Zscaler Network Error When Connected Via Cato SDP Client

Issue

The Zscaler Client Connector encounters a connection failure when used in conjunction with the Cato SDP Client, displaying an error message stating "No network interface can be detected."

Environment

  • Cato SDP Client connected to the Cato Cloud.
  • Zscaler Client Connector App version 4.1.

Reason

The connection failure is attributed to a compatibility issue between the Cato SDP client and Zscaler Client Connector App version 4.1.

When the Cato SDP client is connected, it assigns a 169.254.x.x IP address (defaulting to 169.254.254.1) as the default gateway address to route traffic via the tunnel. However, when the Zscaler Client Connector 4.1 and above detects the use of a link-local IP address as the next hop, it blocks the Zscaler connection.

From zScaler Client logs, the error looks like this:

2023-08-14 16:54:44.117118(+0530)[11896:11880] ERR Default Interface Gateway is: 169.254.254.1

This issue will persist even if the Zscaler Cloud public IP is bypassed from the Cato tunnel (split tunnel).

Solution

The issue has been resolved in Zscaler version 4.2 or later.

Was this article helpful?

3 out of 3 found this helpful

3 comments

  • Comment author
    Scott Hong

    Zscaler version above 4.2 has resolved this issue as well.

  • Comment author
    Jon Derrenbacker

    Thanks Scott. 

  • Comment author
    Macnica Support

    We have experienced cases when using v4.2 of Zscaler does not solve this problem. The reason has not yet been identified.

Add your comment