I now realize there is no response from devs because there are no restrictions on communicating outside of hub subnet. My issue was a network misconfiguration that I fixed and everything is now working as expected.
I can confirm that with correct routing in place, you can segregate your network as much as you want and it still works without any issues.
