Instead of opening ports 1-65535 (which is a security nightmare), define a restricted range in your FileCatalyst Server configuration (e.g., ports 50000-51000). Then, configure your firewall to allow TCP traffic only on that specific range.