avoid_spam_issues
Differences
This shows you the differences between two versions of the page.
Both sides previous revisionPrevious revisionNext revision | Previous revisionNext revisionBoth sides next revision | ||
avoid_spam_issues [2018/05/18 18:42] – [What is the best test procedure with LUCY to identify the source of SPAM issues?] lucy | avoid_spam_issues [2020/07/06 22:08] – [Whitelisting in different products] lucy | ||
---|---|---|---|
Line 118: | Line 118: | ||
**Step 2 - IDENTIFY THE ISSUE THAT TRIGGERS THE EMAIL FILTER** | **Step 2 - IDENTIFY THE ISSUE THAT TRIGGERS THE EMAIL FILTER** | ||
- | Start altering the message & domain settings: it is very important that you slowly start altering | + | If the test email arrives, you can start altering the message & domain settings: it is very important that you change |
+ | |||
+ | One of the first changes you might want to try is playing around with different domain names (e.g. a different domain as a [[http:// | ||
**Step 3 - TEST RUN** | **Step 3 - TEST RUN** | ||
After you identified and removed the issues that caused the mails to get filtered we recommend doing a test run. The test run should be done with one target email accounts to see if the email gets filtered and how the link is accessed (sometimes a SPAM filter can automatically access the link in the email before the user can. This will make it impossible for LUCY to know if the link was really clicked). | After you identified and removed the issues that caused the mails to get filtered we recommend doing a test run. The test run should be done with one target email accounts to see if the email gets filtered and how the link is accessed (sometimes a SPAM filter can automatically access the link in the email before the user can. This will make it impossible for LUCY to know if the link was really clicked). | ||
+ | |||
**Step4 - REAL CAMPAIGN** | **Step4 - REAL CAMPAIGN** | ||
Line 136: | Line 140: | ||
There are three possible message scenarios in case mails are still being filtered: | There are three possible message scenarios in case mails are still being filtered: | ||
- | * a) No mails send: then you won’t see anything in the message log | + | * a) [[mail_communication_issues_-_mails_do_not_get_send_at_all|No mails send]]: then you won’t see anything in the message log |
- | * b) Mails send – but with error: then you will see an error in “Errors” | + | * b) Mails send – but with error: then you will see an error in " |
* c) Mail send – no error: mail communication has been established and mails have been accepted for delivery | * c) Mail send – no error: mail communication has been established and mails have been accepted for delivery | ||
Line 148: | Line 152: | ||
* 2) Investigate your [[: | * 2) Investigate your [[: | ||
+ | * 3) In some cases there is a email threshold that limits the amount of emails you are allowed to send in a certain time frame. Amazon, Google & Microsoft have such limits. When you do a test run you might not experience any difficulties, | ||
Line 171: | Line 176: | ||
In case you rent a VPS through LUCY Security, we kindly ask you first to contact the the blacklist site and request a de-listing. If you cannot get delisted in a reasonable time, please get in contact with us and we can request an IP address change. | In case you rent a VPS through LUCY Security, we kindly ask you first to contact the the blacklist site and request a de-listing. If you cannot get delisted in a reasonable time, please get in contact with us and we can request an IP address change. | ||
+ | |||
+ | ===== " | ||
+ | {{ : | ||
+ | |||
+ | If you are seeing a message like this, it means that the domain name was blacklisted by Google. | ||
+ | Unfortunately, | ||
+ | |||
+ | The fastest and easiest option is to abandon the current domain name and register a new one. | ||
+ | In case if LUCY administration domain got blacklisted, | ||
+ | - Open Chrome | ||
+ | - Go to Settings > Privacy. | ||
+ | - Toggle off Chrome' | ||
+ | |||
+ | After the actions above, the Deceptive Site message won't appear in your browser and the LUCY administration panel is available again. | ||
+ | |||
+ | You can check if your domain got blacklisted by Google via the link below: | ||
