I get some confusion about access lists and need to understand this topic better:
1- Access-lis 123 deny tcp 192.168.166.18 0.0.0.7 eq 20 any
Does that mean the only hosts that will have access denied to FTP are the 192.168.166.18 To 192.168.166.25 ??
2- I have seen some commands such as:
Access-list 100 Deny ip 192.168.166.1 0.0.0.0 any
I want to know why the deny IP is in the extended list (100). and not in the standard?
3-according to cisco rules Stadard list is applied at the destination interface and the extended list at the source interface, but I have also seen the access-group in and the access-group out applied. I wonder in which case I need to use the OUT or the IN with access-group.