Azure Vnet peering with private endpoints

When I tried to access Cosmos DB private link in vnet2 I got the same error like below:

Request originated from IP xx.xx.xx.xx through public internet.his is blocked by your Cosmos DB account firewall settings.

To resolve this issue, make use of below steps:

As long as a valid authorization token is provided, your Azure Cosmos DB account is by default accessible from the internet. For IP policy-based access control to be configured, the user needs to provide a list of IP addresses in CIDR that will be added to the list of client IPs that are permitted to access a certain Azure Cosmos DB account.

Once this configuration is in place, any requests coming from machines that aren’t on the permitted list will result in a 403 (Forbidden) response. It is recommended to allow Azure portal to access your account when using IP firewall.

In your Cosmos -> Networking ->selected network -> add you existing virtual network (vnet2) like below:

• Make sure to update your firewall settings to add your current IP address to the firewall rules.
• Select the Allow access from Azure portal option and save like below:

Added private endpoint in vnet2:

Now, when I tried to access my cosmos db account got result successfully like below:

Reference:

Configure an IP firewall for your Azure Cosmos DB account | Microsoft Learn