Hi all, this is my first time experimenting with Calico and I’m trying to figure out a way to be able to determine which pod sent traffic out of an AKS cluster to an external firewall through which traffic is routed based on the source IP of a packet. I know this is possible with the Azure CNI but I would like to use Calico because I only have a limited set of private IP’s available (which is a problem when using the Azure CNI) and I like the added configuration options Calico brings. Not all pods will sent traffic through this firewall so only a certain amount of pods need a routable (to the firewall) source IP, so I think that the limited IP range should not be a problem. Ideally I would be able to determine whether a pod’s IP should be NAT’d to its node’s IP or just get its own routable IP when sending traffic outside of the k8s cluster. I don’t know whether or not this is possible at all or if I’m just looking at this from the wrong angle. I appreciate any help I can get. Thanks in advance!