troubleshooting Question

understanding access list

Avatar of jskfan
jskfanFlag for Cyprus asked on
3 Comments1 Solution699 ViewsLast Modified:
I get some confusion about access lists and need to understand this topic better:
 1- Access-lis 123 deny tcp eq 20 any
Does that mean the only hosts that will have access denied to FTP are  the  To ??
2- I have seen some commands such as:
Access-list  100 Deny ip any
I want to know why the deny IP is in the extended  list (100). and not in the standard?
3-according to cisco rules Stadard list is applied at the destination interface and the extended list at the source interface, but I have also seen the access-group in and the access-group out applied. I wonder in which case I need to use the OUT or the IN with access-group.

Join the community to see this answer!
Join our exclusive community to see this answer & millions of others.
Unlock 1 Answer and 3 Comments.
Join the Community
Learn from the best

Network and collaborate with thousands of CTOs, CISOs, and IT Pros rooting for you and your success.

Andrew Hancock - VMware vExpert
See if this solution works for you by signing up for a 7 day free trial.
Unlock 1 Answer and 3 Comments.
Try for 7 days

”The time we save is the biggest benefit of E-E to our team. What could take multiple guys 2 hours or more each to find is accessed in around 15 minutes on Experts Exchange.

-Mike Kapnisakis, Warner Bros