If you're using Proofpoint's spam filtering, you can allowlist CanIPhish to ensure our simulated phishing emails and training notifications arrive in employee inboxes.
- Proofpoint Essentials Allowlisting
- Proofpoint Enterprise Allowlisting
- Are Simulated Phishing Emails Still Going To Spam Folders?
- Troubleshooting
You must complete the following steps in order to allowlist Simulated Phishing and Security Awareness Training in Proofpoint Essentials or Enterprise.
See our Allowlisting Quick Reference for the list of IPs needed.
Proofpoint Essentials Allowlisting
Step 1. Within the Proofpoint Essentials administrative console, navigate to Security Settings > Email > Sender Lists.
Step 2. Under the Safe Sender List, enter CanIPhish's Mail Server IP Addresses.
3.106.21.22
13.237.47.221
Step 3. Click Save and you're all done!
Proofpoint Enterprise Allowlisting
Step 1. Within the Proofpoint Enterprise administrative console, click Email Protection.
Step 2. Click the Spam Detection drop-down, then select Organizational Safe List.
Step 3. Click Add.
Step 4. Within the Global Safe List window, enter the following information:
- Filter Type: Select Sender Hostname from the drop-down menu.
- Operator: Select Equals from the drop-down menu.
- Value: Enter CanIPhish's Mail Server IP Addresses.
3.106.21.22
13.237.47.221
Step 5. Click Save Changes.
CanIPhish's simulated phishing emails will now be allowlisted, however we recommend implementing additional allowlisting outlined below to help prevent potential false positives from Proofpoint's URL Defense technology.
Step 6. While on the Email Protection menu, go to the Targeted Attack Protection drop-down and click URL Defense.
Step 7. Click URL Rewrite Policies.
Step 8. Within the Exceptions section, under the Exclude URLs that contain specified domains/IP addresses section, enter CanIPhish's Phishing Website Domains:
authwebmail.com
cmail31.com
securesupportcloud.com
webnotifications.net
alerting-services.com
onlineverify.net
verificationweb.net
portal-login.net
cloud-notification-services.com
authenticationsecure.com
Step 9. Click Save Changes.
You're all done!
Are Simulated Phishing Emails Still Going To Spam Folders?
If emails from CanIPhish are still going to spam folders, you may need to add CanIPhish to the Organizational Safe List in Proofpoint. To do this, please add CanIPhish's Sending Domains and Mail Server IP Addresses to Proofpoint's Organizational Safe List.
Step 1. Within the Proofpoint administrative console, navigate to Email Protection > Spam Detection > Organizational Safe List.
Step 2. Add either CanIPhish's Sending Domains or CanIPhish's Mail Server IP Addresses to the safe list and click Save.
IP Addresses:
3.106.21.22
13.237.47.221
Sending Domains:
alerting-services.com
authwebmail.com
cloud-notification-services.com
securesupportcloud.com
office-365-notifications.com
webnotifications.net
paypaypal.net
cmail31.com
authenticationsecure.com
verificationweb.net
onlineverify.net
portal-login.net
email-forwarder.net
caniphish.com
learn.caniphish.com
Troubleshooting
If you're using Proofpoint in front of M365, still have M365 email security protections enabled, and are experiencing issues with emails being blocked, you may need to use our Direct Email Injection M365 Integration OR set up Skiplisting within M365.
Comments
0 comments
Please sign in to leave a comment.