Genesys Cloud - Main

 View Only
Discussion Thread View
Expand all | Collapse all

WebRTC using WebProxy(Zscaler)

  • 1.  WebRTC using WebProxy(Zscaler)

    Posted 03-29-2021 03:59

    ​Would like to check if WebRTC works with Cloud based proxy like Zscaler.

    I am planning to use WebRTC for both the users in the LAN & also users working from Home

    Is it possible to use Zscaler Webproxy for this ?

    Is there any case study or reference for this ?


    #ArchitectureandDesign

    ------------------------------
    Rajeev Srikant
    ------------------------------


  • 2.  RE: WebRTC using WebProxy(Zscaler)

    Posted 03-29-2021 05:21
    If you mean products like Zscaler Internet Access (Secure Web GW) and Client Connector then yes. On the remote device, it is necessary to choose the right policy routing, especially for mobile workers or/and homeworker.

    ------------------------------
    Lubos Koprda
    NTT France
    ------------------------------



  • 3.  RE: WebRTC using WebProxy(Zscaler)

    Posted 03-29-2021 05:57
    Do you have any case study or any reference document which has details regarding this ?

    Also what is "Client Connector" which you are referring here ?​

    ------------------------------
    Rajeev Srikant
    ------------------------------



  • 4.  RE: WebRTC using WebProxy(Zscaler)

    Posted 03-29-2021 07:47
    "Client Connector" - R u referring to Z-Tunnel2.0 ?

    ------------------------------
    Rajeev Srikant
    ------------------------------



  • 5.  RE: WebRTC using WebProxy(Zscaler)

    Posted 03-29-2021 08:00
    Edited by Lubos Koprda 03-30-2021 10:55


    Hi,

     

    Client Connector is „endpoint VPN like"  software,  It is not necessary for Genesys Cloud, but with the Zscaler solution it can often be up and running.

    https://www.zscaler.com/products/zscaler-client-connector

     

    Here is picture for different client location and connectivity type (blue – Zscaler placement):

     

     

     

    KR

     

    L.

     

     

     

    "Client Connector" - R u referring to Z-Tunnel2.0 ? ------------------------------ Rajeev Srikant ------------------------------ -posted to the "Genesys Cloud (formerly PureCloud)" community

    Genesys Cloud

    Start a Discussion

     

    Re: WebRTC using WebProxy(Zscaler)

    lzd6Dy4YQASTmhgJpCDC_genesys_community_profileImage@2x_200.jpg" alt="Rajeev Srikant" width="75" height="75" border="0">

    Mar 29, 2021 7:47 AM

    Rajeev Srikant

    "Client Connector" - R u referring to Z-Tunnel2.0 ?

    ------------------------------
    Rajeev Srikant
    ------------------------------

      Reply to Group Online   View Thread   Recommend   Forward   Flag as Inappropriate  




     

     

    You are receiving this notification because you followed the 'WebRTC using WebProxy(Zscaler)' message thread. If you do not wish to follow this, please click here.

    Update your email preferences to choose the types of email you receive



    itevomcid






    Original Message:
    Sent: 3/29/2021 7:47:00 AM
    From: Rajeev Srikant
    Subject: RE: WebRTC using WebProxy(Zscaler)

    "Client Connector" - R u referring to Z-Tunnel2.0 ?

    ------------------------------
    Rajeev Srikant
    ------------------------------

    Original Message:
    Sent: 03-29-2021 05:56
    From: Rajeev Srikant
    Subject: WebRTC using WebProxy(Zscaler)

    Do you have any case study or any reference document which has details regarding this ?

    Also what is "Client Connector" which you are referring here ?​

    ------------------------------
    Rajeev Srikant

    Original Message:
    Sent: 03-29-2021 05:20
    From: Lubos Koprda
    Subject: WebRTC using WebProxy(Zscaler)

    If you mean products like Zscaler Internet Access (Secure Web GW) and Client Connector then yes. On the remote device, it is necessary to choose the right policy routing, especially for mobile workers or/and homeworker.

    ------------------------------
    Lubos Koprda
    NTT France

    Original Message:
    Sent: 03-29-2021 03:58
    From: Rajeev Srikant
    Subject: WebRTC using WebProxy(Zscaler)

    ​Would like to check if WebRTC works with Cloud based proxy like Zscaler.

    I am planning to use WebRTC for both the users in the LAN & also users working from Home

    Is it possible to use Zscaler Webproxy for this ?

    Is there any case study or reference for this ?


