Arsen Security

The manual IP whitelisting procedure allows Arsen phishing simulation emails to bypass your protections and reach employees’ inboxes directly, ensuring a realistic training experience.

___________________________________________________________

Allow Arsen simulation emails to reach inboxes successfully

Prevent simulations from being flagged as spam

Reduce visual warnings that could artificially influence employee behavior

Ensure realistic and representative phishing awareness training

- Allow Arsen simulation emails to reach inboxes successfully
- Prevent simulations from being flagged as spam
- Reduce visual warnings that could artificially influence employee behavior
- Ensure realistic and representative phishing awareness training
   

Administrator access to the Google Workspace / Google Apps Admin Console

Ability to modify Gmail settings at the organization level

- Administrator access to the Google Workspace / Google Apps Admin Console
- Ability to modify Gmail settings at the organization level
   

3 – Add Arsen IP addresses to the allow list

Log in to <a href="https://admin.google.com" rel="nofollow noopener noreferrer" target="_blank">https://admin.google.com</a>

- Log in to <a href="https://admin.google.com" rel="nofollow noopener noreferrer" target="_blank">https://admin.google.com</a>
- Click <code>Apps</code>

Google Admin Console homepage highlighting the “Apps” tile used to manage web and mobile applications.

Click <code>Google Workspace</code>

- Click <code>Google Workspace</code>

Google Admin view showing application categories with “Google Workspace” selected.

Google Workspace services list with “Gmail” highlighted as enabled for all users

Open <code>Spam, phishing, and malware</code> (or Advanced Settings depending on your interface)

- Open <code>Spam, phishing, and malware</code> (or Advanced Settings depending on your interface)

Gmail settings panel in Google Admin showing the “Spam, phishing and malware” section.

In the left column, select your primary domain

- In the left column, select your primary domain

Gmail security settings for the organizational unit “Arsen,” showing whitelist options and advanced scanning settings.

- <code>161.38.204.14</code>
- <code>185.211.123.249</code>

- In Email whitelist, enter:
 - <code>161.38.204.14</code>
 - <code>185.211.123.249</code>

Gmail whitelist configuration screen with IP “161.38.204.14” entered and Save/Cancel buttons visible.

To also disable Gmail warning banners, complete the next step.

4 – Add the IP addresses as an inbound gateway

4.1 – Access inbound gateway configuration

In: Admin Console → <code>Apps</code> → <code>Google Workspace</code> → <code>Gmail</code>

Select your <code>Organizational Unit</code>

Click <code>Inbound Gateway</code>

- Select your <code>Organizational Unit</code>
- Click <code>Inbound Gateway</code>

Gmail settings page showing the “Inbound Gateway” section for the Arsen organizational unit.

- <code>161.38.204.14</code>
- <code>185.211.123.249</code>

- Click Add
- Enter:
 - <code>161.38.204.14</code>
 - <code>185.211.123.249</code>

Inbound Gateway configuration with “Enable” checked and IP 161.38.204.14 added.

Check <code>Require TLS for connections from the listed mail gateways</code>

- Check <code>Require TLS for connections from the listed mail gateways</code>

5.1 – Define an arbitrary regular expression

Check <code>Message is considered spam if the header matches the following regex</code>

- Check <code>Message is considered spam if the header matches the following regex</code>
- Enter an arbitrary value, for example:

This value will never match a header generated by Arsen.

5.2 – Modify Gmail’s spam filter behavior

Select <code>Message is spam if the regex matches…</code>

- Select <code>Message is spam if the regex matches…</code>
- Then check:

<code>Disable Gmail’s spam filter for messages received from this gateway and rely only on the header value.</code>

Advanced inbound gateway settings showing mandatory TLS, custom regex, and spam filter deactivation options.

Configure Google Workspace to Authorize the IP Addresses Used in Arsen Simulations

Find answers and get help from Intercom Support and Community Experts

This site employs cookies and other technologies that we and our third party vendors use to monitor and record personal information about you and your interactions with the site (including content viewed, cursor movements, screen recordings, and chat contents) for the purposes described in our Cookie Policy. By continuing to visit our site, you agree to our {websiteTermsLink}, {privacyPolicyLink} and {cookiePolicyLink}.

This site uses cookies and similar technologies ("cookies") as strictly necessary for site operation. We and our partners also would like to set additional cookies to enable site performance analytics, functionality, advertising and social media features. See our {cookiePolicyLink} for details. You can change your cookie preferences in our Cookie Settings.

We use cookies to make our site work and also for analytics and advertising purposes. You can enable or disable optional cookies as desired. See our {cookiePolicyLink} for more details.

Advertising cookies are set by our advertising partners to collect information about your use of the site, our communications, and other online services over time and with different browsers and devices. They use this information to show you ads online that they think will interest you and measure the ads' performance. Social media cookies are set by social media platforms to enable you to share content on those platforms, and are capable of tracking information about your activity across other online services for use as described in their privacy policies.

These cookies enable the website to provide enhanced functionality and personalisation. They may be set by us or by third party providers whose services we have added to our pages. If you do not allow these cookies then some or all of these services may not function properly.

These cookies are necessary for the website to function and cannot be switched off in our systems.

These cookies allow us to count visits and traffic sources so we can measure and improve the performance of our site. They help us to know which pages are the most and least popular and see how visitors move around the site.

You have the right to opt out of the sale of your personal information. See our {cookiePolicyLink} for more details about how we use your data.

Your Privacy Choices

We use cookies to enhance your experience. You can customize your cookie preferences below. See our {cookiePolicyLink} for more details.

Cookie Settings

Link, Press control-option-right-arrow to exit

Empty Help Center

Uh oh. That page doesn’t exist.

Disappointed

Neutral

Smiley

Thinking...

Searching through sources...

Analyzing...

Tickets submitted through the messenger or by a support agent in your conversation will appear here.

Configure Google Workspace to Authorize the IP Addresses Used in Arsen Simulations

1 – Objectives

2 – Prerequisites

3 – Add Arsen IP addresses to the allow list

3.1 – Access Gmail settings

3.2 – Open security settings

3.3 – Add IPs to the allow list

4 – Add the IP addresses as an inbound gateway

4.1 – Access inbound gateway configuration

4.2 – Enable the gateway

4.3 – Add gateway IPs

4.4 – Secure the connection

5 – Adjust spam detection settings

5.1 – Define an arbitrary regular expression

5.2 – Modify Gmail’s spam filter behavior

5.3 – Save configuration