Free SMTP Email Tester

Verify your SMTP mail server configuration by sending a real test email. Enter your server host, port, credentials, and a recipient address to instantly confirm everything is working.

Privacy: Your credentials are transmitted over HTTPS and used only for the duration of the SMTP connection. They are never stored or logged.

Related Tools

← All Tools Visitor Info Checker Hash Generator

Frequently Asked Questions

What is SMTP?

SMTP (Simple Mail Transfer Protocol) is the standard protocol for sending email. Mail servers and clients use SMTP to transmit messages between sender and recipient mail servers. The default ports are 25 (server-to-server), 587 (submission with STARTTLS), and 465 (SSL).

Why does my SMTP connection fail?

Common causes: wrong port or server address, firewall blocking the SMTP port, authentication credentials incorrect, SSL/TLS configuration mismatch, or the server requires a specific IP to be whitelisted. Check the server logs for the specific error code.

What are SMTP response codes?

2xx = success (250 = OK). 4xx = temporary failure (try again). 5xx = permanent failure (do not retry). Key codes: 421 (service unavailable), 450/451 (mailbox temporarily unavailable), 550 (mailbox not found), 554 (transaction failed).

SMTP Email Testing: Diagnosing and Fixing Email Delivery Problems

Email deliverability is a persistent challenge for developers and organizations. Transactional emails — welcome messages, password resets, order confirmations, invoices — are critical communication channels, yet they frequently fail to reach recipients due to misconfigured mail servers, DNS record issues, spam filter policies, and authentication failures. An SMTP tester is an essential diagnostic tool for identifying and resolving these issues by testing the email infrastructure before problems affect real users.

How SMTP Works

SMTP (Simple Mail Transfer Protocol) is the protocol that mail servers use to send and relay email messages. When you send an email, your mail client connects to an SMTP server and authenticates, then provides the sender address (MAIL FROM), the recipient address (RCPT TO), and the message content (DATA). The SMTP server either delivers the message directly to the recipient's mail server if it has the right domain, or relays it to another server closer to the destination. The conversation is a series of commands and numeric response codes, where 2xx codes indicate success, 4xx codes indicate temporary failures, and 5xx codes indicate permanent failures.

SMTP typically operates on port 25 for server-to-server communication, port 587 for client submission (with authentication and STARTTLS encryption), and port 465 for SMTPS (implicit SSL/TLS). Port 25 is often blocked by ISPs for residential connections to prevent spam bots from sending email directly. Most email clients and applications use port 587 with STARTTLS, which upgrades an initially plain connection to encrypted TLS before sending credentials or message content.

SPF: Authorizing Mail Senders

Sender Policy Framework (SPF) is a DNS-based email authentication mechanism that specifies which mail servers are authorized to send email for a domain. An SPF record is a TXT record in the domain's DNS zone that lists authorized sending sources — IP addresses, IP ranges, or other domains' SPF records. When a receiving mail server gets a message from your domain, it checks the SPF record to verify that the sending server is on the authorized list. Messages from unauthorized servers receive a "softfail" or "fail" result that may cause them to be filtered or rejected.

A well-configured SPF record includes all the servers that legitimately send email for your domain: your primary mail server, any marketing email services (Mailchimp, SendGrid), CRM tools (Salesforce, HubSpot), and any other third-party senders. Including too many records or creating overly broad authorizations (like ip4:0.0.0.0/0, which authorizes all IPs) weakens the effectiveness of SPF. SPF is also limited in that it validates the envelope sender (MAIL FROM) address, not the From header that users see, which is why it must be combined with DKIM and DMARC for comprehensive protection.

DKIM: Cryptographic Email Signing

DomainKeys Identified Mail (DKIM) adds a cryptographic signature to outgoing emails, allowing receiving mail servers to verify that the message was sent by an authorized sender and that the content was not modified in transit. The sending server signs message headers and body with a private key, and the signature is included as a DKIM-Signature header. Receiving servers retrieve the corresponding public key from the sender's DNS (as a TXT record under a selector subdomain like mail._domainkey.example.com) and verify the signature.

DKIM protects against both unauthorized sending and message tampering. A valid DKIM signature gives receiving servers confidence that the email genuinely came from the domain and arrived unmodified. Email service providers (ESPs) like SendGrid, Mailgun, and Amazon SES provide DKIM signing automatically, but you must add their public key to your DNS records to enable verification. The selector in the DKIM record allows multiple keys to be active simultaneously, making it possible to rotate keys without disrupting email delivery during the transition period.

DMARC: Policy-Based Email Authentication

DMARC (Domain-based Message Authentication, Reporting and Conformance) builds on SPF and DKIM to provide a policy framework that tells receiving servers what to do with messages that fail authentication. A DMARC policy is a TXT record specifying whether to quarantine (send to spam) or reject messages that fail SPF and DKIM checks, whether to send reports of authentication failures to specified email addresses, and the percentage of messages to apply the policy to (for gradual rollout). DMARC also adds a requirement that the SPF or DKIM result aligns with the domain in the From header, preventing attackers from passing SPF by sending through an authorized server for a different domain.

Deploying DMARC typically starts with a monitoring-only policy (p=none) to collect reports and understand current authentication status before moving to enforcement. DMARC aggregate reports (sent daily as XML attachments) show authentication pass/fail rates across all email streams, helping identify unauthorized senders and misconfigured systems. After resolving issues identified by monitoring, organizations gradually move to p=quarantine and eventually p=reject to fully protect their domain from email spoofing and phishing attacks using their brand name.

Diagnosing Common Email Delivery Problems

The most common causes of email delivery failures are: misconfigured SPF records that do not include all sending servers, DKIM signatures that fail due to message modification by intermediate servers or incorrect DNS records, reverse DNS (PTR records) that do not match the sending server's hostname, sending from IP addresses with poor reputation or on spam block lists, and missing or incorrect DMARC records. An SMTP tester can check many of these configuration elements directly, and tools like MXToolbox, Mail Tester, and Google Postmaster Tools provide comprehensive deliverability analysis for diagnosing persistent problems.

Bounce messages contain diagnostic codes that identify delivery failures. A 550 response code typically means the recipient address does not exist or the sender is blocked. A 421 response indicates a temporary failure — retry later. A 550 5.7.1 response often indicates spam filtering rejection. Reading and understanding SMTP response codes from bounce messages is the starting point for diagnosing any email delivery issue, and SMTP tester logs provide the raw conversation that shows exactly where in the transaction a failure occurred.