If both machines are in the same subnet (LAN) there should be no need for firewall rules. So i guess your problem isn‘t located at the TO firewall. Check the Service itself (Client restrictions?) or your Windows machine (Firewall, Access Restrictions, vpn?)
Check if the Port is accessible from your TO using netcat (via ssh):
nc -zv „lxc-machine-ip“ „Port“
Check if you Can Ping lxc machine from Windows (via cmd):
ping „lxc-machine-ip“