Hello, i found that NAT-PMP service is not working properly after startup router
[suslayer@gw] > /system/resource/print
uptime: 1m21s
version: 7.20.7 (long-term)
build-time: 2026-01-08 09:40:00
factory-software: 6.46.6
free-memory: 132.8MiB
total-memory: 256.0MiB
cpu: ARM
cpu-count: 4
cpu-frequency: 672MHz
cpu-load: 2%
free-hdd-space: 86.1MiB
total-hdd-space: 128.0MiB
write-sect-since-reboot: 41
write-sect-total: 49540113
bad-blocks: 0%
architecture-name: arm
board-name: hAP ac^3
platform: MikroTik
service natpmp is running
[suslayer@gw] > /ip nat-pmp/print
enabled: yes
[suslayer@gw] > /ip service/print
Flags: D - DYNAMIC; X - DISABLED, I - INVALID; c - CONNECTION
Columns: NAME, PORT, PROTO, CERTIFICATE, VRF, MAX-SESSIONS, LOCAL, REMOTE
# NAME PORT PROTO CERTIFICATE VRF MAX-SESSIONS LOCAL REMOTE
0 X ftp 21 tcp main 20
1 ssh 22 tcp main 20
2 X telnet 23 tcp main 20
3 D resolver 53 tcp
4 D resolver 53 udp
5 D dhcp 67 udp
6 D dhcpclient 68 udp
7 www 80 tcp main 20
8 D ntp 123 udp
9 X www-ssl 443 tcp Lets encrypt1768135692 main 20
10 D ipsec 500 udp
11 D manager 1812 udp
12 D manager 1813 udp
13 D btest 2000 tcp
14 D radius 3799 udp
15 D ipsec 4500 udp
16 D natpmp 5351 udp
17 winbox 8291 tcp main 20
18 D c winbox 8291 tcp 192.168.95.1 192.168.95.41:55664
19 X api 8728 tcp main 20
20 X api-ssl 8729 tcp none main 20
but testing attempt display the public IP address returns error
suslayer@apple ~ % natpmpc
initnatpmp() returned 0 (SUCCESS)
using gateway : 192.168.95.1
sendpublicaddressrequest returned 2 (SUCCESS)
readnatpmpresponseorretry returned -7 (FAILED)
readnatpmpresponseorretry() failed : the gateway does not support nat-pmp
errno=61 'Connection refused'
suslayer@apple ~ % natpmpc -a 60123 60123 tcp
initnatpmp() returned 0 (SUCCESS)
using gateway : 192.168.95.1
sendpublicaddressrequest returned 2 (SUCCESS)
readnatpmpresponseorretry returned -7 (FAILED)
readnatpmpresponseorretry() failed : the gateway does not support nat-pmp
errno=61 'Connection refused'
applications(qbittorrent) also cannot forward the port, after reenabled service is work properly
[suslayer@gw] > /ip nat-pmp/set enabled=no
[suslayer@gw] > /ip nat-pmp/set enabled=yes
suslayer@apple ~ % natpmpc
initnatpmp() returned 0 (SUCCESS)
using gateway : 192.168.95.1
sendpublicaddressrequest returned 2 (SUCCESS)
readnatpmpresponseorretry returned 0 (OK)
Public IP address : XXX.XXX.XXX.XXX
epoch = 4
closenatpmp() returned 0 (SUCCESS)
qbittorrent success forward port
2026-01-25 10:28:12 natpmp,info new mapping: proto tcp, ports: 42033->42033, internal ip:192.168.95.41
2026-01-25 10:28:12 natpmp,info new mapping: proto udp, ports: 42033->42033, internal ip:192.168.95.41
[suslayer@gw] > /ip/firewall/nat/print
14 D ;;; natpmp XXX.XXX.XXX.XXX
chain=dstnat action=dst-nat to-addresses=192.168.95.41 to-ports=42033 protocol=tcp dst-address=XXX.XXX.XXX.XXX in-interface=broadband dst-port=42033
please help fix this error