launching Parallels breaks existing packet filter rules

Running
Version 16.5.0 (49183) Pro on OSX Big Sur 11.2.3.

I have packet filter rules installed for local development from the invoker ruby gem which forward port 80 and 443 to ports 23401 and 23402. As soon as launch Parallels they stop working until I close Parallels and reboot.
I can see that as soon as Parallels runs there are additional packet filter rules "com.apple.internet-sharing" listed.

Also if I run "sudo pfctl -f /etc/pf.conf" they start working again.

Any ideas on how to troubleshoot further?

 

Well it's worse than that. After to reload packet filter host os behaviour restores, but guest can't connect even whitelisted ips.
To be fair in only happens to macOS guest, Windows works fine, and same issue persist in UTM running macOS, so it seems like it's an issue with Apple Virtualisation Framework. Still would be great if Parallels communicate this to able to push them to resolving the issue or Parallels implement their own workaround if possible.