Bobcares

SMTP error ‘554 transaction failed’ – Top 3 causes and solutions

by | Dec 30, 2018

Email errors are difficult to deal with, especially when they show unclear error codes like “SMTP 554 transaction failed”.

The error shows that the email transaction between the sender and the receiver has failed.

But, why did it fail? How can we fix this?

At Bobcares, we help website owners to fix such email errors as part of our Outsourced Technical Support services for web hosts.

Today, we’ll discuss the top 3 reasons for this error and how we fix them.

 

SMTP error “554 transaction failed”  – What is this?

In normal email delivery, mail goes from the sender, to the sending MX, and to the recipient’s MX and finally to the recipient.

 

smtp 554 transaction failed

How email works?

 

Sometimes, not all emails reach the destination server. The recipient server carries out a series of checks to verify the sender’s authenticity.

And, if any issues are noted, it rejects the mails.

For example, a sample bounce back message that users see in this case is given below.

554 Transaction failed : Cannot send message due to possible abuse; 

 

SMTP error “554 transaction failed”  – Causes and Fixes

Now, let’s see the main reasons for this error and how our Support Engineers fix it.

1) Recipient errors

One of the common reasons for the mail delivery error “SMTP 554 transaction failed” is the problems at the recipient’s mail server.

This includes a typo in the recipient address, incorrect MX entry for the recipient domain, disabled/suspended recipient account, blacklists or custom filters configured at the recipient end.

 

Solution

Our Support Engineers verify the recipient domain name, and it’s MX records are set correctly using the below command.

dig domain.com MX

 

Further, we check the connection to the recipient mail server with the following command.

telnet domain.com 25

 

If we notice missing MX entries or connection problems at the recipient end, this must be corrected at the recipient end.

On the other hand, if there are custom blacklists or filters, the sender domain must be whitelisted at the recipient end to allow mail flow.

The connection errors can also happen when the sender is behind a VPN connection. We typically verify the VPN settings and confirm that it allows sending of mails.

2) Poor IP reputation

Likewise, another common reason for this error is the bad reputation of the sender’s IP address.

The reputation of the IP address can go bad when there is repeated spam instances, open relays, or unacceptable behavior of the mail server.

Eventually, the mail server IP will be blacklisted in spam monitoring systems like SORBS, DNSSBL, etc.

 

Solution

In such causes, our Support Engineers check and ensure that the sender’s IP address is clean. Tools like https://mxtoolbox.com/blacklists.aspx comes handy here.

If the IP is blacklisted, we identify the source of the spam, fix it and take corrective actions to prevent such problems in future.

After that, we submit delist request to the spam monitoring systems.

Delisting usually takes about 2 to 3 days.

 

3) Bad DNS records

Similarly, the recipient server rejects emails due to the problems in the DNS records of the sender domain.

In other words, the recipient server checks DNS records like PTR, SPF, DKIM, etc. to verify the validity of the sender. If any mismatch is noted, it will reject the emails.

Now, let’s discuss about these 3 records in detail.

 

a) SPF record

Email providers use the security feature SPF(Sender Policy Framework) to verify the sender’s authenticity.

It decides which servers can send emails on behalf of a domain.

In other words, the SPF records contain the IP address of servers that can send emails on behalf of the domain. And, if the email originates from the IP listed in the record, the recipient server accepts the mail.

But, we’ve seen cases where the mail server IP has changed, but the SPF record doesn’t contain this new IP address.

So, for the recipient domain, the mail originates from a server that is not added in the SPF record.

Therefore, it rejects the email, and users see the error SMTP 554 transaction failed.

b) PTR record

PTR records aka Reverse DNS maps IP address to its domain name.

That is, consider the server “xyz.domain.com” points to the IP address “195.16x.111.10x“, then the reverse DNS of the IP should point to “xyz.domain.com“.

Most spam mails originates from poorly maintained servers, and most of these servers have a sloppy hostname and an IP without a PTR record.

Large emails providers like Hotmail, Yahoo, etc. use this as an important indicator for the source of spam and reject the emails from such senders.

c) DKIM record

DKIM record associates the domain name with an email message by attaching a digital signature.

