We want to ensure our Phriendly Phishing simulation phishing emails are received by your staff. Most email providers will automatically catch suspicious emails, therefore; they are caught in junk and the individual never gets the email. This includes email providers such as the Google Workspace / G Suite environment.
Note: You must be a Google Administrator and to ensure Email Delivery, all sections in this article must be configured.
To whitelist in Google Workspace you will need to configure all the following rules:
1. How to set up an Inbound Mail Gateways
a. Access your Google Admin console.
b. In the Admin console, go to Menu AppsGoogle WorkspaceGmailSpam, Phishing and Malware or navigate to https://admin.google.com/ac/apps/gmail/spam
c. Scroll down to the Inbound Gateway settings and click edit. The Inbound gateway screen will then be displayed.
d. Set up the Inbound Gateway with the following settings. Click on the enable button.
-
-
- Gateway IPs: Click Add. Enter the Phriendly Phishing sender IP addresses: 54.252.116.154, 54.153.200.195, 52.63.70.98, 52.64.99.134, 35.176.5.2 (UK Only). Note: Do not enter any private IP addresses. For gateways, Gmail does not support private IP addresses.
- Uncheck the box next to Reject all mail not from gateway IPs.
- Check the box for Require TLS for connections from the email gateways listed above.
- Check the box Message is considered spam if the following header regexp matches. (Put "AllowThisEmail" under the regexp)
- Check the box Disable Gmail spam evaluation on mail from this gateway; only use header value.
- Click Save at the bottom.
-
Phriendly Phishing Domains:
-
-
- phriendlyphishing.com
- launch.phriendlyphishing.com
- training.phriendlyphishing.com
- mail.phishingacademy.com
-
Learner Hub:
-
-
- AU: learnerhub.phriendlyphishing.com
- UK: learnerhub.uk.phriendlyphishing.com
-
-
-
a. Access your Google Admin console.
b. In the Admin console, go to Menu AppsGoogle WorkspaceGmailSpam, Phishing and Malware or navigate to https://admin.google.com/ac/apps/gmail/spam
c. Scroll to Spam and click Add another rule.
d. In the Add setting box, enter a unique name for the setting, eg "Phriendly Phishing Spam Rule".
e. Under Options to bypass filters and warning banners > 'Bypass spam filters and hide warnings for messages from senders or domains in selected lists, Select Create or Edit list. This should open a new tab to Manage address list.
f. Select add address list and enter a unique name for the setting.
g. Select Bulk Upload Addresses. Copy the below text and enter it in the field and click Add
launch.phriendlyphishing.com, mail.phishingacademy.com, phriendlyphishing.com, training.phriendlyphishing.com, learnerhub.phriendlyphishing.com, learnerhub.uk.phriendlyphishing.com
h. Now that the address list is saved, go back to the original tab and enabled 'Bypass spam filters and hide warnings for messages from senders or domains in selected lists.'
i. Select Use Existing List and select the list you just created.
j. Verify that the new setting is listed in the Spam settings table and is set to enabled.
a. Access your Google Admin console.
b. In the Admin console, go to Menu AppsGoogle WorkspaceGmailSpam, Phishing and Malware or navigate to https://admin.google.com/ac/apps/gmail/spam
c. Click Email allowlist and enter our Phriendly Phishing IP Addresses and Save
Things to Note:
- It can take up to 24 hours for any changes to take effect. Learn more here.
- You can track changes in the Admin console audit log.
- On cases where messages are still being marked as SPAM, please contact Support so we can provide you our Domains and URLs that can be whitelisted in your Google environment.
Once the IP whitelisting has been completed, please generate a whitelisting test to ensure all Phriendly Phishing emails.
Comments
0 comments
Please sign in to leave a comment.