Exchange Server

Configure IIS to be a Smart Host for Exchange

How can I configure an IIS computer to be a Smart Host for my Exchange Server?

It may be necessary to configure a Windows 2000 server to relay or act as a smart host for security reasons, such as in a perimeter network scenario (also known as DMZ, demilitarized zone, and screened subnet) when you do not want to have a server that participates in domain security available on the Internet or you do not need the full functionality that an Exchange server provides to do e-mail for CDO and list serve-type applications. 

Step 1: Verify the Installation of the SMTP Service

  1. In Control Panel, open Add/Remove Programs, click Add/Remove Windows Components. Click the Internet Information Services (IIS) component, click Details, and then verify that the SMTP Service check box is selected.

    Sponsored Content

    What is “Inside Microsoft Teams”?

    “Inside Microsoft Teams” is a webcast series, now in Season 4 for IT pros hosted by Microsoft Product Manager, Stephen Rose. Stephen & his guests comprised of customers, partners, and real-world experts share best practices of planning, deploying, adopting, managing, and securing Teams. You can watch any episode at your convenience, find resources, blogs, reviews of accessories certified for Teams, bonus clips, and information regarding upcoming live broadcasts. Our next episode, “Polaris Inc., and Microsoft Teams- Reinventing how we work and play” will be airing on Oct. 28th from 10-11am PST.


If it is not selected, click to select it, click OK, and then follow the installation directions that are displayed.

Step 2: Configure the SMTP Service to Relay for Internal Domains

Depending on the scenario, it may be necessary to configure the SMTP service to relay inbound messages for your internal domains.

  1. Click Start, point to Programs, click Administrative Tools, and then click Internet Services Manager.

  2. Expand the tree under the server name, and then expand the Default SMTP Virtual Server. By default, you should have a Local (Default) domain with the fully qualified domain name of the server.

  1. Configure the domain for inbound:

    1. Right-click the Domains icon, click New, and then click Domain.

  1. Click Remote, click Next, and then type the domain name in the Name box. Click Finish.

Configure the domain for relay

  1. In the properties for the domain that you just created, click to select the Allow the Incoming Mail to be Relayed to this Domain check box.

  2. If this is being set up for a internal domain, you should specify the server that receives e-mail for the domain name by the IP address in the Route domain dialog box.

  1. Click the forward all e-mail to smart host option, and then type the IP address of the server that is responsible for e-mail for that domain in square brackets. For example:


Note: Typing the IP address of the server in brackets is necessary so that the server recognizes this is an IP address and not to attempt a DNS lookup.

  1. Click OK.

Step 3: Specify the Hosts That You Want to Openly Relay to All Domains

Note: Anyone can send to the domains that you specified in Step 2. This step is for hosts, which are most likely your internal servers that would need to send to all domains on the Internet. It is not recommended to not have any restrictions because anyone can use your server as an open relay. It is recommended to only allow the minimum, necessary hosts to openly relay to all domains. To do so:

  1. Open the properties of the Default SMTP Virtual Server.

  2. On the Access tab, click Relay.

  1. Click Only the list below, click Add, and then add the hosts that need to use this SMTP host to send e-mail.

On the dialog box that appears, you have the following options:

  • Single computer: Specify one particular host that you want to relay off of this server. If you click the DNS Lookup button, you can lookup an IP address of a specific host.

  • Group of computers: Specify a base IP address for the computers that you want to relay. You have to specify the octets in the IP address for hosts that you will allow to relay. For example: If the IP address is, and you want any hosts with the first two octets 192.68 to relay, specify for the subnet mask.

  • Domain: Select all of the computers in a domain by domain name that will openly relay. This option adds processing overhead, and might reduce the SMTP service performance because it includes reverse DNS lookups on all IP addresses that try to relay to verify their domain name.

Configure the other servers to use your relay server as a smart host

Depending on the other applications or mailers that will use your relay server, you may have a option where you can specify a smart host or SMTP relay. With Exchange 2000, you would create an SMTP connector and specify the Windows 2000 Relay server in the Forward all mail through this connector to the following smart host box. 

Related articles

You might also want to read the following related articles:


Set Up and Configure an SMTP Virtual Server in Windows 2000 – 308161

How to Set Up Windows 2000 as a SMTP Relay Server or Smart Host – 293800

Configure the SMTP Virtual Server for Message Delivery – 303734

Configure a Remote Domain for an IIS 5.0 SMTP Mail Relay Server in Windows 2000 – 308161

How to Configure the IIS SMTP Service to Relay SMTP Mail – 230235

Related Topics:

External Sharing and Guest User Access in Microsoft 365 and Teams

This eBook will dive into policy considerations you need to make when creating and managing guest user access to your Teams network, as well as the different layers of guest access and the common challenges that accompany a more complicated Microsoft 365 infrastructure.

You will learn:

  • Who should be allowed to be invited as a guest?
  • What type of guests should be able to access files in SharePoint and OneDrive?
  • How should guests be offboarded?
  • How should you determine who has access to sensitive information in your environment?

Sponsored by: