This article provides guidelines for using Azure Private Link in a hub-and-spoke network topology. The target audience includes network architects and cloud solution architects. Specifically, this guide discusses how to use Azure Private Endpoint to privately access platform as a service (PaaS) resources.
https://learn.microsoft.com/en-us/azure/architecture/networking/guide/private-link-hub-spoke-network
