You have docker on the host, have you checked that its firewall modifications aren’t affecting LXDs networking?
See How to configure your firewall - LXD documentation and LXD and Docker Firewall Redux - How to deal with FORWARD policy set to drop - #3 by tomp