    #ArchitectureandDesign

    ------------------------------
    Rajeev Srikant
    ------------------------------



  • 6.  RE: WebRTC using WebProxy(Zscaler)

    Posted 03-29-2021 08:06
    Thanks.
    I was looking at your diagram, but it is not clear. I am not able to read it properly.
    Can you save the file in the format, which can be easily read ?​

    ------------------------------
    Rajeev Srikant
    ------------------------------



  • 7.  RE: WebRTC using WebProxy(Zscaler)

    Posted 03-29-2021 08:59
    Edited by Lubos Koprda 03-30-2021 10:53
      |   view attached


    Picture is in attachement.

     

     

    Thanks. I was looking at your diagram, but it is not clear. I am not able to read it properly. Can you save the file in the format, which can be... -posted to the "Genesys Cloud (formerly PureCloud)" community

    Genesys Cloud

    Start a Discussion

     

    Re: WebRTC using WebProxy(Zscaler)

    lzd6Dy4YQASTmhgJpCDC_genesys_community_profileImage@2x_200.jpg" alt="Rajeev Srikant" width="75" height="75" border="0">

    Mar 29, 2021 8:06 AM

    Rajeev Srikant

    Thanks.
    I was looking at your diagram, but it is not clear. I am not able to read it properly.
    Can you save the file in the format, which can be easily read ?

    ------------------------------
    Rajeev Srikant
    ------------------------------

      Reply to Group Online   View Thread   Recommend   Forward   Flag as Inappropriate  



     

     

    You are receiving this notification because you followed the 'WebRTC using WebProxy(Zscaler)' message thread. If you do not wish to follow this, please click here.

    Update your email preferences to choose the types of email you receive








  • 8.  RE: WebRTC using WebProxy(Zscaler)

    Posted 03-29-2021 20:50
    Thanks for sharing the diagram.
    I have the following questions with respect to this.

    PC#1 - Which is in Internet & has Client Connector
    1. Using Client Connector,PC#1 can reach Genesys  cloud via Internet using the tunnel
    2. How will it connect to the Cloud Edge device which is on prem ?
        - Is it required to publish the Edge gateway to Internet ?


    PC#2 - Which is in Internet & has no Client Connector
    1. PC#2 can reach Genesys  cloud via Internet directly
    2. How will it connect to the Cloud Edge device which is on prem ?
        - Is it required to publish the Edge gateway to Internet ?


    ------------------------------
    Rajeev Srikant
    ------------------------------



  • 9.  RE: WebRTC using WebProxy(Zscaler)

    Posted 03-30-2021 10:50
    I recommend this article: https://help.mypurecloud.com/articles/configure-network-interface-edge/
    "The WAN interface should be connected to a network segment that has outbound access to the public Internet, so it can securely connect to the Genesys Cloud platform. The second interface, Port 2, should be connected to a different network segment that has access to your internal company LAN."
    For setup of any http proxy: https://help.mypurecloud.com/articles/set-up-the-http-proxy-on-an-edge/
    and highly recommended:
    https://help.mypurecloud.com/articles/ports-and-services-for-webrtc/  wherein the illustrated diagrams for both desired setups



    ------------------------------
    Lubos Koprda
    NTT France
    ------------------------------



  • 10.  RE: WebRTC using WebProxy(Zscaler)

    Posted 03-30-2021 23:11

    ​Thanks.

    Further to the above, I found the below IP Address details of Amazon AWS , Google & Polycom IP Address which needs to be opened.

    For Google & Polycom they mentioned that they don't provide the IP Address details.

    So in this case, how will it be possible to open the required IP Address in the Firewall if the IP address is unknown.



    ------------------------------
    Rajeev Srikant
    ------------------------------



  • 11.  RE: WebRTC using WebProxy(Zscaler)

    Posted 03-31-2021 04:12
    It was stated that the end devices will be only WebRTC clients, then for another type it is not necessary to set rules (ACL) on the FW.
    For deployment, it is necessary to select the geographically most advantageous AWS region: https://help.mypurecloud.com/articles/aws-regions-for-purecloud-deployment/  Than JSON file defined Genesys Cloud destination IP addresses/prefixes for FW ACL. Source IP addresses/prefixes from your intranet including VPN is in your hands. List of necessary upper layers services are in  https://help.mypurecloud.com/articles/ports-and-services-for-webrtc/ 
    My recommendation is to create a communication matrix for this purpose and provide it to the security / FW administrator.


    ------------------------------
    Lubos Koprda
    NTT France
    ------------------------------



  • 12.  RE: WebRTC using WebProxy(Zscaler)

    Posted 05-17-2022 15:41

    Hi @Lubos Koprda


    Do we need to do the ​HTTP Proxy or something similar if we are running on Genesys Voice with Proxy similar to zscaler ?



    ------------------------------
    Vincent Sabolboro
    ATB Financial
    ------------------------------



Need Help finding something?

Check out the Genesys Knowledge Network - your all-in-one access point for Genesys resources