I am having issues trying to allow inbound ftps connections on the outside interface. I have an access-list allowing tcp/990 as well as tcp/989 (ftps-data.) I can actually establish a connection however files and folders do not show up. When I view the server logs I can see that it is unable to open a port for data, it appears to be a random high port number. I have tried to create a policy/class map to match traffic to TCP/990 and 'inspect ftp' as the action. However I was reading online that this will not work since it is encrytped traffic the ASA will not see it as ftp. I am currently also trying to determine if I can set static data ports on the server and just allow that traffic. On a side note sftp works fine. Thanks.