Calico policy not getting enforced

Hi All. I am trying to apply the below istio network policy to a cluster where we have flannel as a CNI. We need to allow the pods running on policy-demo namespace to have egress communication to the below cidr address… After applying the policy i see the connection is still open to other CIDR block. Any help would be appreciated

Version: istio-1.5.1

Blockquote

kind: NetworkPolicy
apiVersion: networking.k8s.io/v1
metadata:
name: alow-egress-traffic
namespace: policy-demo
spec:
podSelector:
matchLabels:
app: curl
egress:

  • to:
    • ipBlock:
      cidr: 152.xx.xx/32
    • ipBlock:
      cidr: 152.xx.xx/32

Blockquote