This guide will take you through every step of the allowlisting process.
We recommend you read each step if you are unfamiliar with the process, otherwise feel free to skip to the sections below:
- Step 1 - Understand why you need allowlisting
- Step 2 - Allowlist Phishing Tackle in your mail environment
- Step 3 - Configure additional spam filter rules (If necessary)
Step 1 - Understand why you need allowlisting
It is very useful to understand why allowlisting is necessary for your organisation.
The short articles below explain the reasons behind it, and contain useful information to be used during your allowlisting process.
If you are familiar with how allowlisting works, feel free to move onto the next section.
Step 2 - Allowlist Phishing Tackle in your mail environment
Below you will find all the guides necessary to allowlist our servers within your mail environment.
If you do not see your mail environment below, please contact support and we'll help you get set up.
If you use either Microsoft 365 or Google Workspace, the most efficient delivery method is using an active integration. See the two guides below:
If neither of these options is suitable for your organisation, please continue below.
As we mention in the previous guides: You should allowlist our IP addresses or hostname (using Advanced Delivery in Microsoft 365) in your mail server if you're not using a cloud-based spam filter. If you are using a cloud-based spam filter, you will need to allowlist by email header in your mail server and allowlist by IP address in your spam filter.
Microsoft Exchange / Microsoft 365 (formerly Office 365)
IMPORTANT NOTICE: Since Microsoft rolled out the "Secure by Default" standard in October 2021, the required method of allowlisting has changed. To correctly allowlist in Exchange and Office 365 environments, please see our article Allowlisting via Microsoft Advanced Delivery.
- Allowlisting via Microsoft Advanced Delivery - From October 2021
- Allowlisting by IP address in Exchange 2013, 2016, or Microsoft 365 (formerly Office 365)
- Allowlisting by Hostname in Exchange 2013, 2016, or Microsoft 365 (formerly Office 365)
- Allowlisting by Email Headers in Exchange 2013, 2016, or Microsoft 365 (formerly Office 365)
- Bypassing Microsoft 365 (formerly Office 365) Safe Link/Attachment Processing of Advanced Threat Protection (ATP)
- Disabling the Microsoft 365 (formerly Office 365) "Report as Phishing" Feature to Avoid False Clicks on when using Outlook on the web
- Allowlisting by Email Headers in Microsoft Exchange 2010
Google Gsuite
- Allowlisting by IP Address in GSuite/Google Apps
- Allowlisting by Email Headers in GSuite/Google Apps
Once you have completed the required steps above, you may need to configure additional external spam filtering rules.
Step 3 - Configure additional spam/URL filter rules (If necessary)
If you use additional spam filters (such as Mimecast, Sophos etc...) you will need to add rules to allow our mail to flow correctly.
Use the relevant guide below to configure your additional spam allowlisting.
If you cannot find your spam filter listed below, please contact support and we will be happy to help you.
Choose your spam filter
- Allowlisting in Mimecast
- Allowlisting in Proofpoint
- Allowlisting in Sophos Products
- Allowlisting in MessageLabs / Symantec.cloud
- Allowlisting in Barracuda
- Allowlisting in SpamTitan
- Allowlisting in Spambrella
- Allowlisting in VIPRE
- Allowlisting in Solarwinds Mail Assure
- Allowlisting in Paloalto PAN-OS (URL Allowlisting)
- Allowlisting in Forcepoint (Formally Websense)
Allowlisting can be complicated so if you require any further assistance, please contact our support team by clicking here.