Certain files downloaded via HTTPS are failing for me with the OpenSSL error "
error:1408F119
SL routines
SL3_GET_RECORD:decryption failed or bad record mac".
As far as I can tell, this very generic error means "I didn't like the packet I just got, it makes no sense; aborting connection." (Indeed, viewing a packet dump shows TCP RST being sent by my client to the server shortly after.)
I have found one file that almost consistently triggers the error: the Django (Python web framework) package at
https://pypi.python.org/packages/source/D/Django/Django-1.8.3.tar.gz#md5=31760322115c3ae51fbd8ac85c9... If I download it in wget on Linux
or Firefox on Windows, the download fails midway through almost every time. (wget spits out the error message; Firefox just says "failed")
I have tried the download both with my new router (running OpenWRT) and directly connected to my Gen4 HT1000 modem. Both cases fail. I'm examining packet captures from the router and from a tap between the router and the modem to see if I can shed more light on the issue, but there's not much to see so far. In all cases, I am running with Web Acceleration off, as always. I am willing to make sanitized package captures available to HughesNet engineers if it'll help with diagnostics.
I have one theory: IPv4 vs IPv6. I've had native IPv6 for awhile now through my homemade Linux router; IPv6 bypasses HughesNet's IPv4 CGN gateways. I'm going to investigate to see if the downloads fail ONLY with IPv4. Sadly, that server above only offers IPv4, so I need to find another large download on a dual-stack host that I can use for testing.
So: does anyone else get errors with that file (or any other large file on HTTPS)? Testing this issue is very annoying because it eats up my bandwidth allocation. I will have to run more tests early in the morning...
For what it's worth, my connection has been more unstable lately; it has gone down several times in the evenings the past month. But from what I read, that may be weather at the ground station.