Back
azure hub spoke private endpoint terraform architecture diagram
15Apr, 2026

Extending Azure Hub-and-Spoke Routing with Terraform Modules: Private Endpoint, DNS, and RBAC

Introduction Azure hub spoke private endpoint Terraform setups are where simple designs start to break. In a previous article, I showed how to build hub-and-spoke routing in Azure using Terraform/OpenTofu modules. That setup introduced a key idea: Hub-and-spoke is not about peering. It is about controlling traffic flow. But that …

Read More
azure network segmentation terraform nva dual nic architecture
10Apr, 2026

Azure Network Segmentation with NVA – Dual NIC Design Explained

Introduction Azure network segmentation Terraform is a key pattern used to define boundaries and control traffic in hub-and-spoke architectures. In previous articles, we explored how to connect VNets, control routing, and enforce outbound traffic using forced tunneling. At this point, the architecture may look complete: VNets are connected Traffic is …

Read More
azure vnet peering terraform hub and spoke architecture
02Apr, 2026

Azure VNet Peering with Terraform – Why Hub-and-Spoke Is Not Transitive

In this guide, we explore how Azure VNet peering Terraform works in real-world hub-and-spoke architectures. When engineers start building hub-and-spoke architectures in Azure, there is one assumption that almost always appears: If both spokes are connected to the hub, they should be able to communicate with each other. That assumption …

Read More