Meraki

MerakiAdminGE · ‎May 5 2025

Hi all,

We have implemented the Zscaler Client Connector App on our laptops and used the Internet Security via the Zscaler App. Since then, all users have had a very poor internet connection at various times. The problem does not exist when the Internet Security in the App is turned off or the users are working from home.
That´s why I suspect the problem in our Meraki network or in the interaction Zscaler App connection via Cisco Meraki hardware.
The problems occur several times throughout the day. Its the same via LAN and Wi-fi.

Has anyone ever had problems with the Zscaler Client Connector?

Laptops, smartphones etc. without Zscaler Client Connector have no restriction and the performance is normal.

Current hardware:

Cisco MX250 (Current version: MX 18.211.5.2)
MS220-48LP (Current version: MS 17.1.4)
MR36 (Current version: MR 31.1.7)

alemabrahao · ‎May 5 2025

What is the current speed that customers are receiving?

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.

alemabrahao · ‎May 5 2025

If you are using Tunnel 1.0, consider upgrading to Tunnel 2.0, which may resolve some performance issues.
SSL inspection can significantly impact performance. Consider creating exceptions for trusted domains or applications to reduce the load.
Another thing you can try is upgrading the Client Connector version, I have had a similar issue in the past and upgrading the CC resolved the issue.

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.

MerakiAdminGE · ‎May 5 2025

Thank you for your reply.
By the tunnel do you mean the tunnel version in Zscaler? This is 2.0.
I have not configured anything for SSL inspection.
Can you please explain me where I can define exceptions?

And I will perform an update and test it.

alemabrahao · ‎May 5 2025

You can create a PAC file and then go to the Zscaler Admin Portal, go to Administration > Resources > PAC Files and upload your PAC file.

Assign the PAC file to the appropriate forwarding profile in the Zscaler Client Connector settings.

You can also define exceptions in Policy > SSL Inspection and then Add the domains that you want to exclude from SSL inspection. This can help improve performance for specific trusted domains.

https://help.zscaler.com/zia/writing-pac-file

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.

MerakiAdminGE · ‎May 5 2025

Ok, I understand. But the performance problem affects every type of connection. Every page, every download and internal pages.

Speed tests show a very slow connection. If I turned off the Zscaler, the speed test immediately shows a normal connection again.

The problem is occasionally apparent today in the morning. Now everything is normal.

I know that a lot of users had to update Windows today.

alemabrahao · ‎May 5 2025

So, try upgrading the Client Connector version.

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.

Meraki

Community

Laptop performance problems - Zscaler Client Connector App - no site-to-site VPN

Laptop performance problems - Zscaler Client Connector App - no site-to-site VPN