There's no point creating a simulated phishing campaign and having some or all of the emails caught in an email filter!
Before you begin phishing (or training) your users, you’ll need to whitelist our sending IPs. This step is necessary so we can ensure the simulated phishing emails reach your users consistently and aren’t blocked by spam measures.
Whitelisting varies depending on your environment. As a best practice, we recommend whitelisting our IP addresses or hostnames in your mail server if you're not using a cloud-based spam filter. If you are using a cloud-based spam filter, you will need to whitelist by email header in your mail server and whitelist by IP address or hostname in your spam filter.
EveryCloud Email Security Customers: If you're an existing EveryCloud Email Security user, you can find whitelisting instructions here.
Other Vendors: You can find whitelisting guides for popular email filtering vendors here.
Whitelist By IP Address
Update your spam filter and / or mail server settings to whitelist the following IPs.
IP Addresses | Messages Sent |
45.55.94.58 134.209.115.132 159.65.161.216 206.189.237.97 | EveryCloud Simulated Phishing Emails |
Whitelist by Hostname
Update your spam filter and / or mail server settings to whitelist the following Hostnames. Each campaign lists the domain names used to deliver your campaign content. Just whitelist the ones you wish to use.
| Hostname | Messages Sent |
active-message.net securemailserver.tech everycloud.com | EveryCloud Simulated Phishing Emails |
Whitelist By Email Header
| Email Header | Messages Sent |
| X-PHISHTEST | EveryCloud Simulated Phishing Emails |
Link Rewriters and Intent Analysis
Some email filtering and anti-spam services (including EveryCloud, Symantec, Websense, MessageLabs, Barracuda) will sometimes have link-following or link inspection options. These services may follow links found in incoming messages, resulting in skewed click-through rates. You can either whitelist/exempt our emails from being subject to these types of features/services or whitelist our landing page domain:
| Domain | Reason |
encrypted-network.com (and all subdomains) | EveryCloud Simulated Phishing landing pages |
If it’s not possible to include all subdomains, please add: a01.encrypted-network.com | EveryCloud Simulated Phishing landing pages |
Testing
You can test your whitelisting is working by sending a test email from the 'New Campaign' screen. Keep in mind that with some cloud spam services, the change can take time to come into effect.
If you have any issues whitelisting our sending IPs please contact our support team on support@everycloud.com who will be very happy to help.