Technical Tip: How to allow authorized phishing simulation campaigns in IP policy
| Description | This article describes how to create an IP Policy in FortiMail to allow approved phishing simulation traffic from trusted sources. |
| Scope | FortiMail. |
| Solution | Identify the trusted source IP address provided by approved phishing simulation vendors (e.g., FortiPhish, KnowBe4). Configure these IPs as the source in a new IP Policy. Ensure the IP Policy is placed above more restrictive policies so it is matched first.
The use of Take precedence over recipient based policy match will disable the recipient-based policy scans for connections matching this IP-based policy. Additionally, see Safelisting FortiPhish in FortiMail.
Note: The destination IP has to match the FortiMail Interface IP. |
