Zscaler (NASDAQ: ZS) accelerates digital transformation so customers can be more agile, efficient, resilient, and secure. The Zscaler Zero Trust Exchange protects thousands of customers from cyberattacks and data loss by securely connecting users, devices, and applications in any location. Distributed across more than 150 data centers globally, the SASE-based Zero Trust Exchange is the world’s largest in-line cloud security platform.
Пікірлер
Could you give us more information on load balancing? What if you have multiple server for one application. How does Zscaler do the load balancing?
So it appears to be a router on a stick, but still sharing the same broadcast domain? There aren't really details here but I'm trying to understand how you are truly isolating the clients on a same VLAN from each other, it can't just be at a layer 3 level, you blocking ARP's etc? They running clients? Just changing a host to a /32 would certainly contain that host but what about misconfiguration or bad actors also attached to that VLAN?
1:58 "Firewalls do a really good job of...what? Like that...north to south segmentation, but the east to west story has been a little bit trickier." After he just drew out the typical datacenter architecture (with users and OT in it? What kind of datacenter is this?) and placed a firewall segmenting the (2) VLANs in his example (by assigning the FW with a VLAN interface for each segment)...which would 100% instinctively do east west inspection. How is that tricky? How about this as the intro: "Zscaler does a really good job of...what? Like that...northbound inspection, but there hasn't really been an east to west story for us." I think that would be a more accurate statement. Another accurate statement @4:46..."I'm not a network guy". Truth. Maybe Airgap will help you be better networking guys/gals over there at Zscaler. Up until now, the network has always been pretty irrelevant for Zscaler (marketing).
A few comments: 1. You did not provide any real details here. You imply that the ZScaler Airgap ‘client’ locks down each individual host, and the Airgap box (physical or virtual) manages the policy to lock down each host. But you didn’t provide enough details here. 2. Unlike NSX, which applies policy to the virtual NIC shim that is not part of the VM, Airgap looks to be installed on the hosts. So, what would stop a bad actor from disabling or removing Airgap from that host? 3. Nitpick. You started out by drawing the Core of what you said was a Data Center, and the first thing you drew was a User VLAN. Generally, user VLANs are out in the campus, or branch locations, and NOT in the Data Center. So, does the Airgap solution ONLY apply to Data Centers (as a replacement for functionality provided by NSX or similar), or is it also something that could/would be deployed on a campus or branch network as well? 4. If this IS a solution for Data Center, Campus and Branch/Remote Office networks, does each location need a LOCAL ZScaler Airgap “policy box” to manage policy? Or would a smaller number of distributed or centralized “policy boxes” be deployed to manage policy for remote networks? And if the “policy boxes” are remote, what happens to policy enforcement and application if the Airgap-equipped hosts lose communication with the “policy boxes”?
I had a genuine laugh more than once, this guy should make more videos like this! Also I think the camera was slightly out of focus, the lines were not sharp. Neverthless, great video 😄
J😢😢😢
Thank you sharing about microsegmentation.
😇 P R O M O S M
실적 좋은데
This is great but you guys need a media/marketing team asap. Investors won’t buy what they can’t generally understand. Talking about myself here.
Nice
so, when you gonna introduce IPv6?
Hello sir, I am a fresh graduate who is currently doing a research project on zero trust across multicloud ERPs. If you aa someone who is well experienced in the field would be generous enough to please help in my google survey to understand current and future market trends in it, it would be life saving. Please please respond back. Consider it as a request from a younger version of you.
Can Zscaler ZPA/ZIA access policies be based on IOT device types that were detected by ML not only seeing the IOT device types and their network patterns in a Report? For example allowing specific camera models to talk only to the camera vendor's cloud server through ZIA or allowing internal access to the cameras using ZPA to specific specific AD user or AD groups ?
I was hoping this video would show competitive info. Maybe a battle card that would distinguish setting you apart from products like Prisma Access from Palo Alto Networks and other competitors. If you want to be set apart then consider being more specific about how you do that exactly in comparison.
☠️😂 Poor Bruce 😔
Wow!
❤
i love you😝
Great Video! Tooker didn't give you enough credit lol!
Great video on generative Ai. I really learned a lot about how to safely embrace the future of Ai.
🎉🎉🎉
Brian, thanks for this video, Super Helpful and much easier than reading a White Paper or a Slide Deck!!
Thanks for the info! And are you the guy that’s from Pebcak podcast?!?!
You're like a super sharp and physically imposing Mr. Rogers in the Zero Trust neighborhood. I love it.
So maybe rudimentary question - when you say VM is that essentially just a server running on the site that needs provisioned to run the Zscaler software?
Basically yes, it is a lightweight VM which runs a sort of communicator which talks to the ZTE (Zero trust Exchange). Only outbound which reduce security risk compared to VPN
@@user-ck5qu2yo9i isn't that just a massive single point of failure then?
I have a doubt in zscaler If am in office network do I need to connect ZIA/ZPA? If am in public network, I can resolve my application urls with private ip, If am in public network, Can I connect both ZPA & ZIA in same time ? so that I can connect private applications and I can connect public networks securely.
Next generation and ever lasting technology. Great people.
My cousin, love you for uplifting the generation. Love you Kavi.
Curious if app control (with current capabilities) could get Salesforce instances onboarded?
Brilliant..
well done
Do I need to prepare my network (VNet and Subnet level in Azure) to bring this segmentation into action? Looks like I can apply it without having to create a ton of /28 subnets.
great presentation
This is fantastic! Simplicity from a mile high with some deep cool technology at the root.
Great demo Dhawal! ZDX provides such a granular look into user workflows, that enables the Network/Application teams to be more precise in ticket resolution.
Question: SSL inspection - does that mean you can read encrypted SLL by breaking the tunnel into 2?
Great description. Summed up very well.
sounds like elevator speech and there is no zscaler university option either like all other vendors provide. good job
Do you provide training on Zscaler
no he just provide training on Zscalar
Hi where does the zscaler pac file get stored on Windows 10?
Bro get off my school computer you got everything blocked
@2:10 - That dog was supposed to pee on that pile, but someone didn't assign it a JIRA ticket.
🤣
Very well done. Only critique is to drop the elevator music during your discourse.
NICE SESSION
Bhai Hindi mei bolo yaar ;)
Most disgusting software ever ..😡
need better volume.
Detailed yet simple. Thanks for this.
Thanks for the simple explanation