Forum Discussion
PaulCollinge
Microsoft
MicrosoftOptimizing RDP Connectivity for Windows 365
Updated with RDP & Zscaler connectivity improvements August 2025
The use of VPN or Secure Web Gateway (SWG) client software or agents to provide tunneled access to on-premises resources in addition...
Just to clarify, as this seems fairly confusing. If you are using Zscaler ZIA, and you're using Ztunnel1 mode, i.e. HTTP/S proxy, you can add Pac file entries to bypass Zscaler for the wildcard URLs mentioned.
If however you're using Ztunnel2 ( aka All ports ) you cannot use the Pac file solution, the IP addresses (385 currently) need to be maintained in the App Profile the user is assigned.
- PaulCollingeCorrect, using tunnel1 you can use a PAC file to make the adjustment. Given Zscaler's recommendation is for tunnel2 then this is what we focus on above. The IP subnets should come down to just two within the coming months making this easier to configure.
