In the past 6 months, I’ve noticed that downloads tend to hang at 99% completed. I particularly notice this on linux clients doing both apt update or and dist-upgrade. The same thing happens in updatexlrator where many packages stay at 99% for a few minutes. I would guess this happens on 1/3 of the files.
We have slow bandwidth here (satellite, 2Mbps download) with many devices (50+), so performance is always slow, but something definitely seems to be affecting the final packet(s) of a transfer. I haven’t found any clues in log files, iptables etc.
It seems to have started around the time that suricata was added to ipfire, but suricata is not enabled. I verified that it is still happening today (core138). I’m not sure how to trouble-shoot this. I’m going to look into tshark.