SMTP Relay service to send email to external customers
Posted by Donatello0592@reddit | sysadmin | View on Reddit | 21 comments
We're moving our SEG away from Mimecast, switching our MX to Microsoft and taking on Abnormal's email security product.
In Mimecast we have several SMTP relays. The majority of these send to our internal recipients only (scan to email, alerts from network devices etc.) and as such we've been able to replace them with Microsoft's High Volume Email (HVE) service.
We have one service using Mimecast as an SMTP relay that needs to email out to external clients. This rules out HVE as it doesn't allow sending to external domains. I am almost set to configure SMTP2Go for this, but before I push the button I wanted to get the community's opinion on this product or any recommended alternatives?
The main drive behind any solution will be ensuring it's as secure as possible. Dedicated IP, IP whitelisting for sending infrastructure, MFA enforcement for admins (this is the one downside with SMTP2Go, no SSO with Entra ID!), proper DNS authentication for outbound mail. I'll also probably use a subdomain to avoid any risk with our primary domains reputation.
Any recommendations?
blink0927@reddit
For external sends I’d prioritize separation + reputation control over just the relay itself. I’ve had good results with Postmark since transactional traffic is isolated and you get consistent delivery without a lot of tuning.
sryan2k1@reddit
How much mail? Why can't it be sent via your normal M365 tenant?
Donatello0592@reddit (OP)
The mail isn't sent from our 365 tenant, it comes from an external partner application. I am going to enquire about the possibility of an authenticated mailbox with them, but if that's not possible I am interested in SMTP relay recommendations/experience with SMTP2Go.
sryan2k1@reddit
I see. We use them and it works well. No SSO for the admin console which is pretty rough in 2026.
Donatello0592@reddit (OP)
I agree, I couldn't believe this! Planning to get an immediate feature request in once I sign up.
sryan2k1@reddit
We also are using it for some 3rd party vendors that eventually are going to switch to M365/Graph but are not directly under our control and we needed something. We've used them for \~3 years and no issues on the actual email side of things.
Donatello0592@reddit (OP)
I've just been through all the set up and now realise you can't enforce TLS. I can understand it not being a default for legacy systems, but I feel like the choice to enforce it or not should be with us. Makes it a no go for us.
WallaceFred@reddit
We ca set you up with your own SMTP Relat on a VPS. You could have full control, logs, etc.
Sakura_m2@reddit
SMTPmart, SendGrid, Amazon SES, Mailgun, and Mailgun are commonly used SMTP relay providers for sending emails to external recipients, offering features such as dedicated IPs, SPF/DKIM/DMARC authentication, and scalable delivery. They differ mainly in setup complexity, security controls, and integration options depending on organizational requirements.
Smart_Shelter_2036@reddit
SMTP2Go is a decent option, but I’d compare it with SendGrid or Mailgun based on IP reputation controls, DNS auth support, MFA, and how easy it is to lock sending down to known systems. The provider matters less than having strict whitelisting, clean SPF/DKIM, and clear operational ownership. Those are what keep external mail stable over time. If several people manage the relay setup, puppyone can keep docs stock for credentials, rules, and review history.
broth_snob@reddit
Proofpoint SER
micromasters@reddit
We did exactly the same thing last year, from Mimecast to Abnormal, with SMTP2Go being the other part. No issues with sending out to external domains.
man__i__love__frogs@reddit
Azure Communication Services. Not sure why you'd use a third party for this. We send thousands of emails per month through ACS and it cost like tens of dollars per year.
BrokenByEpicor@reddit
I've been very happy using SMTP2GO for scanners, certain alerts, etc.
theballygickmongerer@reddit
We implemented abnormal but could not justify giving up mimecast but it all depends on your needs. It definitely is not a like for like replacement.
JTp_FTw@reddit
Azure Communication Service works well if you don’t get a lot of bounce backs. It requires api though. Not really a traditional “relay”
Witty_Formal7305@reddit
We use SMTP2GO and are an MSP who uses it for quite a few clients as well, we've had basically no issues with it. There was that annoying issue a month or so ago with MS greylisting them but within a day or 2 they had it fixed and their team was easy to work with, we just opened a ticket and they'd rotate the IP for that client. We love the templates as well, we have a bunch in there we use for different things that we just call with the API & pass the variables, its been pretty bulletproof the last 3 years (knock on wood)
The no SSO I admit does suck, but we also really never login to it, so only a couple of us have access, any API keys / SMTP Users are documented in our password manager incase someone needs an existing acct for a setup.
saltyslugga@reddit
SMTP2Go is fine, we use it for a few clients in the exact same scenario. Dedicated IP, subdomain isolation, solid deliverability. The lack of SSO is annoying but not a dealbreaker for a single service account.
Postmark and SendGrid are the usual alternatives. Postmark has better deliverability reputation imo, SendGrid has SSO on higher tiers if that's a hard requirement.
Whatever you pick, definitely use a dedicated subdomain and set up DMARC on it properly. We use Suped to monitor the aggregate reports across client sending domains, catches misconfigurations and unauthorized senders way faster than waiting for deliverability complaints.
GardenForward5321@reddit
Have you looked into sending through Microsoft's High Volume Email (HVE) option?
Manage High Volume Email for Microsoft 365 | Microsoft Learn
That said, it doesn't work for all my devices in my org, and I ended up using SMTP2GO for those.
Donatello0592@reddit (OP)
Yeah we're using HVE for most, but that doesn't send to external senders. Need an alternative for those.
GardenForward5321@reddit
Ohh, totally makes sense.