This article describes whitelisting processes to ensure the successful landing of Right-Hand notification and phishing simulation emails in users' mailboxes.
Table of contents
Prerequisites
Before proceeding, please note that this article assumes you use Barracuda's Email Security Gateway. For the most current list of IP addresses associated with Right-Hand Cybersecurity, we recommend referring to the "Whitelisting best practices" section within our comprehensive "Step 1: Whitelisting Right-Hand Domains & IP" article.
Important: If you encounter difficulties whitelisting Right-Hand Cybersecurity, we suggest contacting Barracuda for specific instructions. Alternatively, our support team is always available to assist you.
Now, let's proceed with a detailed explanation of each of these sections:
Whitelisting by IP in Barracuda's Email Security Gateway
These instructions have been consolidated from Barracuda's knowledge base to assist you in whitelisting Barracuda by IP address. For more detailed guidance on Barracuda whitelisting, please refer to the Barracuda Email Security Service - Configuring Inbound Email video.
Barracuda's Email Security Service On The Cloud
Access your Barracuda Cloud Control account.
Navigate to Email Security > Inbound Settings > IP Address Policies.
In the IP Blocking / Exemption section, utilize the top line to input one of our IP addresses. You should repeat this process for each IP address. For the most up-to-date list of our IP addresses, kindly visit the Whitelisting best practices section within our comprehensive Step 1: Whitelisting Right-Hand Domains & IP article.
In the Netmask field, enter 255.255.255.255.
Select Exempt from the Policy field.
Include a note in the Comment field, such as Right-Hand Simulated Phishing IP Address.
Click on Add to add the IP address to the whitelist.
Barracuda's Email Security Service On The Premises
Access your Barracuda Email Security Gateway web interface.
Navigate to the BLOCK/ACCEPT > IP Filters page.
In the Allowed IP/Range section, use the top line to enter one of our IP addresses. This process will need to be repeated for each IP address. For the most current list of our IP addresses, please refer to the Whitelisting best practices section within our comprehensive Step 1: Whitelisting Right-Hand Domains & IP article.
In the Netmask field, type 255.255.255.255.
Select Exempt from the Policy field.
If desired, add a note in the Comment field, for instance, Right-Hand Simulated Phishing IP Address.
Click on Add to add the IP address to the whitelist.
Whitelisting Barracuda Sender Authentication
If you wish to simulate phishing tests using your own domain while avoiding SPF checks, you can exclude Trusted Forwarder IP addresses from the SPF validation process.
You can find comprehensive instructions on configuring the Sender Policy Framework (SPF) in Barracuda's How to Configure Sender Policy Framework article.
Barracuda's Email Security Service On The Cloud
Access to your Barracuda Cloud Control.
Go to Email Security > Inbound Settings > Sender Authentication.
Within the Use Sender Policy Framework section, enter our IP addresses into the SPF exemptions table.
Barracuda's Email Security Service On The Premises
Access your Barracuda Email Security Gateway web interface.
Proceed to the Email Security > Block/Accept tab and select Sender Authentication.
In the Sender Policy Framework (SPF) Configuration section, select Yes.
Include the Right-Hand IP addresses in the exemption list.
Important: Following the completion of these steps, we recommend conducting a test phishing campaign involving 1-2 users to verify the success of your whitelisting efforts. If there are any complications, consider contacting your service provider for assistance.
Whitelisting Barracuda Intent Analysis
To ensure that our simulated phishing tests remain accurate and reliable, we may need to whitelist Right-Hand within Barracuda's Intent Analysis feature. This is an essential step to prevent tampering with the URLs in the tests, which could distort the phishing test results. For a detailed explanation of this process, please refer to Barracuda's Intent Analysis - Inbound Mail article.
Barracuda's Email Security Service On The Cloud
Access your Barracuda Cloud Control by logging in.
Go to Email Security > Inbound Settings > Anti-Phishing.
In the Intent section, include Right-Hand's hostnames. Make sure the Policy drop-down menu is set to Ignore.
Barracuda's Email Security Service On The Premises
Access the Barracuda Email Security Gateway web interface.
Proceed to Email Security Gateway > Basic > Spam Checking.
Within the Intent Analysis section, add Right-Hand's hostnames to the URI Exemptions text box field.
Whitelisting Barracuda Sentinel Allow Senders
The utilization of Barracuda Sentinel's Allow Senders list permits emails from KnowBe4 to bypass the current whitelisting rules in your organization.
For detailed instructions on allowing senders within Barracuda, look at the How to Allow Senders article provided by Barracuda.
To add specific senders to your Allow Senders list, follow these steps:
Access your Barracuda admin console.
In your console menu, click on Dashboard.
Locate the Settings icon, represented by a gear, and click on it.
Choose Allowed Senders.
In the "Sender Email or Domain" field, input all the domains and email addresses of the Right Hand mentioned in the article.
Important: Due to security considerations, Barracuda Sentinel only accepts one email address or domain name at a time. If you have multiple addresses or domains to add, you'll need to repeat steps 5 through 7 for each one.
6. Optionally, you can add a comment to provide additional context for the email address or domain.
7. Click Save.
Important: Besides adding new senders to the Allow Senders list, you can delete or edit existing email addresses and domain names directly from the Allowed Senders page using the respective icons provided.
Whitelisting Barracuda Advanced Threat Protection (ATP)
If you utilize Barracuda's Advanced Threat Protection (ATP) and encounter false clicks or incorrect attachment openings, you can establish exemptions to resolve these issues. Creating these exemptions allows you to skip PDF scanning for phishing test emails sent from Right-Hand's IP addresses.
To set up exemption addresses to bypass ATP PDF Scanning:
Access the Barracuda Email Security Gateway web interface by logging in.
Navigate to the ATP Settings tab.
Input the relevant IP address(es) and Subnet Mask(s). For the most up-to-date list of our IP addresses, please refer to the Whitelisting best practices section within our comprehensive Step 1: Whitelisting Right-Hand Domains & IP article.
Click Add.