presenters and attendees on networks managed by Zscaler software can interact fully with all ON24 traffic and protocols.
For more information using the Zscaler Cloud Application Control policies, please review Zscaler Help Documentation - https://help.zscaler.com/zia/adding-sales-marketing-rule-cloud-app-control
From your Zscaler account, click on Policy. Choose URL & Cloud App Control. Under Cloud App Control Policy, use the dropdown to choose Sales & Marketing as your category. |
|
Set Rule order as 1. Provide a Rule name. Under Cloud Application Criteria, choose ON24. |
|
Fill out the other criteria as required. Under Action, select Application Access as Allow. Save the rule then activate it. |
Note re: Tunnel 2.0 DTLS and TLS mode
Based on multiple reports and data analysis, it is observed that certain ISPs deprioritize UDP-based traffic which includes DTLS. DTLS is the primary transport protocol for Z-Tunnel 2.0. Such de-prioritization leads to performance issues towards internet destinations. This sometimes leads to the inability to access the destination.
Note that the DTLS uses UDP over port 443 whereas TLS uses TCP over port 443.
This is a situation-dependent configuration
Zscaler works well with both these configurations. However, the processing of the DTLS by the ISP's routers is of concern since a few hops might not be processing the DTLS traffic effectively.
As a work around you can select TLS as a tunnel version selection.
Comments
1 comment
Added DTLS/TLS article information.
Please sign in to leave a comment.