I suspect this is due to application firewall on the Nginx server.
Can resolve downloads.openwrt.org.
Can ping downloads.openwrt.org
Can connect to downloads.openwrt.org:80
Can't pull down Packages.gz over TLS
twiglets# curl -vvvv http://downloads.openwrt.org/releases/19.07.7/targets/ath79/generic/packages/Packages.gz
GET /releases/19.07.7/targets/ath79/generic/packages/Packages.gz HTTP/1.1
Host: downloads.openwrt.org
User-Agent: curl/7.66.0
Accept: /
< HTTP/1.1 301 Moved Permanently
< Server: nginx/1.14.2
< Date: Mon, 19 Jul 2021 09:58:28 GMT
< Content-Type: text/html
< Content-Length: 185
< Connection: keep-alive
< Location: https://downloads.openwrt.org/releases/19.07.7/targets/ath79/generic/packages/Packages.gz
<
301 Moved Permanently
nginx/1.14.2
twiglets# date ; time curl -vvvv https://downloads.openwrt.org/releases/19.07.7/targets/ath79/generic/packages/Packages.gz ; date
Mon Jul 19 19:39:57 AEST 2021
- ssl_handshake returned - mbedTLS: (-0x0050) NET - Connection was reset by peer
curl: (35) ssl_handshake returned - mbedTLS: (-0x0050) NET - Connection was reset by peer
curl -vvvv 0.66s user 0.02s system 0% cpu 2:04.35 total
Mon Jul 19 19:42:01 AEST 2021
twiglets# host downloads.openwrt.org
downloads.openwrt.org is an alias for mirror-02.infra.openwrt.org.
mirror-02.infra.openwrt.org has address 168.119.138.211
mirror-02.infra.openwrt.org has IPv6 address 2a01:4f8:251:321::2
twiglets# ping 168.119.138.211
PING 168.119.138.211 (168.119.138.211): 56 data bytes
64 bytes from 168.119.138.211: seq=0 ttl=53 time=303.318 ms
64 bytes from 168.119.138.211: seq=1 ttl=53 time=304.514 ms
^C
--- 168.119.138.211 ping statistics ---
2 packets transmitted, 2 packets received, 0% packet loss
round-trip min/avg/max = 303.318/303.916/304.514 ms