@Joel Palmer (JLPM) Welcome to Microsoft Q&A Forum, Thank you for posting your query here.
Adding more information to the above response:
Port 443 allows data transmission over an encrypted network, while Port 80 enables data transmission in plain text
You can choose port 443 in this scenario.
This article contains security recommendations for Blob storage. Implementing these recommendations will help you fulfill your security obligations as described in our shared responsibility model. For more information on how Microsoft fulfills service provider responsibilities Security recommendations for Blob storage
Azure security baseline for Storage: https://video2.skills-academy.com/en-us/security/benchmark/azure/baselines/storage-security-baseline
Additional information: Now, with SFTP support for Azure Blob Storage, you can enable an SFTP endpoint for Blob Storage accounts with a single click. Then you can set up local user identities for authentication to connect to your storage account with SFTP via port 22.
This article describes SFTP support for Azure Blob Storage. To learn how to enable SFTP for your storage account, see Connect to Azure Blob Storage by using the SSH File Transfer Protocol (SFTP).
To create or update a security rule in the specified network security group. which can be used to enable ports 80 and 443 along with inbound rules:
https://video2.skills-academy.com/en-us/rest/api/virtualnetwork/securityrules/createorupdate
Please let us know if you have any further queries. I’m happy to assist you further.
Please do not forget to "Accept the answer” and “up-vote” wherever the information provided helps you, this can be beneficial to other community members.