Genesys Cloud (formerly PureCloud)

Discussion Thread View
Expand all | Collapse all

WebRTC using WebProxy(Zscaler)

  • 1.  WebRTC using WebProxy(Zscaler)

    Top 25 Contributor
    Posted 16 days ago

    ​Would like to check if WebRTC works with Cloud based proxy like Zscaler.

    I am planning to use WebRTC for both the users in the LAN & also users working from Home

    Is it possible to use Zscaler Webproxy for this ?

    Is there any case study or reference for this ?


    #ArchitectureandDesign

    ------------------------------
    Rajeev Srikant
    ------------------------------


  • 2.  RE: WebRTC using WebProxy(Zscaler)

    NEW MEMBER
    Posted 16 days ago
    If you mean products like Zscaler Internet Access (Secure Web GW) and Client Connector then yes. On the remote device, it is necessary to choose the right policy routing, especially for mobile workers or/and homeworker.

    ------------------------------
    Lubos Koprda
    NTT France
    ------------------------------



  • 3.  RE: WebRTC using WebProxy(Zscaler)

    Top 25 Contributor
    Posted 16 days ago
    Do you have any case study or any reference document which has details regarding this ?

    Also what is "Client Connector" which you are referring here ?​

    ------------------------------
    Rajeev Srikant
    ------------------------------



  • 4.  RE: WebRTC using WebProxy(Zscaler)

    Top 25 Contributor
    Posted 16 days ago
    "Client Connector" - R u referring to Z-Tunnel2.0 ?

    ------------------------------
    Rajeev Srikant
    ------------------------------



  • 5.  RE: WebRTC using WebProxy(Zscaler)

    NEW MEMBER
    Posted 16 days ago
    Edited by Lubos Koprda 15 days ago


    Hi,

     

    Client Connector is „endpoint VPN like"  software,  It is not necessary for Genesys Cloud, but with the Zscaler solution it can often be up and running.

    https://www.zscaler.com/products/zscaler-client-connector

     

    Here is picture for different client location and connectivity type (blue – Zscaler placement):

     

     

     

    KR

     

    L.

     

     

     

    "Client Connector" - R u referring to Z-Tunnel2.0 ? ------------------------------ Rajeev Srikant ------------------------------ -posted to the "Genesys Cloud (formerly PureCloud)" community

    Genesys Cloud

    Start a Discussion

     

    Re: WebRTC using WebProxy(Zscaler)

    lzd6Dy4YQASTmhgJpCDC_genesys_community_profileImage@2x_200.jpg" alt="Rajeev Srikant" width="75" height="75" border="0">

    Mar 29, 2021 7:47 AM

    Rajeev Srikant

    "Client Connector" - R u referring to Z-Tunnel2.0 ?

    ------------------------------
    Rajeev Srikant
    ------------------------------

      Reply to Group Online   View Thread   Recommend   Forward   Flag as Inappropriate  




     

     

    You are receiving this notification because you followed the 'WebRTC using WebProxy(Zscaler)' message thread. If you do not wish to follow this, please click here.

    Update your email preferences to choose the types of email you receive



    itevomcid






    Original Message:
    Sent: 3/29/2021 7:47:00 AM
    From: Rajeev Srikant
    Subject: RE: WebRTC using WebProxy(Zscaler)

    "Client Connector" - R u referring to Z-Tunnel2.0 ?

    ------------------------------
    Rajeev Srikant
    ------------------------------

    Original Message:
    Sent: 03-29-2021 05:56
    From: Rajeev Srikant
    Subject: WebRTC using WebProxy(Zscaler)

    Do you have any case study or any reference document which has details regarding this ?

    Also what is "Client Connector" which you are referring here ?​

    ------------------------------
    Rajeev Srikant

    Original Message:
    Sent: 03-29-2021 05:20
    From: Lubos Koprda
    Subject: WebRTC using WebProxy(Zscaler)

    If you mean products like Zscaler Internet Access (Secure Web GW) and Client Connector then yes. On the remote device, it is necessary to choose the right policy routing, especially for mobile workers or/and homeworker.

    ------------------------------
    Lubos Koprda
    NTT France

    Original Message:
    Sent: 03-29-2021 03:58
    From: Rajeev Srikant
    Subject: WebRTC using WebProxy(Zscaler)

    ​Would like to check if WebRTC works with Cloud based proxy like Zscaler.

    I am planning to use WebRTC for both the users in the LAN & also users working from Home

    Is it possible to use Zscaler Webproxy for this ?

    Is there any case study or reference for this ?


