Zscaler Internet Access Review

No need to maintain multiple devices on the data center and secure entire traffic.


Valuable Features

Zscaler is securing entire cooperate traffic using its different modules. This includes URL & aapplication filtering, malware & threat protection, bandwidth control, sand boxing and advanced fire-walling etc. Specifically, I like the URL filtering/user authentication. DLP and firewall features are also an added advantages. Also, there are various traffic forwarding mechanisms such GRE, pac file, VPN etc.

Improvements to My Organization

Since this is a cloud based product, we don't have to bother about the hardware/physical status and space. No need to monitor and manage the hardware. If there's an issue, Zscaler will switchover to another node to process the customer traffic.

Room for Improvement

Using location admin users should be better so we can merge any centralized authentication servers like AD, Radius, and any other server. This would help centralize the server management. v5.2 is being released shortly, and will have a lot of new features for TLS and HTTPS transactions.

Use of Solution

Morethan 6 years

Deployment Issues

NO

Stability Issues

Initially there were issues interms of stability and improved a lot now.

Scalability Issues

Zscaler is very easy to scale.

Customer Service and Technical Support

They have very excellent support team

Other Solutions Considered

It's an excellent product, and there's no need to worry about the hardware and maintenance cost.

Other Advice

We can manage our IT rules and policies using online portal.

Disclosure: I am a real user, and this review is based on my own experience and opinions.
1 visitor found this review helpful
3 Comments
CacheGuardUserTOP 5

Is it possible to transparently inspect SSL traffic with Zscaller? If so, what are constraints? And in general what to you think about SSL inspection?

12 January 18
Technical Specialist with 5,001-10,000 employeesConsultant

Yes, you can transparently forward the traffic to zscaler using GRE or IPsec. ZScaler will insect SSL traffic if the SSL inspection enabled on locations.

12 January 18
CacheGuardUserTOP 5

So the SSL inspection is done at the IP level and not at the application level (with a transparent Web proxy for instance) with ZScaller. Do you have any information regarding the pros and cons of doing SSL inspection at the IP or HTTP level? What about the necessity to deploy a CA certificate at the client side? Is it mandatory?

12 January 18
Guest
Sign Up with Email