Filezilla server SSL/TLS

In the linked thread, the servrer requested that the browser connect on port 5008 the first time and 5009 the second time.

Do I need to open port 20?

opening port 20 doesn't work either.

Unless you are doing active ftp, you don't need port 20 open.  In fact even if you opened it, you probably did it wrong.  When doing active ftp the server initiates a outbound connection with the source port of 20 to a high port on the client.

Just to make sure.  On your router/firewall you have ports 5000-5100 setup so that when a inbound request comes in with those ports as a target port, it will forward to your ftp server?

You are doing this from a PC that is on the Internet, not one that is on the same network as the ftp server, right?

Ports 5000-5100 are open and forwarding to the FTP server. I am testing from a PC outside the network.

O.K, then on the ftp server you need to run a packet capture to see if anything is actually making it back to the ftp server.

I suggest using wireshark (http://www.wireshark.org).

If you see nothing getting back to the server, then either your router/gateway is not fordwarding correction, the router being used the the testing PC is not forwarding it correctly, or your ISP is blocking the traffic.

Is your ISP account a home account or a business account?  Some ISP's will block some traffic when you have a home account.

So the connection is going through a PIX/ASA. Anything showing in the logs there?

ports 5000 to 5100 are needed to be opened on the ftp server firewall right?