Found a rare article How to Secure a Docker Host Using Firewalld that teaches how to address the issue when that docker bypasses the FirewallD rules.

According to the Article, the goal of the Configuration is to

• The firewall rules should count for whole host system – so including Docker containers with port mappings
• A Docker container should be accessible from the internet if and only if the host port used in Docker container port mapping is allowed in the firewall
• The approach should not break container networking

Do read up and you will be glad that this article was written for Administrators like us. Another Reference you may want to consider reading is Why Docker and Firewall don’t get along with each other!