In this article, we explain how to whitelist Exchange on Premise (Exchange Server 2013/2016/2019).


The following steps are required: First, you set up an IP permission list that contains our IP address. Then, you set up a message flow rule so that our incoming e-mail can bypass both the Clutter folder and Microsoft's EOP spam filter. In addition, a rule must be created in Office 365 regarding the Junk folder.

Once you have completed this process, it may take some time for the settings to be fully processed. We recommend that you wait one to two hours before you test whether the whitelisting was successful.


For the IP addresses used, please refer to the SoSafe Manager Portal under Simulation > Whitelisting. Self-service customers can only view this information through their individual SoSafe Manager access. All other customers can also access this information via the following direct link: https://manager.sosafe.de/?redirect=whtlstng. 


Note: The screenshots used here are from an Exchange Server 2019, there may be slight differences between the versions 2016/2013. If you are using Exchange 2013, you can also set up the IP Allow list with a command line. See the following article for more information:

https://docs.microsoft.com/de-de/powershell/module/exchange/antispam-antimalware/Add-IPAllowListEntry?view=exchange-ps


Chapter 1: Setting Up the IP Permission List



Step 1

Open the "Exchange Administrative Center" on your Exchange Server.

Step 2

Click on “connection filter” in the section protection.

 

Step 3

Click on the pen icon. A pop-up window opens.

Step 4

Click on “connection filtering” (1) and press the (+) button above Allowed IP Address (2).

Step 5

Enter the IP-addresses mentioned on the platform for your campaign here and press “OK”.

 

Step 6

Click on “Save”. This completes the chapter Setting Up the IP Approval List.

 

Chapter 2: Bypass Spam and Clutter filters

Step 1

Open the "Exchange Administrative Center" on your Exchange Server.

Here click on “rules” under mail flow.

Step 2

Click on the (+) icon and then on “Create a new rule”.

 

Step 3

Name the rule e.g. “Spam- and Clutterfilter” (1), and press “More options...” (2).

 

Step 4

Select “The sender” (1) from the drop-down menu under *Apply this rule if... and then select “IP address is in any of these ranges or exactly matches” (2).

Step 5

Enter the IP address specified on the platform in the pop-up window (1) and press the (+) button (2). Repeat for all active IP addresses. Then press “OK” (3).     

Step 6

In the drop-down menu under *Do the following..., press “Modify the message properties...” and then “set a message header” 

Step 7

On the right this text should appear: Set the message header *Enter text… to the value *Enter text...

Enter “X-MS-Exchange-Organization-BypassClutter” for the first placeholder and “true” for the second placeholder. 

Step 8

Click on “add action” and select “Modify the message properties…” from the drop-down menu (1), then select “set the spam confidence level (SCL)” (2).

 

Step 9

In the pop-up window, select the option “Bypass spam filtering” and press “OK”. 


The finished rule should look like this:

  

Press “Save”. This completes the chapter Bypass Spam and Clutter filters.

 

Chapter 3: Bypass Junk filter 

Step 1

Open the "Exchange Administrative Center" on your Exchange Server as described in chapter 1. 

Here click on “rules” under mail flow.

 

Step 2

Click on the (+) icon and then on “Create a new rule”.

 

Step 3

Name the rule e.g. “Junkfilter” (1), and press “More options...” (2).

 

Step 4

Select “The sender” (1) from the drop-down menu under *Apply this rule if... and then select “IP address is in any of these ranges or exactly matches” (2).

Step 5

Enter our IP addresses specified on the platform in the pop-up window (1) and press the (+) button (2). Repeat for all relevant IP addresses. Then press “OK” (3).

  

Step 6

In the drop-down menu under *Do the following..., press “Modify the message properties...” (1) and then “set a message header” (2).

 

Step 7

On the right this text should appear: Set the message header *Enter text… to the value *Enter text...

Enter “X-Forefront-Antispam-Report” for the first placeholder and “SFV:SKI;” for the second placeholder. 

 

The finished rule should look like this:


Now press "Save" - This completes the final chapter of the whitelisting process for Office 365.