Below is a list of articles that can assist you in whitelisting your mail filters. You'll need our IP addresses, hostnames, or header data when you whitelist by following the guidelines in these pages.
Reminder
These instructions are for third-party software, we advise contacting your Provider for detailed instructions if you experience any issues whitelisting Phriendly Phishing emails. Additionally, you can also get in touch with our Phriendly Phishing Support team.
This article takes you through the steps on how to whitelist Phriendly Phishing IP Addresses and Domains when using Mail Marshall. Adding our IP addresses and domains to a global approved senders list ensures that our phishing simulation and training emails are sent through. These instructions were adapted from Mail Marshall's article which may be updated after the creation of this article.
- In the SEG Console, navigate to Policy Elements > Groups.
- Create a new External user group, and add email addresses listed in Step 1 of the Phriendly Phishing Generate a whitelist test article.
- Optionally create a new IP group, and add IP addresses in Step 1 of thePhriendly Phishing Generate a whitelist test article.
- Go to Customer Packages / Standard Protection.
- Click User Matching next to the "Anti-Spam (Inbound)" Policy.
- Click "Apply to users matching...", and then check "Except where addressed from groups".
- Click groups.
- On the group window, click the arrow next to each of the groups you created above, and move them to the "selected" list.
- Click OK.
Note
- This whitelist will only bypass spam checking. If you wish to bypass specific rules you have previously added, add User Matching to those rules directly.
- Changes to rules are applied within approximately 20 minutes.
- Changes to group membership are applied within approximately 5 minutes.
This article takes you through the steps on how to whitelist Phriendly Phishing IP Addresses and Domains when using Proofpoint. Adding our IP addresses and domains to a global approved senders list ensures that our phishing simulation and training emails are sent through. These instructions were adapted from Proofpoint's article which may be updated after the creation of this article.
This article takes you through:
- Whitelisting in Proofpoint Essentials
- Whitelisting in Proofpoint Enterprise
- Avoiding issues with Proofpoint’s Targeted Attack Protection
- Avoiding Phriendly Phishing Emails from going to SPAM
Whitelisting in Proofpoint Essentials
- Navigate to Security Settings > Email > Sender Lists.
- Under the Safe Sender list, enter our IP addresses and domains. See the Phriendly Phishing Generate a whitelist test article for a full list of our IP addresses and domains.
- Click Save.
Whitelisting in Proofpoint Enterprise
- Navigate to your Proofpoint Enterprise Admin console.
- Click Email Protection.
- Under the Spam Detection drop-down, select Organizational Safe List.
- Click Add.
- In the Proofpoint - Global Safe List window, enter the following information:
- Filter Type: From the drop-down menu, select Sender Hostname.
- Operator: From the drop-down menu, select Equals.
- Value: In the field, enter the IP addresses and domains listed in Step 1 of the Phriendly Phishing Generate a whitelist test article.
- Click Save Changes.
Avoid Proofpoint’s Targeted Attack Protection
To avoid potential issues with Proofpoint’s Targeted Attack Protection, we suggest that you add Phriendly Phishing's IP addresses and domains to Proofpoint’s URL Defense. To add Phriendly Phishing's IP addresses and domains to Proofpoint's URL Defense, follow the steps below:
- Navigate to your Proofpoint Essentials Admin console.
- Click Email Protection.
- Under the Targeted Attack Protection drop-down, select URL Defense.
- Click URL Rewrite Policies.
- Under the Exceptions section, enter the IP addresses and domains listed in Step 1 of the Phriendly Phishing Generate a whitelist test article.
- Click Save Changes.
Avoid Phriendly Phishing Emails Going to Spam
If your emails are being sent to spam or are being quarantined, you'll need to add Phriendly Phishing to the Organizational Safe List in Proofpoint.
Follow the instructions below to add Phriendly Phishing's hostnames or IP addresses to the Organizational Safe List:
- From your Proofpoint admin centre, navigate to Email Protection > Spam Detection > Organizational Safe List.
- Add either our hostnames or IP addresses. For the most up-to-date list of our IP addresses and hostnames, please see Step 1 of the Phriendly Phishing Generate a whitelist test article.
This article takes you through the steps on how to Whitelist Phriendly Phishing IP Addresses and Domains when using Mimecast. Adding our IP addresses and Domains to a global Approved Senders list ensures that our phishing simulation and training emails are sent through.
Please follow the instructions below to add global approved sender:
To successfully whitelist our phishing and training-related emails when using Mimecast, you should Create a new Permitted Sender policy to allow our phishing and training-related emails through to your users' inbox.
Note
It is important to not edit your default Permitted Sender policy. A new one must be created.
Permitted Senders Policy
- Log on to your Mimecast Administration Console.
- Click the Administration toolbar button.
- Select the Gateway | Policies menu item.
- Select Permitted Senders from the list of displayed policies.
