Follow-up Comment #3, sr #111407 (group administration): I cannot reasonably allow good traffic through Zscaler while disallowing bad traffic by technical means in an effective way that I am aware of. They hop from IP to IP within their CIDR and pose as regular desktop browsers. Each individual request would appear to be good, but looked at collectively there is a bad DDoS pattern.
If Zscaler was preventing abuse from coming out of their network, this would
not be an issue.
I am not a fan of the extra work either.
_______________________________________________________
Reply to this item at:
<https://savannah.nongnu.org/support/?111407>
_______________________________________________
Message sent via Savannah
https://savannah.nongnu.org/
signature.asc
Description: PGP signature