    #ArchitectureandDesign

    ------------------------------
    Rajeev Srikant
    ------------------------------



  • 6.  RE: WebRTC using WebProxy(Zscaler)

    Top 25 Contributor
    Posted 16 days ago
    Thanks.
    I was looking at your diagram, but it is not clear. I am not able to read it properly.
    Can you save the file in the format, which can be easily read ?​

    ------------------------------
    Rajeev Srikant
    ------------------------------



  • 7.  RE: WebRTC using WebProxy(Zscaler)

    NEW MEMBER
    Posted 16 days ago
    Edited by Lubos Koprda 15 days ago
      |   view attached


    Picture is in attachement.

     

     

    Thanks. I was looking at your diagram, but it is not clear. I am not able to read it properly. Can you save the file in the format, which can be... -posted to the "Genesys Cloud (formerly PureCloud)" community

    Genesys Cloud

    Start a Discussion

     

    Re: WebRTC using WebProxy(Zscaler)

    lzd6Dy4YQASTmhgJpCDC_genesys_community_profileImage@2x_200.jpg" alt="Rajeev Srikant" width="75" height="75" border="0">

    Mar 29, 2021 8:06 AM

    Rajeev Srikant

    Thanks.
    I was looking at your diagram, but it is not clear. I am not able to read it properly.
    Can you save the file in the format, which can be easily read ?

    ------------------------------
    Rajeev Srikant
    ------------------------------

      Reply to Group Online   View Thread   Recommend   Forward   Flag as Inappropriate  



     

     

    You are receiving this notification because you followed the 'WebRTC using WebProxy(Zscaler)' message thread. If you do not wish to follow this, please click here.

    Update your email preferences to choose the types of email you receive








  • 8.  RE: WebRTC using WebProxy(Zscaler)

    Top 25 Contributor
    Posted 16 days ago
    Thanks for sharing the diagram.
    I have the following questions with respect to this.

    PC#1 - Which is in Internet & has Client Connector
    1. Using Client Connector,PC#1 can reach Genesys  cloud via Internet using the tunnel
    2. How will it connect to the Cloud Edge device which is on prem ?
        - Is it required to publish the Edge gateway to Internet ?


    PC#2 - Which is in Internet & has no Client Connector
    1. PC#2 can reach Genesys  cloud via Internet directly
    2. How will it connect to the Cloud Edge device which is on prem ?
        - Is it required to publish the Edge gateway to Internet ?


    ------------------------------
    Rajeev Srikant
    ------------------------------



  • 9.  RE: WebRTC using WebProxy(Zscaler)

    NEW MEMBER
    Posted 15 days ago
    I recommend this article: https://help.mypurecloud.com/articles/configure-network-interface-edge/
    "The WAN interface should be connected to a network segment that has outbound access to the public Internet, so it can securely connect to the Genesys Cloud platform. The second interface, Port 2, should be connected to a different network segment that has access to your internal company LAN."
    For setup of any http proxy: https://help.mypurecloud.com/articles/set-up-the-http-proxy-on-an-edge/
    and highly recommended:
    https://help.mypurecloud.com/articles/ports-and-services-for-webrtc/  wherein the illustrated diagrams for both desired setups



    ------------------------------
    Lubos Koprda
    NTT France
    ------------------------------



  • 10.  RE: WebRTC using WebProxy(Zscaler)

    Top 25 Contributor
    Posted 14 days ago

    ​Thanks.

    Further to the above, I found the below IP Address details of Amazon AWS , Google & Polycom IP Address which needs to be opened.

    For Google & Polycom they mentioned that they don't provide the IP Address details.

    So in this case, how will it be possible to open the required IP Address in the Firewall if the IP address is unknown.



    ------------------------------
    Rajeev Srikant
    ------------------------------



  • 11.  RE: WebRTC using WebProxy(Zscaler)

    NEW MEMBER
    Posted 14 days ago
    It was stated that the end devices will be only WebRTC clients, then for another type it is not necessary to set rules (ACL) on the FW.
    For deployment, it is necessary to select the geographically most advantageous AWS region: https://help.mypurecloud.com/articles/aws-regions-for-purecloud-deployment/  Than JSON file defined Genesys Cloud destination IP addresses/prefixes for FW ACL. Source IP addresses/prefixes from your intranet including VPN is in your hands. List of necessary upper layers services are in  https://help.mypurecloud.com/articles/ports-and-services-for-webrtc/ 
    My recommendation is to create a communication matrix for this purpose and provide it to the security / FW administrator.


    ------------------------------
    Lubos Koprda
    NTT France
    ------------------------------