Truth in IT
    • Sign In
    • Register
        • Videos
        • Channels
        • Pages
        • Galleries
        • News
        • Events
        • All
Truth in IT Truth in IT
  • Data Management ▼
    • Converged Infrastructure
    • DevOps
    • Networking
    • Storage
    • Virtualization
  • Cybersecurity ▼
    • Application Security
    • Backup & Recovery
    • Data Security
    • Identity & Access Management (IAM)
    • Zero Trust
    • Compliance & GRC
    • Endpoint Security
  • Cloud ▼
    • Hybrid Cloud
    • Private Cloud
    • Public Cloud
  • Webinar Library
  • TiPs
  • DRAW

ZCC Forwarding Profile Configuration & Best Practices

Zscaler
05/26/2026
0 (0%)
Share
  • Comments
  • Download
  • Transcript
Report Like Favorite
  • Share/Embed
  • Email
Link
Embed

Transcript


In this series of short videos, we'll be taking a look at recommendations for forwarding your traffic to the Zero Trust Exchange. This is Part 3 on the Client Connector Forwarding Profile. Regardless of the forwarding method chosen, Zscaler Client Connector has two profiles that must be configured, a forwarding profile and an app profile. At a high level, the forwarding profile controls how Zcc handles user traffic when in different network environments, and steers traffic to or away from the Client Connector itself within the OS stack. The app profile then makes routing decisions for traffic received by Zcc, steering it towards or away from the Zero Trust Exchange. As an example, the forwarding profile is where you would define trusted network criteria, which Zcc will use to determine whether or not it is on a trusted network, and where it will make the decision of which forwarding method to use. Let's start by taking a deeper look at the forwarding profile. One of the decisions you will need to make as part of the forwarding profile configuration is which driver type to use on Windows devices when forwarding traffic to the Zero Trust Exchange via Z-Tunnel 1 or 2. For non-Windows devices, the driver use will be a route-based driver, with Zcc creating a virtual network adapter and using OS routing to forward traffic via this interface. However, for Windows devices, you also have the option to use a packet-filter-based driver instead. This is recommended as the Windows packet-filter-based driver has several advantages over the route-based driver for this OS. First, it has improved throughput. Secondly, it's transparent and hidden, which means users cannot uninstall it or tamper with its routing. Since there are no IP routes or DNS server configurations created on the system, this driver also has better interoperability with VPN clients and avoids split DNS problems entirely. Note that as of Zcc version 4.8, which released in 2026, the packet-filter-based driver will always be used, and the route-based driver will no longer be selectable. The forwarding profile is also where you'll configure what traffic shouldn't be routed to Zcc in the first place. An example of this is if you want to use a third-party proxy to secure a portion of your traffic. The forwarding profile allows you to bypass this traffic before it reaches Zcc, so it can be routed to the appropriate third-party proxy. Note that for older versions of Zcc, prior to 2026, the forwarding profile is also where bypasses would be configured. This is no longer the case with current Zcc versions, which use the app profile instead. This will be discussed in the next video in this series. Finally, the forwarding profile is also where you can configure the Zcc behavior for web traffic on non-standard ports. This allows you to route this traffic through Zcc so that it is forwarded to the Zero Trust Exchange, even with ZTunnel1, to avoid attempts to evade ZIA security controls. That's it for this video. Thank you for watching!

TL;DR

  • ZCC uses two distinct profiles: the Forwarding Profile controls traffic handling at the OS level and determines forwarding methods, while the App Profile makes routing decisions for traffic received by ZCC.
  • For Windows devices, the packet-filter-based driver is recommended over route-based drivers due to superior throughput, tamper resistance, and better interoperability with VPN clients and DNS configurations.
  • The Forwarding Profile enables configuration of trusted network criteria, third-party proxy bypasses, and handling of web traffic on non-standard ports to prevent security control evasion.

Summary

This technical tutorial explains the Zscaler Client Connector (ZCC) Forwarding Profile configuration, which controls how client traffic is handled across different network environments and steered to the Zero Trust Exchange. The video distinguishes between the Forwarding Profile and App Profile, clarifying that the Forwarding Profile manages traffic handling at the OS stack level and determines forwarding methods based on network context, while the App Profile makes routing decisions for traffic received by ZCC. Key configuration areas covered include driver type selection for Windows devices, trusted network criteria definition, third-party proxy bypass configuration, and handling of web traffic on non-standard ports. The presenter emphasizes the advantages of the Windows packet-filter-based driver over route-based alternatives, noting improved throughput, tamper resistance, and better VPN interoperability. A significant update is highlighted: as of ZCC version 4.8 released in 2026, the packet-filter-based driver becomes mandatory for Windows deployments, eliminating the route-based option entirely.

