Can't mount azure file volume unless firewall is set to public

I have a docker container in Azure for which I’m mounting a volume to an Azure File Share. It works if I have the storage container network settings (firewall) set to public. As soon as I set it to restricted IP addresses, the mounted volume fails. Attempts to ls contents results in a host is down message. I have a system assigned identity for the container. I’ve set the allowed IP address as the container’s public IP address and outbound IP address on the storage account with no luck. I’ve also taken the nuclear option of giving the system assigned identity the owner role and added to the allowed IP address list. Despite this, it still fails to mount the volume unless I switch the storage account to public access.

I’m using the correct storage account name and storage account key.

My container is an nginx modsecurity container

What am I missing?