This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(128, 8%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
Microsoft's article here: https://support.office.com/en-us/article/How-to-set-up-a-multifunction-device-or-application-to-send-email-using-Office-365-69f58e99-c550-4274-ad18-c805d654b4c4
....says that "Direct send cannot be used to deliver email to external recipients, for example, recipients with Yahoo or Gmail addresses.", but I have found that doesn't seem to be true. I can use any MX record for anyone that uses Office 365, connect to it via SMTP, and send to external recipients (like Gmail, another O365 tenant, etc.).
I thought that only the "SMTP relay" method was supposed to allow this, so you can create the connector and add an allowed static IP address.
Why does "Direct send" also allow delivery to external recipients with no authentication? Seems like a security risk!
Microsoft 365 features that help users manage their subscriptions, account settings, and billing information.
Locked Question. This question was migrated from the Microsoft Support Community. You can vote on whether it's helpful, but you can't add comments or replies or follow the question.
Hi Ts_ryan,
Any update please let us know.
Regards,
Alan
Hi Ts_ryan,
Thanks for your update.
Please change the From address to an Office 365 group’s email address in your Office 365 tenant and then send a test email to the Gmail account.
In addition, please send us the SMTP Diag Tool. I’ve sent you a Private Message to collect it. You can access it via this link:
https://answers.microsoft.com/en-us/privatemessages/list
Regards,
Barry
Alan,
I can do the same exact thing using telnet and SMTP commands. I just verified this...I connected to an Office 365 MX record on port 25, then used the commands to compose a message to a Gmail account. I received the message successfully in the Gmail account.
So, it has nothing to do with SMTP Diag Tool...that's just a much easier/faster way of testing than using telnet and SMTP commands.
It's most definitely not "good news" that Direct Send seems to not work the way Microsoft's documentation shows. It says it won't send to external recipients, but it does...unless I'm missing something here.
Hi Ts_ryan,
Thanks for your clarification.
It should be the tool's machanism. I will further check the tool. You may also test it via other device to see if ithe same situation. But, since you can send successfully, isn't it a good news.
Regards,
Alan
I understand how direct send works. Can you please try to recreate the issue as I've described? Take any domain's Office 365 tenant MX record and try to use it to send mail from ******@thatdomain.com to a Gmail account. It sends successfully, which I don't believe should be allowed.
Here's an example of the SMTP Diag Tool settings, the resulting log, and the message in Gmail. The O365 tenant for this MX record does NOT have a connector set up for the "SMTP Relay" method (which would make this work):
(note that the MX record in the SMTP Server box has the beginning cut off in this screenshot)