Istio Authentication

Hi,

I need clarification on applying peer authentication to a service. As I believe any service inside the service mesh with side car can reach other service in the same service mesh. Also service mesh provides identity to each service automatically. Any service with sidecar in the mesh, even in different namespace can reach the other service in the mesh, when a peer authentication is applied to service.
[OR] even the service trying to reach the destination service should also have the same authentication enabled?

أhello Vjraj381

Peer Authentication policies are used to secure service to service communication in kubernetes cluster with Istio Service Mesh by automating the process of generation, distribution and rotation of certificates and keys.
so the authentication should be enabled on the destination service, or we can apply it on namespace level.

thanks,
KodeKloud