I have a question about applying multiple access-group commands to the same interface.
Way back in the acient past you could only apply one access-group command to an interface (either in or out but not both). Is this still true?
If you can apply both In and Out access-group commands to an interface is there any caveats to do so (other than mis-configuraing the ACL)?
I am running IOS on 12.2.18 on a 6504 witha Sup720-3B sup module.
I have worked with IOS going back as far as 9.14 it has not been the case that you could apply only one access-group to an interface (either in or out but not both). It has always been possible to have one in and one out on the same interface. The caveats of having 2 access-groups on an interface are the same as the caveats of having 1 access-group.
You can apply one access list in each direction to each interface in an IOS router. Not 100% sure if that applies to SVIs and routed ports in the 6509 Sup, but I don't see why not.
I'm not aware of any caveats. This has been the behaviour as long as I remember.