If you’re having trouble accessing Quill’s activities, and you have already completed our other troubleshooting tips, your school is likely encountering some firewall issues when trying to access activities on Quill.org.
Firewall issues will generally need to be dealt with by your IT Department. We've written a brief text you can send them below. If it does not resolve your issues, please let us know.
Quill uses various subdomains, and Firebase to store data, so please whitelist *.quill.org as well as *.firebaseio.com.
As of August 2016, Google has issued a new SSL certificate for all apps hosted by Firebase, causing issues with firewalls like FortiGate. AwesomeTable discovered this issue, and we've copied their explanation and solution below:
The issue appears to be linked to the number of SANs in the certificate, which is almost a thousand. We don't know if Google is going to change something here. If you are a Fortinet user, you can enable/check "Inspect All Ports" in Policy & Objects > Policy > SSL/SSH Inspection > [your policy].
Explanation: when "Inspect All Ports" is DISABLED (you're scanning specific ports), the FortiGate's proxyworker process is doing the SSL Inspection. The proxyworker isn't able to handle all of those SANs. However, if "Inspect All Ports" is ENABLED, SSL Inspection gets offloaded to the IPS Module, which is able to handle that number of SANs just fine.
Another solution is to write firewall rules to allow traffic with no certificate inspection for cdn.firebase.com (220.127.116.11), firebase.com, and quill.org. You can test Firebase access here https://www.firebase.com/test.html
If you have any questions, please reach out to firstname.lastname@example.org.
The Quill Engineering Team
Credit to AwesomeTable for discovering the source of this complication.
Have more questions?
Please feel free to live chat with us through the green message bubble on the bottom right corner of the screen or email us at email@example.com.