OK, you now know what passive and active ftp are. Now, Cisco devices have very specific ways of dealing with this kind of traffic. You're doing good, don't give up yet as the additional help you have been given is pointing you in the right direction. Take a look at the Cisco site and look at the doc that deals with ACLs for FTP. Oh, and a cleanup rule is something you'll want to keep in mind as you will need this info to get this little guy working. Don't worry about routing right now, that isn't your problem.