+ | https:// | ||
===== Whitelisting in different products ===== | ===== Whitelisting in different products ===== | ||
**GSuite/ | **GSuite/ | ||
- | * This is the recommend setting if you do not have a cloud-based spam filter in front of GSuite. | + | |
- | * Login to https:// | + | Please review [[gsuite_whitelisting|this]] article. |
- | * Select GSuite. | + | |
- | * Select Gmail. | + | |
- | * Select Advanced Settings. | + | |
- | * In the Organizations section, highlight your Domain (Not an OU). Note: GSuite does not allow whitelisting by IP Address for individual OUs, only the entire domain. | + | |
- | * In the Email whitelist section, enter the LUCY IP address | + | |
- | * Scroll to the bottom and click Save. The setting may take up to an hour to propagate to all users. | + | |
Line 197: | Line 213: | ||
* Click Save | * Click Save | ||
* If emails with certain attachements get blocked, setup a safe attachement policy: https:// | * If emails with certain attachements get blocked, setup a safe attachement policy: https:// | ||
+ | |||
+ | **O365 Advanced Threat Protection. Excluding domains from ATP URL Rewriting** | ||
+ | * Go to https:// | ||
+ | * In the left navigation choose **Threat management > Safe Links**. | ||
+ | {{ safe-links.png? | ||
+ | * In the **Policies that apply to specific recipients** section, choose New (the New button resembles a plus sign ( +)) to create a new policy. (Alternatively, | ||
+ | * Choose New to add a Safe Links policy for specific email recipients | ||
+ | {{ safe-links2.png? | ||
+ | * Specify a name and description for your policy. | ||
+ | {{ safe-links3.png? | ||
+ | * In the **Do not rewrite the following URLs** section, select the **Enter a valid URL** box, and then type a URL, and then choose the plus sign (+). | ||
+ | {{ safe-links4.png? | ||
+ | * Please note that you can put wildcard asterisks to the URLs in order to define precisely which URL patterns should not be rewritten. | ||
+ | * In the Applied To section, choose users or groups of users, and then choose recipient(s) you want to include in new policy. | ||
+ | * When you are finished adding URLs and recipients, in the lower right corner of the screen, choose **Save**. | ||
+ | {{ safe-links5.png? | ||
+ | |||
+ | **O365 Advanced Threat Protection. Bypassing Safe Attachments policy** | ||
+ | * Go to https:// | ||
+ | * In the left navigation choose **Mail Flow**. | ||
+ | {{ safe-attach.png? | ||
+ | * In the **Rules** section, choose New (the New button resembles a plus sign ( +)) and choose **Create new rule** option. (Alternatively, | ||
+ | {{ safe-attach2.png? | ||
+ | * Specify a name for your rule. | ||
+ | * Click **More options** button. | ||
+ | {{ safe-attach3.png? | ||
+ | * From the **Apply this rule if…** drop-down menu, select **The senders then select IP address is in any of these ranges or exactly matches**. | ||
+ | * Add Lucy IP-address. Please note that you can also choose to specify certain sender addresses and domain names to your rule by clicking **Add condition** button. | ||
+ | * From the **Do the following…** drop-down menu, select **Modify the message properties...** and then **set a message header**. | ||
+ | {{ safe-attach4.png? | ||
+ | * Click the first **Enter text...** link and set the message header to: **X-MS-Exchange-Organization-SkipSafeAttachmentProcessing** | ||
+ | * Click the second **Enter text...** link and set the value to: **1** | ||
+ | {{ safe-attach5.png? | ||
+ | * Click **Save** button. | ||
+ | |||
Line 235: | Line 286: | ||
* Click Save. | * Click Save. | ||
+ | |||
+ | **MessageLabs or Symantec** | ||
+ | |||
+ | To add a global Approved Sender: | ||
+ | 1.Select Services > Email Services > Anti-Spam. | ||
+ | 2.Ensure that Global Settings is selected in the domains drop-down list. | ||
+ | 3.Click the Approved Senders tab. | ||
+ | 4.Click the Add Entry option. | ||
+ | 5.The Domain/ | ||
+ | 6.In the Domain/ | ||
+ | 7.In the Description field, enter brief details about the new entry. | ||
+ | 8.To add the entry to the list, click Update. | ||
+ | |||
+ | This new policy will allow any inbound mail flow originating from LUCY's IPs to reach your users. |
avoid_spam_issues.txt · Last modified: 2021/12/14 07:04 by lucysecurity