Hi,
Well done!
Quick answers to your questions:
When you specify the parameter est (established) the ACL checks whether some control bits within tcp header are set (ACK,FIN,RST,SYN,URG). Effectively you are looking for the already established connection (ie. typically openened from the opposite end). The suggested ACL would work without this parameter as well, this gives you additional security.
Your post example of ACL 101 is likely a mixture of what is to be set. The reason you have not succeeded is that by your output access list you are permitting the ftp open connection (control) from hostA to hostB which is perfectly OK and also the packet sourced from hostB, tcp port 20 to host A (still output) - I doubt a packet like that may appear here as the ouput at all - and deny everything else (implicit deny any any at the end of ACL). So your ACL does not allow data connection, which typically goes from hostA, port greater than 1023 (you could add this parameter to suggested ACL and get a bit more security - not too much) to hostB port 20 (this is "classical" port mode ftp behaviour). I am not going to comment the sample you used as I have not seen it.
Your (input) ACL 102 is not too bad - not filtering ftp data - but will not help you to establish ftp data channel either.
If you specify tcp parameter in your ACL you can further say which tcp port you are looking for: either source or destination - these are standardized to some extent, so that is why you can allow or deny certain higher level protocols (applications) - the same applies to udp (here you cannot use the est parameter). Again I am not going to comment why in ccna it is all destination as you said - just be aware that you can use both.
I hope my English makes sense.
Good luck with your ccna!
Best regards,
Antonin
