Could you disable the firewall for a moment and check if secured connections are working. This test may quickly help discard that it’'s not an SSL issue. Opening port 5222 and 5223 should be enough. If you want to be able to access the Admin Console from outside then port 9090 should be opened too. For s2s you will need to open port 5269 and for external components you may need to open port 10015 if you are going to connect an external component from outside your LAN.
Notice that all the above ports are the default ports and may be changed from the Admin Console.
I have setup JiveMessenger to Web Port 80, even with SSL active, so my PSI-clients have no problems coming trough firewalls when they have access to the internet (standard Port 80). Most Admins block Port 5222+5223. Works perfect.