Phishing : Exchange 2013, 2016, or Microsoft 365:

  1. Log into your mail server admin portal and click Admin.
  2. Click Exchange under Admin Centers in the left-hand menu.
  3. Click connection filter beneath protection.
  4. Click the Pencil icon to edit the default connection filter policy.
  5. Click connection filtering. Then, under the IP Allow list, click the sign to add an IP address.
  6. On the Add allowed IP address screen, add our IP addresses
  7. Click OK, then Save. Next, you will want to set up a mail flow rule to allow our mail to bypass spam filtering and the Clutter folder.
  8. From the Exchange admin center, select Mail Flow from the left-hand menu.
  9. Click the (+) button beneath Rules and then select Bypass Spam Filtering.
  10. Give the rule a name, such as « Bypass Clutter & Spam Filtering by IP Address ».
  11. Click the Apply this rule if… drop-down menu and select The Sender then IP address is in any of these ranges or exactly matches.
  12. Enter all of our IP addresses, then click OK. 
  13. Click the Do the following drop-down and select Modify the message properties then set a message header.
  14. Click the *Enter text… button after « Set the message header » to set the message header.  Enter the following: « X-MS-Exchange-Organization-BypassClutter« . This field is case sensitive. Once entered, click OK.
  15. Click the *Enter text… button after « to the value » and enter « true« . This field is case sensitive. Once entered, click OK and then add action.
  16. From the drop-down menu for Do the following… select Modify the message properties. Then, click Set the spam confidence level (SCL) to… and select Bypass Spam Filtering.

If you are using Exchange, you’re whitelisting is complete. To test out your whitelisting and make sure phishing security tests will reach your end users, you can set up a phishing campaign for a small test group that includes yourself. Once the simulated phishing email reaches your inbox, you’ll know you’ve successfully whitelisted our servers in your system.

Bypassing the Junk Folder (M365 ONLY)

  1. From the Exchange admin center, select mail flow from the left-hand menu.
  2. Click the (+) button beneath Rules.
  3. Select Bypass spam filtering….
  4. Give the rule a name, such as « cyber-safe-Skip Junk Filtering ».
  5. Click the Apply this rule if… drop-down menu and select The Sender, then select IP address is in any of these ranges or exactly matches.
  6. Enter all of our IP addresses, then click OK.
  7. Click the Do the following drop-down menu and click Modify the message properties then Set a Message Header.
  8. Click on the *Enter text… button after « Set the message header » to set the message header. Enter the following text: « X-Forefront-Antispam-Report« . This value is case sensitive. Then, click OK.
  9. Click the *Enter text… button after « to the value » and enter « SFV:SKI;CAT:NONE;« . To learn more about this header, click here. Please be aware that this field is case sensitive. Once the text is entered, click OK.
  10. Beneath Properties of this rule, set the priority to directly follow the rule you created.
  11. Click Save. An example of the completed rule is shown below.