Zero Trust Architecture Deployment - with Hub and Spoke networking

[aaron-gibbons]

Hello,
I have deployed the Zero Trust Architecture Deployment via the automated installation on our own internal IP range. I've used this automated install to ensure all of the resources were configured with the proper permissions and I can verify that everything is working first. From there I have made some changes to get the application connected to our peered VNet so that everything is available on our internal network. This was done by adding new private endpoints on each resource connecting them to our peered VNet. I also routed the existing GPT-RAG VNet DNS servers to our own. This should make sure everything goes through our hub and spoke network setup routing through our DNS to the DNS Zone set up in our peered subscription. I did run into some issues with this thinking I could remove the original GPT-RAG generated private endpoints and leave the new "peered" ones. As of now both remain. My question is what else could I be missing for this set up to ensure everything is routing properly?