FTP via SSL forward af port?

Jeg har en FTP server, som jeg kun vil tillade trafik til via SSL.
SSL virker fint, men hvis jeg prøver via alm. ftp forbindelse virker dette også. Jeg vil gerne have spærret traffiken via alm. ftp. Er der nogen bestemte port jeg skal forwarde og andre jeg skal spærre?.
Jeg har en D-Link Firewall med router, så jeg har mange muligheder for at styre traffiken på netværket.

Sådan ser det ud når jeg logger ind via SSL:
tatus:    Connected with 192.168.1.10, negotiating SSL connection...
Response:    220 Cube Station FTP server at CS-406_Server ready.
Command:    AUTH SSL
Response:    234 AUTH SSL OK.
Status:    SSL connection established. Waiting for welcome message...
Command:    USER admin
Response:    331 Password required for admin.
Command:    PASS ***********
Response:    230 User admin logged in.
Command:    SYST
Response:    215 UNIX Type: L8
Command:    FEAT
Response:    211- Extensions supported:
Response:    AUTH TLS
Response:    PBSZ
Response:    PROT
Response:    SIZE
Response:    MDTM
Response:    REST STREAM
Response:    211 End.
Command:    PBSZ 0
Response:    200 PBSZ command successful (PBSZ=0)
Command:    PROT P
Response:    200 Protection level set to Private.
Status:    Connected
Status:    Retrieving directory listing...
Command:    PWD
Response:    257 "/" is current directory.
Command:    TYPE A
Response:    200 Type set to A.
Command:    PASV
Response:    227 Entering Passive Mode (192,168,1,10,4,129)
Command:    LIST
Response:    150 Opening ASCII mode SSL data connection for 'file list'.
Status:    SSL connection established
Response:    226 Transfer complete.
Status:    Directory listing successful
Command:    TYPE A
Response:    200 Type set to A.