Hello!
The old endpoint from Classic VM:s have been replaced with NSG (Network Security Groups) and can be attached to Subnets or the VM:s Network Interface. The act as filter in what traffic is allowed to flow “trough” it.
So you need to create a Network Security Group and attach that to a subnet or network interface on your VM, inside the network security group you can configure inbound and outbound rules, based on port, IP (Layer 3 or 4).
To create an NSG, type NSG or Network Security Group in the search in the portal.
down below is a picture of the interface for an NSG with default configuration.
There is also a filtering called ASG or Application Security Group that can filter on a more "function/application" approach, for example you can have an ASG with specific database ports and apply it to databases in different subnets.
Hope this helps! if you found this helpful pls accept the answer!
Kind Regards Timmy