I set up an application server, windos server 2003 r2, with ftp installed. Now I would like to connect to this server from clients that are on another network, divided from a CISCO ASA firewall. I opened tcp 20 and 21 ports; trying to connect from clients, the ftp client established a connection but does not list the folder. Here are the lines from my FTP client: Status: Connected Status: Retrieving directory listing... Command: PWD Response: 257 "/" is current directory. Command: TYPE I Response: 200 Type set to I. Command: PASV Response: 227 Entering Passive Mode (10,1,1,1,8,87). Command: LIST Response: 425 Can't open data connection. Error: Failed to retrieve directory listing I think that 10,1,1,1,8,87 is the problem. I have no 8 or 87 tcp ports open and I don't want to open them. How can I do ? Is it possible to do all transfer on 20/21 instead of those random ports ? Thanks for help.