A dead letter queue (DLQ) is a queue that stores messages or events that could not be processed successfully after multiple delivery attempts. Instead of discarding failed events, the system moves them to a separate queue where engineers can inspect, troubleshoot, and replay them later.

Dead letter queues are commonly used in message queue systems, event-driven architectures, and webhook infrastructure to prevent silent data loss. For example, if a webhook delivery fails because the destination endpoint is unavailable, the system may retry delivery several times. If all retry attempts fail, the event can be moved to a dead letter queue instead of being permanently lost.

Why Is a Dead Letter Queue Important?

Failures are inevitable in distributed systems. Endpoints go down. APIs return errors. Networks become unavailable. Deployments introduce bugs. The question isn't whether failures will happen. It's what happens to the event when they do.

Without a dead letter queue, failed events often disappear after retries are exhausted. Recovering them usually requires digging through logs, reconstructing payloads, or asking customers to repeat actions. With a dead letter queue, failed events remain available for investigation and recovery. This gives teams:

• Visibility into failed events
• Reduced risk of data loss
• Faster debugging
• Easier recovery through event replay
• Better operational reliability

How Does a Dead Letter Queue Work?

A typical dead letter queue workflow looks like this:

1. An event is generated.
2. The system attempts delivery.
3. Delivery fails.
4. The system performs retries based on a configured retry policy.
5. All retry attempts fail.
6. The event is moved to the dead letter queue.
7. Engineers investigate the failure.
8. The event can be replayed after the issue is resolved.

The dead letter queue acts as a safety net between a temporary delivery failure and permanent event loss.

Dead Letter Queue Example

Imagine a payment platform sends a webhook when a customer completes a transaction. The receiving server is temporarily down and returns a 500 error. The platform retries the webhook several times over the next few hours, but every attempt fails. Instead of dropping the event, the platform moves it into a dead letter queue. Once the receiving server is healthy again, the event can be replayed and delivered successfully. Without a dead letter queue, that payment notification might never reach its destination.

Dead Letter Queue vs Retries

A common misconception is that retries eliminate the need for a dead letter queue. They don't. Retries help recover from temporary failures. Dead letter queues handle the failures that retries cannot resolve.

Most reliable systems use both.

Dead Letter Queues for Webhooks

Dead letter queues are especially important for webhook systems. Webhook deliveries depend on external endpoints that may be unavailable, overloaded, misconfigured, or experiencing downtime. Even with a robust retry strategy, some deliveries will eventually reach retry exhaustion. A dead letter queue provides a safe destination for those failed events, making them visible and recoverable rather than silently disappearing. This is particularly important for payment notifications, order updates, account events, and other business-critical workflows where losing an event can create inconsistencies between systems.

Managing Dead Letter Queues With Convoy

Convoy includes built-in support for handling failed webhook deliveries. Instead of losing events after retries are exhausted, teams can inspect failed deliveries, understand what went wrong, and replay events when the receiving endpoint becomes available again. This makes it easier to maintain reliable webhook infrastructure without building custom tooling for failure recovery and event replay.

Conclusion

A dead letter queue is a simple but essential component of reliable event-driven systems. By storing failed events instead of discarding them, dead letter queues give teams visibility into delivery failures, reduce the risk of data loss, and make recovery possible through event replay.

If you're building webhook infrastructure, a dead letter queue should be part of your delivery strategy from day one. Convoy provides built-in support for failed event handling, visibility, and replay so you can focus on building products instead of managing webhook failures.

Frequently Asked Questions

What is the difference between a dead letter queue and a regular queue?

A regular queue holds messages that are waiting to be processed for the first time. A dead letter queue holds messages that have already failed processing or delivery after exhausting their retry attempts, so they can be inspected and replayed instead of being lost.

What causes a message to end up in a dead letter queue?

Messages typically land in a dead letter queue after retry exhaustion, when an endpoint is unreachable, when a request repeatedly times out, when the destination returns persistent errors, or when a malformed payload cannot be processed.

Do dead letter queues replace retries?

No. Retries and dead letter queues solve different problems. Retries recover from temporary failures, while a dead letter queue captures the events that still fail after every retry attempt. Reliable systems use both together.

When should you use a dead letter queue?

Use a dead letter queue whenever losing an event has real consequences, such as payment notifications, order updates, account events, and other business-critical workflows where data loss creates inconsistencies between systems.

How do you recover events from a dead letter queue?

Once the underlying issue is resolved, the failed events can be replayed from the dead letter queue and delivered successfully. Convoy provides built-in inspection and replay so you can recover failed deliveries without rebuilding payloads or asking customers to repeat actions.