Today one of my colleagues asked an excellent question which had me stumped. He was looking at the Virtual Network Terraform Resource and found the private_endpoint_vnet_policies property, but couldn’t find any documentation explaining the purpose. So I tried my own Google-fu and similarly failed to find any information. I did manage to find the privateEndpointVNetPolicies property of the Microsoft.Network/virtualNetworks api, but as normal the API documentation expects you to understand the settings, it doesn’t explain them to you.

I then did what any good engineer would, and turned to AI. And all the bots (that I tried) decided that I cared about the privateEndpointNetworkPolicies setting and set about explaining how to use it. When I pointed out their mistake (does that put me up the priority when the revolution comes?) they pointed me to the (in public preview at the time of writing) High Scale Private Endpoints feature. By setting the privateEndpointVNetPolicies/private_endpoint_vnet_policies property to Basic (does anyone else smell a Standard tier with pricing coming?) it enables one to have up to 5,000 private endpoints (up from a measly 1k) in a Virtual Network (/19 anyone?) and 20,000 (up from 4k) across your peered networks.