Difference between 0.0.0.0/0 and ::/0 in access control lists

Any IPv6 adapter should always have two IP addresses if you're using it for internet traffic - your link-local address and your global address.

Your global address is world-routable, so anyone anywhere in the world can see that IP address (although of course, there should be a firewall between you and them to stop them from actually accessing you).

Your link-local address is just for your local area network. Consider it the equivalent of a 192.168.0.1 or 10.1.1.1 address. They are not routable, and can be used for internal communications, so that if your world-routable prefix changes, you don't have to update all your IP references to internal IP addresses.

The only functional difference is that your link-local address is not routable, and your global address must be routable. There are issues where non-routable global addresses have been allocated (via DHCPv6) for whatever reason, your computer THINKS it has a routable IPv6 address when it doesn't, and then all your IPv6 connectivity breaks.

_{I also notice that your global IP address has been assigned manually with a dot-decimal address, which makes me wonder if your IPv6 network is configured correctly as it's obviously not using auto-config with RA announcements)}

It shouldn't be different. As an example from one of my routers (redacted, obviously):

Jun 19 16:39:56.440: %IPV6_ACL-6-ACCESSLOGP: list tu0-internet-in/190 denied udp 2001:x:x:x::2(123) (Tunnel0) -> 2001:x:x:x:x:x:x:x(123), 2 packets

Jun 19 16:41:04.636: %SEC-6-IPACCESSLOGP: list internet-in denied tcp x.y.z.q(443) (GigabitEthernet0/3 beef.1aa1.beef) -> a.b.c.d(xxxxx), 1 packet

Do you have a terminating line on your ipv6 ACL with an explicit deny w/log-input, like:

ipv6 access-list tu0-internet-in ... sequence xxx deny ipv6 any any log-input

Adding a sample of the ACL's in question for purposes of comparison would help, but I suspect it may just be the explicit deny that should fix things.