Ooooh, now I get it. People from the
outside can connect, but not from the
inside, is that it? If so, that's not so strange and entirely expected.
You've set the FTP server to tell the clients to make data connections to your external IP, so any machine inside your network is likely to be confused.
One workaround, if your router supports it, is for the clients inside the network to connect to your external IP just like external clients. This, however, can slow down your transfers, as they have to go through the router.
Some servers support selection of using the passive mode settings for certain clients or not, but yours doesn't look like it does.
The last solution is to set up a specific port for the internal computers which doesn't use the normal passive mode settings. Some servers again support this, if yours does, I don't know. Often by making two virtual servers in the FTP server.
There might be other workarounds as well, but these are the ones I can think of.
Oh and one more thing, skip the +-1 ports! It's just useless (since -1 isn't used anymore even if it's in the original standard). It's pretty much like knowing your friend's home address and still sending his mail in copies to his neighbours "just in case". See my point?
And can people pleeeaaase stop saying that you should forward port-1 or 20? It's not used in PASV mode anyway. Afaik the only time it's used is in PORT mode and even then it's only used for
outgoing connections which means you don't have to forward it for incoming connections anyway.
*stops ranting*