Safelisting in Proofpoint

If you're using Proofpoint's spam filtering software, you can safelist PhishingBox to allow your users to receive our simulated phishing emails and system emails.

When you're ready to safelist in Proofpoint, follow the instructions below.

• Proofpoint Essentials
• Proofpoint Enterprise
• URL Defense
• Alternative Safelisting Methods
• Prevent Emails from Going to Spam

Proofpoint Essentials

The below instructions apply to safelisting in Proofpoint Essentials.

1. Go to Security Settings > Email > Sender Lists.
2. Inside the Safe Sender list, enter the PhishingBox mail IP addresses, found in our Safelisting Basics article
3. Click the "Save" button

NOTE: if you are using attachments in your simulated phishing emails, you will want to follow the instructions in this Proofpoint article on how to bypass the attachments being blocked. 

Proofpoint Enterprise

1. From your Proofpoint Enterprise portal, click on Email Protection.
2. Select the Organizational Safe List option, located under Spam Protection.
3. Click the Add button.
4. A popup will appear, labeled Proofpoint - Global Safe. Use the following information in this popup:
   • Filter Type: select Sender Hostname.
   • Operator: select Equals.
   • Value: enter the Portal IP addresses listed in this article.
   • Click Save Changes.

We recommend that you add PhishingBox’s IP addresses to Proofpoint’s URL Defense exclusion list. Follow the steps in the URL Defense section to achieve this. 

URL Defense

If Proofpoint is re-writing links in phishing simulation emails, follow the steps below to create a bypass for our IP addresses and domains:

1. From your Proofpoint Essentials portal, navigate to Security Settings > Malicious Content > URL Defense 
2. Under Exclude URLs that contain specified domains/IP address, input our mail server IP addresses (they can be found in our Safelisting Basics article) and the domains used in your templates
3. Click "Save"

Alternative Safelisting Methods

Safelisting By IP Address

1. From your Proofpoint admin center, navigate to Email Firewall > Rules
2. Be sure to select the On radio button for Enable, under Rule Settings
3. Name your rule ID something descriptive, such as "PhishingBox Safelisting by IP Address," and provide a summary of the rule such as "PhishingBox Phishing Simulation" 
4. In the Conditions section you will safelist PhishingBox by IP address using the "Add Condition" button. You can find our IP addresses for phishing and training emails Safelisting Basics article
5. Under Dispositions, change the Delivery Method from the default selection to Deliver Now
6. Be sure to save your rule and allow time for this new setting to propagate before testing

Safelisting by Email Address

You can safelist an email address in Proofpoint by following the instructions in this article: https://help.proofpoint.com/Proofpoint_Essentials/Email_Security/Administrator_Topics/090_filtersandsenderlists/Whitelisting_Addresses

Safelisting By Sender List 

If the above safelisting method does not work then you can also allow or block emails from specific email addresses, domains, or IPs. You can configure your safe sender list by following the instructions in this article: https://help.proofpoint.com/Proofpoint_Essentials/Email_Security/Administrator_Topics/090_filtersandsenderlists/Setting_up_sender_lists 

Prevent Emails from Going to Spam

Proofpoint may end emails to spam or quarantine. If so, you will need to add PhishingBox to the Organization Safe List in Proofpoint.

1. From the Proofpoint admin center, navigate to Email Protection > Spam Detection > Organization Safe List.
2. Add PhishingBox phish domain names or IP addresses. For a list of PhishingBox IP addresses, see article: Safelisting Basics. Phish domain names are set on a template-by-template basis. For a comprehensive list, contact PhishingBox support.