As we begin deployment IPV6 we are going to be in a mixed IPV4/6 environment - we have required access lists implemented for IPV4 and must applty the same ACL defined for for IPV6. Is it possible to apply IPV4 and IPV6 access lists concurrently on an interface or is a single access list containing both IPV4 and IPV6 addresses called for?
You will need to have concurrent ACLs applied to an interface.
The access lists are address familiy specific in their syntax and features so they cannot be mixed. An indicative example is shown below.
ip access-group test-v4 in
ipv6 traffic-filter test-v6 in
ip access-list extended test-v4
permit ip any host 126.96.36.199
deny ip any any
ipv6 access-list test-v6
permit ipv6 any host 2001:DB8::1
deny ipv6 any any