Riot sends phishing test emails. Without the correct configuration, some of these emails would not pass the Barracuda web filter, which would compromise your campaign statistics.
The following guide explains how to avoid this and ensure your test campaigns run smoothly.
Did you know? Unlike Riot, hackers would have no problem bypassing your spam filter by exploiting legitimate email servers, which Riot cannot afford to do.
Email Security Gateway (cloud)
Instructions are based on Barracuda's knowledge base. If you'd like to learn more about how to allow/whitelist in Barracuda, check out this video.
- Navigate to Email Security > Inbound Settings > IP Address Policies.
- In the IP Blocking / Exemption section, use the top line to enter our IP addresses: 159.135.234.25.
- Set the Policy field to Exempt. If you'd like, add a note in the Comment field. For example, Riot Simulated Phishing Training IP Address.
- Click Add to whitelist the IP address.
You may need to whitelist Riot in the Intent Analysis feature to prevent the URLs in simulated phishing tests from being altered, and potentially resulting in skewed phishing test results. See the Intent Analysis - Inbound Mail article from Barracuda explaining this process.
- Navigate to Email Security > Inbound Settings > Anti-Phishing.
- Under the Intent section, add Riot's IP address 159.135.234.25. Make sure the Policy drop-down menu is set to Ignore.
If you'd like to spoof your own domain, you can exempt Trusted Forwarder IP addresses from SPF checks. See the How to Configure Sender Policy Framework article from Barracuda for more information.
If you are using Barracuda's Email Security Service (cloud), follow these steps to whitelist Barracuda's Sender Authentication:
- Log in to your Barracuda Cloud Control.
- Navigate to Email Security > Inbound Settings > Sender Authentication.
- In the Use Sender Policy Framework center enter our IP address 159.135.234.25 in the SPF exemptions table.
Email Security Gateway (on-premise)
- Navigate to BLOCK/ACCEPT > IP Filters page.
- In the Allowed IP/Range section, use the top line to enter our IP addresses: 159.135.234.25.
- Set the Policy field to Exempt. If you'd like, add a note in the Comment field. For example, Riot Simulated Phishing Training IP Address.
- Click Add to whitelist the IP address.
You may need to whitelist Riot in the Intent Analysis feature to prevent the URLs in simulated phishing tests from being altered, and potentially resulting in skewed phishing test results. See the Intent Analysis - Inbound Mail article from Barracuda explaining this process.
- Navigate to Email Security Gateway > Basic > Spam Checking.
- Under the Intent Analysis section, add Riot's IP address 159.135.234.25 to the URI Exemptions: text box field.
If you'd like to spoof your own domain, you can exempt Trusted Forwarder IP addresses from SPF checks. See the How to Configure Sender Policy Framework article from Barracuda for more information.
If you are using Barracuda's Email Security Service (cloud), follow these steps to whitelist Barracuda's Sender Authentication:
- Log in to your Barracuda Email Security Gateway web interface.
- Navigate to Email Security > Block/Accept tab and select Sender Authentication.
- Under Sender Policy Framework (SPF) Configuration section, select Yes.
- Add the Riot IP address 159.135.234.25 to the exemption list.
Advanced Threat Protection (ATP)
If you are using Barracuda's Advanced Threat Protection (ATP) and have experienced false clicks or false attachment opens, you can set up exemptions. Setting up exemptions allows you to bypass PDF scanning for phishing training emails from Riot's IP addresses.
To set up exemption addresses to bypass ATP PDF Scanning:
- Log in to your Barracuda Email Security Gateway web interface.
- Select the ATP Settings tab.
- Enter the IP address 159.135.234.25
- Click Add.
Sentinel Allow Senders
Using Barracuda Sentinel’s Allow Senders list allows Riot emails to bypass your organization’s current whitelisting rules. See Barracuda’s How to Allow Senders article for more information.
To add specific senders to your Allow Senders list:
- Log in to your Barracuda admin console.
- Click Dashboard in your console menu.
- Click the Settings icon, which should appear as a gear symbol.
- Click Allowed Senders.
- Add the domains that have been generated for you by the platform and should be used in place of domain1.com, domain2.com... into the Sender Email or Domain field following this format:
.domain1.com/ .domain2.com/ .domain3.com/
6. Click Save.
Note: Barracuda Sentinel will only allow you to enter one email address or domain name at a time for security reasons. You can repeat steps 5 through 7 for as many email addresses or domains you wish to add.