Note that ALL the items listed below are required to be implemented, otherwise simulation emails will not be delivered as expected.
Why Whitelist IP Addresses and Email Headers?
Whitelisting ensures the Wizer phishing simulation (PS) functions without issue and prevents PS emails from being automatically moved to the spam folder or notifying users about potential phishing emails. IP addresses and email headers are both required to be whitelisted.
Whitelist IP Addresses
The Wizer mail server IP addresses provided in this list (opens in a new tab) are required to be whitelisted to prevent Gmail from classifying the PS emails as spam/phishing. This needs to be done because Wizer PS emails are "phishing" by definition.
Steps to Whitelist IP Addresses
1. Log in to https://admin.google.com
2. On the left side panel go to the Apps → Google Workspace → Gmail
3. Select "Spam, Phishing, and Malware"
4. In the Email Allowlist section, enter the IP addresses from this list, separated by commas.
5. Navigate to the Inbound Gateway. Turn on the "Enable" checkmark
- Add the IP Addresses one by one from this list (opens in a new tab).
- Check the Automatically detect external IP (recommended)
- Leave the Reject all mail, not from gateway IPs option unchecked
- Check to Require TLS for connections from the email gateways listed above
- Check Message is considered spam if the following header regexp matches
- Enter the following text for the Regexp: dfgkhbjshfvolib3289yhb
- Select the Disable Gmail spam evaluation on mail from this gateway; only
use the header value option
Refer to the screenshot below which depicts how the fields are populated with multiple IPs, the relevant list of IP addresses is always represented in the abovementioned list:
Whitelist Email Headers
Wizer PS emails contain a special header. Gmail must be configured to search for Wizer PS
headers and to ignore them if found, allowing the user to receive the PS email in their inbox.
Steps to Whitelist Email Headers
1. Go to General "Settings for Gmail"
2. Navigate to the "Compliance" section
3. Navigate to the "Content Compliance" section and click "CONFIGURE"
4. Create any suitable name for this content compliance (For example,* Wizer phishing content compliance)
5. Under the Email messages to affect field check "Inbound" and "Internal - receiving"
6. Click "ADD" under the Add expressions that describe the content you want to
search for in each message
- In the drop-down menu, select "Advanced content match"
- In the Location dropdown, select "Full headers"
- Leave "Contains text" in the Match type dropdown
- In the Content field, enter the text "X-TestPhish"
- Click SAVE
7. In If the above expressions match, do the following field, select Bypass spam
filter for this Message under Spam
8. Your final Content Compliance Setting screen should look like this:
* Please do not forget that applying changes can take some time. According to Google, it
takes up to 24 hours, but typically, it should not take more than 1 hour.
Please note that your simulation emails might arrive with a spam banner,
to avoid this please see this article
Congratulations! You have just configured whitelisting!
If error banners appear they can be removed by following the steps from the article Phishing Simulation Spam filter