G DATA Phishing Simulation
Whitelisting in Exchange Server 2019
At this point, we will briefly explain which domains and IP addresses you should whitelist. The reason for this is that otherwise e-mails sent as part of the phishing campaign could end up in the spam filter.
Whitelisting via the Exchange Control Panel per message flow rule
1. |
Open a browser, connect to your Exchange server and log into the Exchange Control Panel. |
||
2. |
Click on Message flow and stay in the Rules window. Show screenshot
|
||
3. |
Click on + and select * Bypass spam filtering…*. Show screenshot
|
||
4. |
Give the rule a name. For example GDATA PhishingSIM WhitelistIP. Show screenshot
|
||
5. |
For Apply this rule if… select The sender in combination with IP is in any of these ranges or exactly matches. .Show screenshot Details
|
||
6. |
Enter all IP addresses listed in the Awareness Manager (after entering an IP address, click on the + button to add the entry) and save by clicking OK. Show screenshot
|
||
7. |
Add another condition by clicking on the Add condition button. Show screenshot
|
||
8. |
For Apply this rule if… select The sender… in combination with domain is. Show screenshot
|
||
9. |
Enter all domains listed in the Awareness Manager (after entering a domain, click on the + button to add the entry) and save by clicking OK. Show screenshot
|
||
10. |
For Do the following… select Modify the message properties in combination with set the spam confidence level (SCL). Show screenshot
|
||
11. |
Check whether the Spam Confidence Level is set to Bypass spam filtering (see screenshot). Otherwise, click on the number displayed and change the value to Bypass spam filtering. Screenshots anzeigen
|
||
12. |
Save the rule. Show screenshot
|
After creating this rule for the message flow, all e-mails sent from our Phishing Camapign should arrive.