I prefer using #Podman over #Docker. When it comes to networking #netavark is doing a nice job. #IPv6 is just working.
Yet managing own firewall rules seems like a hasse.
You can set
NETAVARK_FW=firewalld
in /etc/environment and use #firewalld to set your filter rules.
I wouldn't want to use #firewalld but
NETAVARK_FW=nftables
is not supported, yet.