Why you can't connect from the internet
Public access needs both a public endpoint and allowed inbound rules. Remote Desktop Protocol (RDP) and Secure Shell (SSH) need inbound access. VNet/subnet/NIC equals private IP only. Public IP address (or other public endpoint) enables public reachability. Network Security Group (NSG) must allow the inbound traffic.