@Rusydan (Dan) Thank you for reaching out to Microsoft. I understand that you want to know the right way to access the Azure Storage from your organization by allowing access to it in your internal firewall.
As you mentioned, if you prefer to access it via the Public IP range, this range will be updated weekly so you will need some kind of script to update it on a regular basis. Its best to go with the private endpoint option.
Here are more details regarding the same- https://learn.microsoft.com/en-us/azure/storage/common/storage-private-endpoints
And in regard to the port, f you are accessing it via the web link using https, you will need to open port 443 as you mentioned. If you need any help with setting up private endpoint for your storage account, please do let us know and we will be glad to assist you with the same. Thank you!
Remember:
Please accept an answer if correct. Original posters help the community find answers faster by identifying the correct answer. Here is how.
Want a reminder to come back and check responses? Here is how to subscribe to a notification.