sometimes we have websites beeing used in our Company which are not reachable when using Zscaler.
As soon as you disable Zscaler Client, and working as Road Warrior, the website will load.
Most of the time it is a government website which is only reachable from a Country IP, but not always.
As we have our default Route pointing to Zscaler and GRE Tunnels towards Zscaler in place, there is no easy Zscaler bypass possible (For example in a PAC file).
What are you doing when Zscaler IPs seems to be blocked at the destination side?
This white paper outlines use cases, deployment considerations, and best practices for layering existing source IP address identification controls with Zscaler’s state-of-the-art, multi-tenant security model.
i hope we’ll never end up in that situation … fingers crossed and knocking on wood …
At least so far in all countries were we had to work around geofencing or some other flavor of ACL (@Ben_Garrison - new entry for the soup! ACL=Access Control List) we either had an office location in that country or could instead route traffic through one of our SIPAs which uses an IP owned by us to make the external system happy.