Therefore, the recipient server can determine whether emails originate from a valid domain and thus prevent email spoofing.

If there are no DKIM records, some mail servers reject that emails considering the sender as fake.

Solution

Our Support Engineers first verify the DNS records like PTR, DKIM, SPF, etc. of the sender domain. When there is a mismatch found, we correct it by making the required changes in these records.

For PTR records, we always choose a Fully Qualified Domain Name other than the generic name like “xxx-xxx-xxx-xxx-static.provider.tld“.

For example xyz.domain.com.

At Bobcares, we always make sure to configure critical records like SPF, PTR, DKIM, etc. to ensure reliable email deliveries.

Conclusion

In short, SMTP error “554 transaction failed” can happen mainly due to IP blacklists, improper DNS settings of the sender domain, and more. Today, we’ve discussed the top 3 reasons for this error and how our Support Engineers fix it.

PREVENT YOUR SERVER FROM CRASHING!

Never again lose customers to poor server speed! Let us help you.

Our server experts will monitor & maintain your server 24/7 so that it remains lightning fast and secure.

SEE SERVER ADMIN PLANS

var google_conversion_label = "owonCMyG5nEQ0aD71QM";

1 Comment

  1. Maddin

    Another very common issue is a wrongly set clock, esp. when using MS Outlook.
    Had this on a client – his PCs clock was set like 5 hours in the future. The receiving mail server (same timezone I guess) didn’t like that.

    Synced his clock with ntp.org’s timeserver and viola – it worked.

    Reply

Submit a Comment

Your email address will not be published. Required fields are marked *

Never again lose customers to poor
server speed! Let us help you.

Privacy Preference Center

Necessary

Necessary cookies help make a website usable by enabling basic functions like page navigation and access to secure areas of the website. The website cannot function properly without these cookies.

PHPSESSID - Preserves user session state across page requests.

gdpr[consent_types] - Used to store user consents.

gdpr[allowed_cookies] - Used to store user allowed cookies.

PHPSESSID, gdpr[consent_types], gdpr[allowed_cookies]
PHPSESSID
WHMCSpKDlPzh2chML

Statistics

Statistic cookies help website owners to understand how visitors interact with websites by collecting and reporting information anonymously.

_ga - Preserves user session state across page requests.

_gat - Used by Google Analytics to throttle request rate

_gid - Registers a unique ID that is used to generate statistical data on how you use the website.

smartlookCookie - Used to collect user device and location information of the site visitors to improve the websites User Experience.

_ga, _gat, _gid
_ga, _gat, _gid
smartlookCookie
_clck, _clsk, CLID, ANONCHK, MR, MUID, SM

Marketing

Marketing cookies are used to track visitors across websites. The intention is to display ads that are relevant and engaging for the individual user and thereby more valuable for publishers and third party advertisers.

IDE - Used by Google DoubleClick to register and report the website user's actions after viewing or clicking one of the advertiser's ads with the purpose of measuring the efficacy of an ad and to present targeted ads to the user.

test_cookie - Used to check if the user's browser supports cookies.

1P_JAR - Google cookie. These cookies are used to collect website statistics and track conversion rates.

NID - Registers a unique ID that identifies a returning user's device. The ID is used for serving ads that are most relevant to the user.

DV - Google ad personalisation

_reb2bgeo - The visitor's geographical location

_reb2bloaded - Whether or not the script loaded for the visitor

_reb2bref - The referring URL for the visit

_reb2bsessionID - The visitor's RB2B session ID

_reb2buid - The visitor's RB2B user ID

IDE, test_cookie, 1P_JAR, NID, DV, NID
IDE, test_cookie
1P_JAR, NID, DV
NID
hblid
_reb2bgeo, _reb2bloaded, _reb2bref, _reb2bsessionID, _reb2buid

Security

These are essential site cookies, used by the google reCAPTCHA. These cookies use an unique identifier to verify if a visitor is human or a bot.

SID, APISID, HSID, NID, PREF
SID, APISID, HSID, NID, PREF