Allowlisting - Proofpoint

If you're using Proofpoint's spam filtering, you can allowlist CanIPhish to allow our simulated phishing test emails and training notifications through to your end users. 

The instructions below are for third-party software. If you run into issues allowlisting CanIPhish in Proofpoint, we recommend reaching out to Proofpoint for specific instructions. You can also contact us whenever you need assistance.

Jump to:

Allowlisting in Proofpoint
How to Prevent Proofpoint from Bouncing Emails
What to Do If Your Emails are Going to Spam

Allowlisting in Proofpoint

When you're ready to allowlist in Proofpoint, follow the below instructions. These instructions were gathered from Proofpoint's Safelisting Addresses article.

1. 1. Navigate to Security Settings > Email > Sender Lists.
   2. Under the Safe Sender list, enter our IP addresses. Please see our Allowlisting - Quick Reference article for a full list of our IP addresses.
   3. Click Save.

If you have issues with attachment-related emails, see Proofpoint's article on Blocks by Default.

How to Prevent Proofpoint from Bouncing Emails 

If some of your phishing security test (PST) emails are bouncing with an error message of 
"Sender address rejected: Domain not found (in reply to RCPT TO command)",
follow the instructions below to resolve this issue.

1. From your CanIPhish console, click your email address in the top right corner and select Account Settings.
2. Navigate to the Phishing Settings section.
3. Check that the Overwrite Fixed Return-path Address with Sender Address option is not enabled (see below).
   
4. Be sure to save this change by clicking the Save Changes button at the bottom of the page.
5. To confirm this change will prevent Proofpoint from causing your PST emails to bounce, we recommend you test this change. You can do this by sending a test campaign to yourself or a limited number of users before sending it to a larger group. 

What to Do If Your Emails are Going to Spam

If your emails are being sent to spam or are being quarantined, you'll need to add CanIPhish to the Organisational Safe List in Proofpoint.

Follow the instructions below to add CanIPhish's IP addresses to the Organisational Safe List:

1. From your Proofpoint admin center, navigate to Email Protection > Spam Detection > Organizational Safe List.
2. Add either our IP addresses. For the most up-to-date list of our IP addresses, please see this article. 

Should you have any difficulties with allowlisting, please don't hesitate to contact us.

Note: If you're using Proofpoint in front of M365, and still have M365 email security protections enabled, please contact the CanIPhish team for support. In this case, you may need to allowlist Proofpoint IPs instead of CanIPhish. To ensure this is done correctly, the CanIPhish support team will lend a helping hand.