ALERT: Some images may not load properly within the Knowledge Base Article. If you see a broken image, please right-click and select 'Open image in a new tab'. We apologize for this inconvenience.

SMTP Code: "554 5.7.1" and the message is rejected


Article ID: 155061


Updated On:


Messaging Gateway


Symantec Messaging Gateway does not deliver to an external domain, and the Message Audit Log (MAL) shows a final delivery status with the "554 5.7.1" code.


SMTP code "554 5.7.1" is a rejection from the Recipient Domain. SMTP code "554 5.7.1" means 'Not allowed'. The address in 'Mail From' appears to have insufficient submission rights, or is invalid, or is not authorized with the authentication used; the address in an RCPT TO command is inconsistent with the permissions given to the user; the message data is rejected based on the submitting user. A 5xx level status code indicates a "terminal" status and SMG will not attempt to redeliver the message.

Possible scenarios:

  • The IP address has been included in a Real-Time Blacklist due to Spam coming from your domain.
  • Your domain or IP address has been blacklisted by the recipient.


  • See Deployment best practices for Messaging Gateway for configuring both inbound and outbound traffic.
  • Ensure that Messaging Gateway is scanning outbound messages for spam, and that spam filters are updated.
  • Follow the standard recommendations for SMTP validation on your DNS records: implement Reverse DNS and Sender Policy Framework.
  • Ensure that your internal network is not compromised by making sure that local antivirus is installed and updated.
  • Ensure that the firewall only allows connections on port 25 to your antispam or mail servers. Also, ensure that outbound connections to port 25 are limited to SMG or other trusted mail sources.
  • Confirm that your externally facing IP address or network is not listed as a spam source. See  Symantec IP Reputation Investigation.