I have two RB3011 routers having the same issue since last Friday. After reading the forums, it appears to be a similar situation relating to the vulnerability discovered in April. I have since updated Winbox and will be working on improving my firewall. I have done the basic password change, RouterOS updates, and Routerboard firmware update. I also reset configuration and restored a know good backup from earlier this year. Before doing the reset and update, I found an added user “service”, a script/schedule, and a bunch of changes to the firewall.
Now that I’m running on the restored configuration, I’m still having an issue where the DHCP client will pull an address from the cable modem and everything will work for 10-20 minutes. At random, I will lose internet access (not just DNS, I tried pinging a Google IP with no success). When this happens, there is nothing shown in the log and a DHCP renew is all it takes to start working again.
While troubleshooting this, the only thing I noticed is an occasional time change from cloud, to the incorrect time/date, so I disabled the time option. I don’t see any configuration changes that look out of place (checked firewall, users, scripts, SOCKS, and the log) but this issue is occurring regularly at both locations. Any ideas/suggestions? Would a netinstall be the next step?
Thanks for the help, I really need to get these issues resolved quickly!