Allow-listing in Google Workspace

Find out how to allow-list SiberMate domains and IP addresses to ensure SiberMate email delivery in Google Workspace.


If your business uses Google Workspace (formerly known as G Suite), you may need to allow a list of SiberMate domains and IP addresses to ensure your simulated phishing and security awareness training emails are delivered successfully.


In this article, you'll find:

  • How to allow-list SiberMate IP addresses in Google Workspace
  • How to allow-list SiberMate domains in Google Workspace

We now recommend Message Injection as the preferred delivery method for simulated phishing emails. Click here to learn how to set up Message Injection in Google Workspace.

You can find a list of our IP addresses and supported domains here.

Allow-listing by IP address in Google Workspace

Allow-listing SiberMate IP addresses in Google Workspace has two steps:

  • Adding SiberMate IP addresses to the Google Workspace allow-list
  • Adding SiberMate IP addresses as Inbound Gateways

Adding IP addresses to the allow-list will help emails get through without falling into the spam folder - whereas adding domains such as Inbound Gateways will help you get rid of warning messages that could otherwise tip your users off to their simulated phishing emails.


STEP ONE: Add SiberMate IP addresses to the Google Workspace allow-list

  1. Log in to https://admin.google.com 
  2. Navigate to Apps -> Google Workspace -> Gmail
  3. Scroll down to the bottom of the Gmail settings page and click Spam, Phishing, and Malware
  4. Select Email whitelist which is the first option.
  5. Enter the SiberMate IP addresses in the Email whitelist section, separated by commas. The SiberMate IP addresses are:
198.21.6.191
168.245.56.242
99.80.168.14
  1. Click Save. It may take up to an hour for the changes to apply to all users.


STEP TWO: Add SiberMate's IP addresses as Inbound Gateways

Google Workspace will automatically tag some emails as suspicious if it believes there's a chance they are phishing-related and may add banners to them to notify users of increased risk.


This could be a yellow 'Be careful' banner...

Or a red 'This message seems dangerous' banner.

To better assess your users' vulnerability to phishing, you will want to ensure that these banners do not show up during your simulated phishing campaigns. Follow the instructions below to prevent these banners from appearing for SiberMate simulated phishing emails in Google Workspace.


  1. Log in to https://admin.google.com 
  2. Navigate to Apps -> Google Workspace -> Gmail
  3. Scroll down to the bottom of the Gmail settings page and click Spam, Phishing and Malware
  4. Scroll down to the third option down Inbound gateway
  5. Add the SiberMate IP addresses to the Gateway IPs list:
198.21.6.191
168.245.56.242
99.80.168.14
  1. Ensure that the Reject all mail not from gateway IPs setting is unchecked
  2. Check the Require TLS for connections from the email gateways listed above setting
  3. Under Message Tagging, ensure Message is considered spam if the following header regexp matches is checked
  4. In the Regexp field, enter text that is unlikely to be found in a simulated phishing email, for example: 
ksdhqloqwklcpsshovpsnlx
  1. Check the Disable Gmail spam evaluation on mail from this gateway; only use header value setting
  2. Click Save

This is what the window should look like:

Your simulated phishing and security awareness training emails should now all be delivered successfully to your users, without warning banners popping up. We suggest you send a test simulated phishing email to your address first to ensure all the settings have been applied correctly!

How to allow-list SiberMate domains in Google Workspace

Allow-listing SiberMate domains in Google Workspace will help ensure that your course enrolments, policy send-outs, and simulated phishing emails are delivered successfully to your end users.


  1. Login to https://admin.google.com
  2. Navigate to Apps -> Google Workspace -> Gmail
  3. Scrolls down to the bottom of the Gmail settings page and click Spam, Phishing, and Malware
  4. Scroll down to the Spam section
  5. Click Add Rule or Edit if you wish to use an existing rule
  6. Give the rule a name like "SiberMate phishing allow-list"
  7. Click Create or Edit list

When you get to the Manage Address list page:

  1. Click Add Address List
  2. Click Bulk-Add Addresses and paste the domains at the bottom of the page into the text box
  3. Leave "require sender authentication" ticked

Back on the settings page:

  1. Click Use Existing List
  2. Select the new address list you created on the previous page
  3. Press save

Domain List:

sibermate.com
user-training.com
amzwon.net
biiing.net
companylegal.co.nz
companylegal.co.uk
companylegal.in
financialdept1.com
financialstaff.co.uk
gdprlaw.co.uk
gohelpdesk.au
groupmailserver.au
groupmailserver.co.uk
grouponedeals.com
hellpdesk.net
hhelpdesk.co.uk
humanres.co.nz
humanres.co.uk
humanres.in
innermail.co.uk
it5upport.co.uk
ithelpdeskweb.co.uk
ithlpdesks.com
itsuppports.com
marketingcrew.co.uk
microloft.net
pessoleldept.com
sup0rt.co.uk
yahoooo.info
1nfoclient.fr
atencionalcleinte.com
banque-online.com
centre-assistance.fr
f1nancier.com
fiinancier.fr
financ1er.fr
hilfekunden.de
iinfoclient.fr
ithilfen.de
itsupp0rt.de
kunden-unterstuzung.de
onlinbanking.de
pcsupport.fr
ressourceshumains.com
technischeuntersttzung.de
usbank.news
usbank.website
uspost.online
uspost.store
companypolicy.au
gohelpdesk.au
gohelpdesk.com.au
gohelpdesk.co.nz
he1pdesk.co.nz
supp0rt.co.nz
supp0rt.co.za
supp0rt.ca
recusos-humanos.com
infoclientehoy.com
centro-asistencia.com
asistenciahoy.com
companypolicy.ie
gohelpdesk.ie
hhelpdesk.ie
humanres.ie
itsupports.ie
singlesignon.ie
suport.ie
sup0rt.ie
Did this answer your question? Thanks for the feedback There was a problem submitting your feedback. Please try again later.