Zscaler Z-Tunnel 2.0

note

This feature is in Explorer Maturity. The EA maturity gate will be at mid of november 2023.

This document aimed to be a support for any user on-board on the Tunnel 2.0 Zscaler feature.

What is Zcaler Tunnel 2.0 ?

By default, TNAP users use Tunnel 1.0. Recently, Zscaler offers an improvement called Tunnel 2.0 by providing a gateway solution.

Use cases covered:

IP anchoring meaning the IP used by your TNAP will be managed by TDF
Proxying traffic to internet on another port than 80/443

Flow Architecture with Tunnel 2.0

How to enable the feature ?

For now, the feature is under testing, so no available to TDF users. Once the feature will be in EA/GA, it will be applied directly to your TNAP, without any additional enrollment.

The single action required is to update the policy on your side:

Open the Zscaler Client application. You should see:

then select "more"

Finally, click on "Update Policy".

Troubleshoot

For any help on this refer to the Tunnel 2.0 Troubleshoot

What is Zcaler Tunnel 2.0 ?​

Flow Architecture with Tunnel 2.0​

How to enable the feature ?​

Troubleshoot​

What is Zcaler Tunnel 2.0 ?

Flow Architecture with Tunnel 2.0

How to enable the feature ?

Troubleshoot