Calico policy only mode not working


I have a k8s cluster on ibm cloud . We are using it with our home grown mtacvlan based cni plugin for ip/management .
We want to use calico policy only mode for enforcing policies, but as soon as calico policy only mode is applied , new pods struck in container creating .

Policy only mode has requirements on the CNI plugin; therefore, only certain CNI plugins are supported (flannel, AWS VPC CNI, Google CNI).

The requirements include:

  • CNI plugin must be routed (not bridged)
  • CNI plugin must name its workload interfaces according to the same scheme that the other plugins use.