Centos firewall: did Docker open proxy port (eg 8080) to the public and how to restrict access?

I have Centos 8 and Docker on my machine.
In my firewall I did not open any ports to the public, but my 8080 port is open and publicly available.
8080 is docker proxy port which is mapped to the container port.

AFAIK, on install, Docker opens up ports, but I don’t see it listed anywhere in:
firewall-cmd --list-all-zones and similar (list ports,…) commands.

I don’t want to have docker proxy ports open to the public, and my question is:

How can I restrict these ports to an IP (range)?
Do Docker and firewall-cmd get along?

Source: Docker Questions