Zscaler Tunnel 2.0 - Restrict access to ports

Hi All,
Z-Tunnel 2.0 has a tunneling architecture that uses DTLS or TLS to send packets to the Zscaler service. Because of this, Z-Tunnel 2.0 is capable of sending all ports and protocols.

I have only a few users on tunnel 2.0 and I would like to know if:
1)Is there a way to find out which “protocols” are going through zscaler which is not http/https? I guess the answer is not.
2)Is there a way to restrict which protocols are allowed?



  1. You can forward all TCP and UDP traffic using Tunnel 2.0.
  2. You can restrict TCP / UDP communication using APP profile.

Ramesh M

1 Like