Is there a way I can restrict a specific service can only use the specific service entry.
For now, If I create a service entry any pod inside the mesh is able to connect to the destination mentioned in the service entry.
You can set your SE in a specific namespace and set exportTo to “.”, like:
apiVersion: networking.istio.io/v1alpha3
kind: ServiceEntry
metadata:
name: name_of_your_se
namespace: ns_where_your_service_lives
spec:
exportTo:
- .
(...)