Struggling with Network Policy

Hello,

I’m struggling with a NetworkPolicy.

I’ve a namespace in which I’ve an application that need to be accessed from outside (ingress) of the cluster and access others servers (egress).

Here is my config file :

apiVersion: networking.k8s.io/v1
kind: NetworkPolicy
metadata:
  name: np-X
  namespace: ns-X
spec:
  podSelector:
    matchLabels:
  egress:
  - to:
    - ipBlock:
        cidr: A.B.C.D/32
    - ipBlock:
        cidr: E.F.G.H/32
  ingress:
  - from: [] 

So for me : everything in Ingress is accepted for all pods in the namespace and only egress to the specifcs ipBlocks are accepted.

Am I wrong or not ?

Regards