Simplify your branch with
Zscaler Cloud Firewall
Full next-gen firewall capabilities without the
cost and complexity of appliances
Watch Video
Cloud Firewall product benefits
Transform with Zscaler.
Enables secure local internet breakouts
Provides direct to internet connections for a fast user experience, without any appliances to deploy or manage
Brings the entire security stack close to the user
Ensures identical protection for users from wherever they connect
Reduces costs and complexity
Optimizes MPLS backhauling spend and eliminates costly and time-consuming patch management, coordination of outage windows, and policy management
Scales services elastically
Handles SSL inspection and cloud application traffic requiring long-lived connections for a fast user experience
Provides security and access controls for internet traffic on all ports
Delivers security and access controls as a service for internet traffic on all ports, not just 80 and 443, to prevent advanced threats
Logs every session and delivers real-time visibility and policy enforcement
Across all users, all locations, all applications, all ports and all protocols from a single console

“The next gen firewall capabilities are actually a core requirement. It was one of the primary considerations in selecting Zscaler. We hadn't found in any of the other cloud services that actually had a full protocol next gen capability."
Go from overall visibility to actionable information in real time
With Zscaler Cloud Firewall, apps are visible, regardless of port or protocol

Define and immediately enforce all policies for all locations from a single console
Easily create granular policies at the user, department, location, or application level

1. HTTP/HTTPS traffic only on guest Wi-Fi
2. Allow FTP for IT users only
3. Block all P2P apps except Skype for Business
4. Allow access to dynamic IPs based upon FQDN
Suggested Resources
The SC Awards’ Winner (2016)—Best Cloud Computing Security
