Can someone within the community folks help me to understand ZCC ( Z-App) working while a user is on Trusted network. Assuming I already set the trusted network criteria in forwarding profile;
Does Zpp goes to fail open mode when it detects trusted network ? Considering the fact I have transparent forwarding from the network edge device using GRE/IPSEC tunnels to public service edge?
Or does it still establishes its own tunnel 1.0/2.0 depending on the configuration in the profiles ? In this case will it be a tunnel 1.0/2.0 inside a GRE /IPSEC tunnel at the edge device? or how does it work in this way?
What would be a particular use case to use a Zpp for ZIA service when user is in corporate network and all my internet based traffic can be routed to public service edges using transparent forwarding at edge routers ? even my browser will use this GRE/IPSEC tunnel to forward interned based traffic to Zscaler public edges?