Podman works with nft, not iptables. Ufw iirc uses iptables.

Try a different firewall tool, or use nft directly

If your containers are bound to 127.0.0.1 and you only have a reverse proxy on 443, you probably don’t even really need a firewall.

Run rootless podman and segregate each container stack on its own network, podman will take care of it for you.