Skip to content
English
More support Sign in
Contact us
  • There are no suggestions because the search field is empty.

How to Whitelist an IP Address in Google Workspace

ℹ️ To complete this procedure, you must have security administrator privileges with Google Workspace.

Google Workspace IP Bypass

This will be a walk-through on whitelisting emails by IP based in the Google Workspace platform. The below instructions will show you how to whitelist the emails such as notification, training or phishing simulation emails that will be sent from the platform to users by IP address in the Google Workspace environment.

  1. Note the IP addresses to be allowed.

  2.  Sign in to Google Admin.
  3.  Select Apps > Google Workspace > Gmail from the left sidebar menu.
  4.  Go to the Spam, Phishing, and Malware page.
  5.  Select the Email allowlist tab and click the Edit button.
  6.  Add the IP addresses that are listed here.
  7.  Click the Save button.
  8.  Go back to the Spam, Phishing, and Malware page.
  9.  Select the Inbound Gateway option and click Enable, if not enabled.
  10.  Add the IP addresses and click Save.
  11.  Select Automatically detect external IP if not already selected.
  12.  WARNING: Leave the option of Reject all mail not from gateway IPs unchecked.
    1.  This option must be 'unchecked'. Do not enable this option!
  13.  Select the option of Require TLS for connections from the email gateways listed above.
  14.  Click Save to complete the process.

Google Workspace Spam Filter Bypass

This will be a walk-through on whitelisting emails by header in the Google Workspace platform. The below instructions will show you how to whitelist the emails such as notification, training or phishing simulation emails that will be sent from the platform to users by email header in the Google Workspace environment.
  • Log in to the google admin center here.
  • Click Apps > Google Workspace > Gmail.
  • Scroll down and click Compliance.
    • Go to the Content Compliance section and click CONFIGURE or ADD ANOTHER RULE button.
    • Add Setting pop-up will appear.
      • Enter a description of the whitelisting rule.
      • Under the Email messages to affect menu, select the Inbound, Internal-Sending, and Internal-Receiving options.
      • Scroll down to Add expressions that describe the content you want to search for in each message. Under this, select If ANY of the following matches the message. Then under Expressions, click ADD.
      • On the top of the window, change the Simple Match to Advance Content Match option and use the following settings:
        • Location: Full Headers
        • Match Type: Contains Text
        • Content: X-KEEPNET-TID
      • Under, If the above expressions, do the following scroll down to Spam and select: Bypass spam filter for this message.
      Once you have completed these steps, click Save to save your whitelisting rule. This completes whitelisting by header in the Google Workspace. Now you, and other target users that apply this rule will be able to receive the platform's emails without restriction on the Google Workspace.

ℹ️ Google will insert the gray "This message was not sent to Spam based on your organization's settings" banner at the top of simulated phishing emails. To mitigate this, please follow the steps below.

Manage Address List

Use the following steps to add the Phishing Simulator Tool domains to the address list.

  1. Sign in to Google Admin.
  2. Select Apps > Google Workspace > Gmail > Spam, phishing, and malware.
  3. Scroll down to Spam.
  4. Select Add Another Rule or Edit.
  5. Select Create or Edit list.
  6. Select Edit under Actions > Add Address/Bulk Add Addresses
  7. Enter the domains from the Phishing Simulator Tool - to find this list in the Phish Tool, navigate to Phishing Simulator > Settings.
  8. Ensure that Authentication required is toggled off for all domains, then Save.

Simplify Landing Page Link

Google has identified some of the default landing page links as spam due to their length, hence why the grey banner appears for phishing simulations. A workaround solution for this is to shorten and simplify the landing page link of the scenario which is being used. To do this, please follow the steps below.

1. Navigate to Phishing Simulator > Phishing Scenarios > Landing Page Templates

2. Find the landing page of your choice, select the three dots icon under Actions, then Duplicate.

3. On Page 2, Page Settingsadjust the landing page link. It is recommend to remove numbers from the URL section. Do not worry if you see numbers at the end of the link.