- Select the New Policy button (please do not edit your default Permitted Sender policy; a new one must be created)
- Add Policy Narrative 'Phriendly Phishing Permitted Senders Policy' and select the relevant policy settings under the Options, Emails From, Emails To, and Validity sections. For more information on these settings see Mimecast's Configuring a Permitted Senders Policy article (opens in a new tab).
- In the Source IP Ranges field, enter our IP ranges, see Generate a whitelist test – Phriendly Phishing (opens in a new tab).
- Save the Policy
Attachment Protection Bypass Policy
- Log on to your Mimecast Administration Console
- Click the Administration toolbar button.
- Select the Gateway | Policies menu item.
- Select Attachment Protection Bypass from the list of displayed policies.
- Select the New Policy button.
-
Add Policy Narrative 'Phriendly Phishing Simulation Attachment Protection Bypass Policy' and select the relevant policy settings under the Options, Emails From, Emails To, and Validity sections. For more information on these settings, see Mimecast's Configuring Attachment Protection Bypass Policies article (opens in a new tab).
In the Source IP Ranges field, enter our IP ranges, please see Generate a whitelist test – Phriendly Phishing (opens in a new tab). - Please save the policy.
URL Protection Bypass Policy
Mimecast's URL Protection service scans and checks links in emails upon delivery. This can lead to false-positive results for your phishing security tests. Follow the steps below to create a URL Protection Bypass policy for accurate phishing simulation reports.
- Log on to your Mimecast Administration Console
- Click the Administration toolbar button.
- Select the Gateway | Policies menu item.
- Select URL Protection Bypass from the list of displayed policies.
- Select the New Policy button.
- Add Policy Narrative 'Phriendly Phishing Simulation URL Protection Bypass Policy' and select the relevant policy settings under the Options, Emails From, Emails To, and Validity sections. For more information on these settings, see Mimecast's Configuring Attachment Protection Bypass Policies article (opens in a new tab).
- In the Source IP Ranges field, enter our IP ranges, see Generate a whitelist test – Phriendly Phishing (opens in a new tab).
- Please save the policy.
This article takes you through the steps on how to Whitelist Phriendly Phishing IP Addresses and Domains when using TrendMicro. Adding our IP addresses and Domains to a global Approved Senders list ensures that our phishing simulation and training emails are sent through.
Please follow the instructions below to add global approved sender:
- Navigate to the Advanced Threat Protection tab > Add.
-
Select the policy to create based on the service:
- Exchange
- OneDrive
- SharePoint
- Box
- Dropbox
- On the left, select Advanced Spam Protection
- Check the Enable Advanced Spam Protection option.
- Select the Approved/Blocked Sender List section.
- Check the box next to the Enable the approved sender list option.
- Enter *@phriendlyphishing.com , as well as our other IP addresses and domains found in Generate a whitelist test – Phriendly Phishing in the text field and click the Add > button.
- Select the Rules configuration section.
- Under the Apply to: drop-down, select the Incoming messages option.
- For Detection Level:, select the Medium option.
This article takes you through the steps on how to Whitelist Phriendly Phishing IP Addresses and Domains when using Symantec.cloud. Adding our IP addresses and Domains to a global Approved Senders list ensures that our phishing simulation and training emails are sent through.
Please follow below instructions to add global approved sender:
- Select Anti-Spam under Services>Email Services.
- Make sure that the domains drop-down list has Global Settings selected.
- Select Approved Senders tab.
- Select "Add Entry" from the menu.
- The fields Description and Domain/Email/IP can now be changed.
- Enter all our IP addresses and Domains in the Domain/Email/IP column.
This article takes you through the steps on how to Whitelist Phriendly Phishing IP Addresses and Domains when using Fortinet FortiGate. Adding our IP addresses and Domains to a global Approved Senders list ensures that our phishing simulation and training emails are sent through. These instructions were adapted from FortiGate's Static URL Filter article which may be updated after the creation of this article.
Whitelisting by Static URL Filter
You may add our landing and phishing domains to your Fortigate firewall's Static URL Filter list to permit access to them. Web pages that match the specified URLs are permitted by the FortiGate web filter.
- Navigate to your Fortinet account by logging in.
- Click Security Profiles > Web Filter.
- Select an existing web filter to modify or create a new one.
- When URL Filter is enabled, expand Static URL Filter and choose Create.
- Go ahead and enter the URLs without the "https". For instance, www.example.com.
- Fill in every training and phishing domain listed in Phriendly Phishing's IP Addresses, Domains – Phriendly Phishing Copyright © 2024
Note: Please reach out to Phriendly Phishing Support team to get all phishing domains/ URLs. - Select Type: Simple.
- Select the Action to take against matching URLs: Allow.
- Ensure status is Enabled.
Congratulations! You have now successfully Whitelisted our IPs and Domains from your environment. Feel free to do a whitelist test.
Comments
Please sign in to leave a comment.