Whitelisting PhishGuard by IP Address in Google Workspace/Google Apps

Modified on Thu, 11 May, 2023 at 11:39 AM





Whitelisting PhishGuard by IP Address in Google Workspace/Google Apps


 This setting is recommended if you do not have a cloud-based spam filter in front of Google Workspace. If you do have a cloud-based spam filter, you should whitelist us by our IP addresses in the filter, and whitelist by header in Google Workspace.

This process of whitelisting accomplished in two steps:

  • Add the IP addresses to Email Whitelist
  • Add the IP addresses as Inbound Gateways

 


1. Add the IP addresses to Email Whitelist

Below are instructions on how to set up your IP allow list for Google Workspace/Google Apps. 

  1. Log in to https://admin.google.com and select Apps.
  2. Select Google Workspace.
  3. Select Gmail.
  4. Select Spam, Phishing and Malware.
  5. Under the Organizational Unit section, highlight your domain. Do not select an organizational unit (OU). *Note: Google Workspace does not allow whitelisting by IP Address for individual OUs, only the entire domain.
  6. In the Email whitelist section, enter our IP addresses separated by commas.
  7. Click Save

 


2. Add PhishGuard IP addresses as Inbound Gateways

This method of whitelisting is to prevent the following Google banners from appearing in your user's inbox when they receive a simulated phishing test from PhishGuard:

This message seems dangerous

Be careful with this message


It was proven that this process exempts simulated phishing emails from the Gmail banner warnings.

  1. Log in to your Google Admin Console.
  2. Navigate to Apps > Google Workspace > Gmail > Spam, Phishing and Malware.
  3. Under Organizational Unit, select your top-level organization (typically your primary domain) on the left.
  4. Scroll down to the Inbound Gateway setting. Click the setting and check the Enable checkbox. This will open the Inbound gateway screen.
  5. Configure the Inbound gateway using the settings below:
    1. Gateway IPs
      Add 
      PhishGuard IP addresses.
    2. Leave the Reject all mail not from gateway IPs option unchecked.
    3. Check Require TLS for connections from the email gateways listed above.
    4. Message Tagging
      Enter text for the Spam Header Tag that is unlikely to be found in a PST email. This field is required.
      • Example: kzndsfgklinjvsdnfioasmnfroipdsmfs
    5. Select the Disable Gmail spam evaluation on mail from this gateway; only use header value option.
    6. Click the SAVE button.


Was this article helpful?

That’s Great!

Thank you for your feedback

Sorry! We couldn't be helpful

Thank you for your feedback

Let us know how can we improve this article!

Select at least one of the reasons
CAPTCHA verification is required.

Feedback sent

We appreciate your effort and will try to fix the article