The commands here are identical. the source and destination in the conduit is in swaped order of the access list.
Of cource there is an implicit deny statement, but if you want to deny access to specific hosts or services, you have to put these deny statements at the begining of the access list, to ensure that the access to these services are denied.
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...