For our customer i’am facing this situation:
- When the user is on site: GRE tunnels + zapp (Tunnel packet filter based, Ztunnel V1.0)
- When the user is on remote: Zapp (Tunnel packet filter based, Ztunnel V1.0)
Now the user has certain exceptions that he wish to bypass them from zscaler (domains which filter on source IP and URLs which must go through internal proxies)
- When the user is on site, is it enough to create bypass on the pac file ONLY for these exceptions or do you also have to bypass them from the GRE tunnel (bypass pac file + bypass on the FW side from GRE tunnel to zscaler) ?
Thanks for your help.