Chapters

0:00 - Introduction to ZCC Forwarding Profile
0:15 - Forwarding Profile vs App Profile
1:03 - Windows Driver Type Selection
2:12 - Third-Party Proxy Bypass Configuration
2:49 - Non-Standard Port Traffic Handling

Key Quotes

0:24 "At a high level, the forwarding profile controls how Zcc handles user traffic when in different network environments, and steers traffic to or away from the Client Connector itself within the OS stack."
1:38 "First, it has improved throughput. Secondly, it's transparent and hidden, which means users cannot uninstall it or tamper with its routing."
2:00 "Note that as of Zcc version 4.8, which released in 2026, the packet-filter-based driver will always be used, and the route-based driver will no longer be selectable."

Categories:
  • » Webinar Library » Zscaler
  • » Cybersecurity » Zero Trust
  • » Cybersecurity » Endpoint Security
  • » Data Protection
Channels:
News:
Events:
Tags:
  • SASE
  • SSE
  • Zero Trust
  • Endpoint Management
  • Technical Deep Dive
  • How-To
  • Zscaler Client Connector
  • Traffic Forwarding Configuration
  • Zero Trust Exchange
  • Windows Packet Filter Driver
  • Network Security Controls
  • Proxy Bypass Configuration
  • Client Connector Profiles
Show more Show less

Browse videos

  • Related
  • Featured
  • By date
  • Most viewed
  • Top rated
  •  

              Video's comments: ZCC Forwarding Profile Configuration & Best Practices

              Upcoming Webinar Calendar

              • 07/14/2026
                01:00 PM
                07/14/2026
                Crafting a Championship-Worthy Security Team for Unmatched Defense
                https://www.truthinit.com/index.php/channel/2025/crafting-a-championship-worthy-security-team-for-unmatched-defense/
              • 07/14/2026
                02:00 PM
                07/14/2026
                Understanding the Crucial Role of Context in Safeguarding AI-Accessible Data
                https://www.truthinit.com/index.php/channel/2037/understanding-the-crucial-role-of-context-in-safeguarding-ai-accessible-data/
              • 07/21/2026
                04:00 AM
                07/21/2026
                Strategies for Managing AI Governance and Securing App-to-LLM API Traffic
                https://www.truthinit.com/index.php/channel/1967/strategies-for-managing-ai-governance-and-securing-app-to-llm-api-traffic/
              • 07/22/2026
                06:30 AM
                07/22/2026
                Insights and Strategies for Effective Data Privacy and Protection
                https://www.truthinit.com/index.php/channel/2000/insights-and-strategies-for-effective-data-privacy-and-protection/
              • 07/22/2026
                01:00 PM
                07/22/2026
                Insights from Attackers During the FIFA World Cup: A HUMAN Dialogue
                https://www.truthinit.com/index.php/channel/2029/insights-from-attackers-during-the-fifa-world-cup-a-human-dialogue/
              • 07/28/2026
                01:00 PM
                07/28/2026
                Illumio + Netskope: Zero Trust in the Age of AI Autonomy
                https://www.truthinit.com/index.php/channel/2031/illumio-netskope-zero-trust-in-the-age-of-ai-autonomy/
              • 07/29/2026
                04:00 AM
                07/29/2026
                Real-Time Strategies for Safeguarding Against Prompt Injections
                https://www.truthinit.com/index.php/channel/1968/real-time-strategies-for-safeguarding-against-prompt-injections/
              • 07/29/2026
                12:00 PM
                07/29/2026
                Unified Data Security in Action: Uncover, Analyze, and Resolve Threats
                https://www.truthinit.com/index.php/channel/2045/unified-data-security-in-action-uncover-analyze-and-resolve-threats/
              • 07/29/2026
                01:00 PM
                07/29/2026
                Ask Your Cloud Anything: Unlocking Governance Silos in your Environments
                https://www.truthinit.com/index.php/channel/2048/ask-your-cloud-anything-unlocking-governance-silos-in-your-environments/
              • 08/19/2026
                12:00 PM
                08/19/2026
                Becoming Agent Ready: Insights from Cyera's Expertise
                https://www.truthinit.com/index.php/channel/2036/becoming-agent-ready-insights-from-cyeras-expertise/
              • 09/30/2026
                04:00 AM
                09/30/2026
                AI Command Center: Optimizing Visibility and Control in Your Operations
                https://www.truthinit.com/index.php/channel/2024/ai-command-center-optimizing-visibility-and-control-in-your-operations/

              Upcoming Events

              • Jul
                14

                Crafting a Championship-Worthy Security Team for Unmatched Defense

                07/14/202601:00 PM ET
                • Jul
                  14

                  Understanding the Crucial Role of Context in Safeguarding AI-Accessible Data

                  07/14/202602:00 PM ET
                  • Jul
                    21

                    Strategies for Managing AI Governance and Securing App-to-LLM API Traffic

                    07/21/202604:00 AM ET
                    • Jul
                      22

                      Insights and Strategies for Effective Data Privacy and Protection

                      07/22/202606:30 AM ET
                      • Jul
                        22

                        Insights from Attackers During the FIFA World Cup: A HUMAN Dialogue

                        07/22/202601:00 PM ET
                        More events
                        Truth in IT
                        • Sponsor
                        • About Us
                        • Terms of Service
                        • Privacy Policy
                        • Contact Us
                        • Preference Management
                        Desktop version
                        Standard version