Thanks for your question and apologies for the delayed response. Yes, you can choose public or private IP addresses when creating your VNET. Whether you define the address range as public or private, the address range is reachable only from within the virtual network, from interconnected virtual networks, and from any on-premises networks that you've connected to the virtual network.
While it is possible to use public IP addresses, we recommend that you use the address ranges enumerated in RFC 1918, which have been set aside by the IETF for private, non-routable address spaces:
- 10.0.0.0 - 10.255.255.255 (10/8 prefix)
- 172.16.0.0 - 172.31.255.255 (172.16/12 prefix)
- 192.168.0.0 - 192.168.255.255 (192.168/16 prefix)
Firewall rules are not required for outbound access on your VNET, however you will need to have the appropriate Network Security Group configured to allow the access. By default Virtual machines created in a virtual network without explicit outbound connectivity defined are assigned a default outbound public IP address. This IP address enables outbound connectivity from the resources to the Internet. This access is referred to as default outbound access.
Hope this answers your question! Let us know if you need further clarification and we will be happy to help!
Please don’t forget to "Accept the answer" wherever the information provided helps you, this can be beneficial to other community members.