Authentication request from Jibri VM to dockerized PROSODY failing:connection timed out

Hi,
I am running dockerized Jitsi-Meet server on one VM and Jibri on another.
I have followed https://github.com/jitsi/jibri steps and all config is done.
Its just Jibri is not able to authenticate itself to prosody, it says connection timed out in logs.

First error in log was CONNECTION REFUSED.

I thought I should give access to 5222 but docker-compose.yml wont let us expose using 5222:5222, throws error of validation.
I did add iptables rules in host vm.

DNAT       tcp  --  anywhere             anywhere             tcp dpt:xmpp-client to:172.28.0.3:5222
DNAT       tcp  --  anywhere             anywhere             tcp dpt:5347 to:172.28.0.3:5347
DNAT       tcp  --  anywhere             anywhere             tcp dpt:5280 to:172.28.0.3:5280
DNAT       tcp  --  anywhere             anywhere             tcp dpt:xmpp-server to:172.28.0.3:5269

Now Jibri logs are(error : connection timed out)

2019-04-29 09:30:25.678 INFO: [1] org.jitsi.jibri.Main.loadConfig() Parsed config:
JibriConfig(recordingDirectory=/tmp/recordings, enabledStatsD=true, finalizeRecordingScriptPath=/path/to/finalize_r
ecording.sh, xmppEnvironments=[XmppEnvironmentConfig(name=prod environment, xmppServerHosts=[dockermeet.mydomain.
com], xmppDomain=dockermeet.mydomain.com, controlLogin=XmppCredentials(domain=internal.auth.dockermeet.mydomain
.com, username=jibri, password=jibriauthpass), controlMuc=XmppMuc(domain=internal.auth.dockermeet.mydomain.com, r
oomName=JibriBrewery, nickname=jibri-nickname), sipControlMuc=null, callLogin=XmppCredentials(domain=recorder.docke
rmeet.mydomain.com, username=recorder, password=jibrirecorderpass), stripFromRoomDomain=conference., usageTimeout
Mins=0, trustAllXmppCerts=true)])
2019-04-29 09:30:26.231 WARNING: [1] org.glassfish.jersey.internal.inject.Providers.checkProviderRuntime() A provid
er org.jitsi.jibri.api.http.internal.InternalHttpApi registered in SERVER runtime does not implement any provider i
nterfaces applicable in the SERVER runtime. Due to constraint configuration problems the provider org.jitsi.jibri.a
pi.http.internal.InternalHttpApi will be ignored. 
2019-04-29 09:30:26.616 INFO: [1] org.jitsi.jibri.api.xmpp.XmppApi.start() Connecting to xmpp environment on docker
meet.mydomain.com with config XmppEnvironmentConfig(name=prod environment, xmppServerHosts=[dockermeet.mydomain
.com], xmppDomain=dockermeet.mydomain.com, controlLogin=XmppCredentials(domain=internal.auth.dockermeet.mydomain
.com, username=jibri, password=jibriauthpass), controlMuc=XmppMuc(domain=internal.auth.dockermeet.mydomain.com, 
roomName=JibriBrewery, nickname=jibri-nickname), sipControlMuc=null, callLogin=XmppCredentials(domain=recorder.dock
ermeet.mydomain.com, username=recorder, password=jibrirecorderpass), stripFromRoomDomain=conference., usageTimeou
tMins=0, trustAllXmppCerts=true)
2019-04-29 09:30:26.623 INFO: [1] org.jitsi.jibri.api.xmpp.XmppApi.start() The trustAllXmppCerts config is enabled 
for this domain, all XMPP server provided certificates will be accepted
2019-04-29 09:30:56.645 WARNING: [20] org.jivesoftware.smackx.ping.PingManager.pingServerIfNecessary() XMPPConnecti
on was not authenticated
2019-04-29 09:30:56.702 SEVERE: [1] org.jitsi.jibri.api.xmpp.XmppApi.start() Error connecting to xmpp environment: 
org.jivesoftware.smack.SmackException$ConnectionException: The following addresses failed: 'dockermeet.mydomain.c
om:5222' failed because: dockermeet.mydomain.com/xxx.xxx.xxx.xxxexception: java.net.SocketTimeoutException: connect 
timed out
2019-04-29 09:30:56.758 WARNING: [1] org.glassfish.jersey.internal.inject.Providers.checkProviderRuntime() A provid
er org.jitsi.jibri.api.http.HttpApi registered in SERVER runtime does not implement any provider interfaces applica
ble in the SERVER runtime. Due to constraint configuration problems the provider org.jitsi.jibri.api.http.HttpApi w
ill be ignored. 

Do I need to something on docker level?

P.S. I have handled VM firewall rules though.