BETA
OSH.co.za - Email Deliverability and DMARC Specialists

Email Bounce Decoder

Paste your bounce message or SMTP error to decode what went wrong

πŸ”§ Related Tools

ANALYSIS TOOLS
πŸ”’ Full Checker Complete email deliverability scan: SPF, DKIM, DMARC, MX, blacklists & more. πŸ“¨ SPF Check and visualise your SPF record including the full DNS lookup tree. πŸ”‘ DKIM Scan all known DKIM selectors and validate key strength for your domain. πŸ“§ Email Headers Analyse raw email headers to trace delivery path and authentication results. πŸ“¬ Bounce Decoder 🦁 BIMI Verify your BIMI logo record and VMC certificate status. πŸ” DNSSEC Validate the DNSSEC chain of trust: DS, DNSKEY, and RRSIG records. πŸ”’ MTA-STS Check your MTA-STS DNS record and TLS policy file for enforced encryption. πŸ“‹ TLS-RPT Validate your TLS-RPT reporting address for email transport encryption reports. 🌍 WHOIS Look up domain registration details via RDAP.
DIAGNOSTIC TOOLS
🚫 Blacklist / RBL Check IPs and domains against major email blacklists and RBLs. 🌐 DNS Propagation Check DNS record propagation across multiple global resolvers simultaneously.
BUILDER TOOLS
βœ… DMARC Builder Build a DMARC TXT record with the right policy, RUA/RUF and subdomain options. πŸ›  SPF Builder Generate a validated SPF record by selecting your email senders. πŸ“ Route 53 Splitter Split long DKIM or SPF TXT records for AWS Route 53's 255-character limit.

Accepts full NDR emails, SMTP error lines (e.g. 550 5.1.1 User unknown), or mail log fragments.

Try an example: 5.1.1 mailbox not found Β· 5.7.1 policy rejection Β· 5.7.26 DMARC violation Β· 4.2.2 mailbox full Β· 4.2.1 rate limit

Frequently Asked Questions

A hard bounce (5xx codes) is permanent β€” the email will never be delivered to that address. Common causes: the mailbox does not exist, the domain is invalid, or the address has been blocked. You should remove hard-bounced addresses from your list immediately. A soft bounce (4xx codes) is temporary β€” the receiving server is acknowledging the issue is transient and your mail server should retry. Common causes: full mailbox, server temporarily down, rate limiting. Most email systems retry soft bounces automatically for 24–72 hours before giving up.

An NDR β€” also called a bounce message, DSN (Delivery Status Notification), or "mailer-daemon" message β€” is an automated email sent back to the original sender when delivery fails. It contains a structured RFC 3464 message/delivery-status MIME part with machine-readable fields like Status: 5.1.1 and Diagnostic-Code: smtp; 550 5.1.1 …, as well as a human-readable explanation. This tool parses both formats.

Enhanced status codes (RFC 3463) have three parts: the class (2=success, 4=temporary failure, 5=permanent failure), the subject (1=addressing, 2=mailbox, 4=routing, 7=security/policy), and the detail (specific sub-condition). For example, 5.7.26 means: permanent failure (5), security/policy issue (7), DMARC violation (26). These codes are standardised across mail servers, making them more reliable than the free-text portion of the bounce message.

Several things can cause this: (1) The account existed but was deleted or deactivated. (2) Your sending IP or domain is on a blocklist β€” check with our Blacklist Checker. (3) Your SPF, DKIM, or DMARC authentication failed β€” check with our Domain Checker. (4) The recipient server is rate-limiting you (try again after a delay). (5) Your email content triggered a spam filter.

Remove them from your list immediately and permanently. Continuing to send to invalid addresses hurts your sender reputation with every major email provider. If you use an email marketing platform, it should suppress hard bounces automatically. If you manage your own sending, maintain a suppression list and never retry addresses that returned a 5.1.1 or 5.1.0 code. For DMARC/authentication bounces (5.7.26, 5.7.23), fix the underlying configuration issue first β€” these are not caused by bad addresses.

A 5.7.26 bounce means the receiving server's DMARC policy (p=reject) blocked your email because neither SPF nor DKIM passed with domain alignment. Common causes: (1) Sending through a third-party service that signs DKIM under their domain, not yours. (2) SPF passes but the envelope sender domain doesn't align with your From: header. (3) No DKIM signature at all. To fix this: configure your sending service to sign DKIM with your domain (aligned DKIM), and ensure your SPF record includes all sending IPs. Use our Domain Checker to verify alignment.

Data Collection: This Email Bounce Decoder processes data to provide results. Bounce messages you paste are sent to our server for parsing only and are not stored or logged. Messages may contain email addresses β€” we process them solely to return the analysis and immediately discard them. We do not store, log, or share the domain names or data you submit beyond what is necessary to return your results.

Data Usage: Your input is used solely to generate results. No data is saved, analysed for profiling, or shared with third parties. Each new check operates independently.

DNS Lookups: To check your domain, we perform DNS queries via Google's DNS-over-HTTPS (dns.google). These queries are subject to Google's Privacy Policy. Only the domain name is transmitted β€” no personally identifiable information.

Analytics: We may collect anonymized usage statistics (page views, tool usage frequency) to improve functionality. This does not include the domain names you check or any personally identifiable information.

Contact: For privacy enquiries or questions, please contact us at support@osh.co.za or visit osh.co.za/contact.