Allowing unrestricted, public access to cloud services could open an application up to external attack. Disallowing this access is typically considered best practice.
In Azure Console -
In Terraform -
References:
https://learn.microsoft.com/en-us/azure/batch/public-network-access
https://registry.terraform.io/providers/hashicorp/azurerm/latest/docs/resources/batch_account#public_network_access_enabled