I am trying to control pod to pod communication in EKS at layer 3/4 of OSI model. I am thinking to choose calico for east-west traffic ( pod to pod communication ) and pod to pod security groups for south-west ( pod to AWS external services ). I would like to know if someone from the industry has implemented such solution, so what are the things we should take care if we have to apply both the solutions on eks cluster. What things shall I take care while implementing the solution.
If a pod has both the calico and pod SG implemented on it so what will be the order of precedence and how to design the network policies in such a case.
Please if anyone has any experience implementing these two on eks then please share your valuable experience.
