Safelisting in Proofpoint

If you're using Proofpoint's spam filtering software, you can safelist (whitelist) PhishingBox to allow your users to receive our simulated phishing emails and system emails.

When you're ready to safelist in Proofpoint, follow the instructions below.

• Safelisting in ProofPoint Essentials
• Safelisting in ProofPoint Enterprise
• Safelisting By IP Address
• Safelist by Email Address
• Safelist By Sender List 
• Prevent Emails from Going to Spam

Safelisting in ProofPoint Essentials

The below instructions apply to safelisting in ProofPoint Essentials.

1. Go to Security Settings > Email > Sender Lists.
2. Inside the Safe Sender list, enter the Portal IP addresses, found in this article.
3. Click the Save button.

Note: if you are using attachments in your simulated phishing emails, you will want to follow the instructions in this ProofPoint article on how to bypass the attachments being blocked. 

Safelisting in ProofPoint Enterprise

1. From your ProofPoint Enterprise Admin console, click on Email Protection.
2. Select the Organizational Safe List option, located under Spam Protection.
3. Click the Add button.
4. A popup will appear, labeled Proofpoint - Global Safe. Use the following information in this popup:
   • Filter Type: select Sender Hostname.
   • Operator: select Equals.
   • Value: enter the Portal IP addresses listed in this article.
   • Click Save Changes.

We recommend that you add Portal’s IP addresses to Proofpoint’s URL Defense (this will help prevent any issues with ProofPoint's Targeted Attack Protection). Here are instructions on adding Portal's IP addresses to ProofPoint's Targeted Attack Protection:

1. From your Proofpoint Essentials Admin console, click Email Protection.
2. Select URL Defense from under the Targeted Attack Protection drop-down.
3. Click URL Rewrite Policies.
4. Under the Exceptions section, enter the Portal's IP addresses.
5. Click Save Changes.

Safelisting By IP Address

1. From your Proofpoint admin center, navigate to Email Firewall, then Rules.
2. Be sure to select the On radio button for Enable, under Rule Settings.
3. Name your rule ID something descriptive, such as "PhishingBox Safelisting by IP Address," and provide a summary of the rule such as "PhishingBox Phishing Simulation" 
4. In the "Conditions" section you will safelist PhishingBox by IP address using the "Add Condition" button. You can find our IP addresses for phishing and training emails in this article.
5. Under "Dispositions", change the Delivery Method from the default selection to Deliver Now.
6. Be sure to save your rule and allow time for this new setting to propagate before testing. 

Safelisting by Email Address

You can safelist an email address in Proofpoint by following the instructions in this article: https://help.proofpoint.com/Proofpoint_Essentials/Email_Security/Administrator_Topics/090_filtersandsenderlists/Whitelisting_Addresses

Safelisting By Sender List 

If the above safelisting method does not work then you can also allow or block emails from specific email addresses, domains, or IPs. You can configure your safe sender list by following the instructions in this article: https://help.proofpoint.com/Proofpoint_Essentials/Email_Security/Administrator_Topics/090_filtersandsenderlists/Setting_up_sender_lists 

Prevent Emails from Going to Spam

Proofpoint may end emails to spam or quarantine. If so, you will need to add PhishingBox to the Organization Safe List in Proofpoint.

1. From the Proofpoint admin center, navigate to Email Protection > Spam Detection > Organization Safe List.
2. Add PhishingBox phish domain names or IP addresses. For a list of PhishingBox IP addresses, see article: Safelisting (Whitelisting) Basics. Phish domain names are set on a template-by-template basis. For a comprehensive list, contact PhishingBox support.