Would it make sense to log the IPFW rules? After all I'm able to reach my Apache or other services in the jail via my NAT rules, so there isn't a rule that accidentally blocks something here.
It often makes sense if things are happening that you don't understand. Despite the erroneous handbook, syntax for unlimited logging to /var/log/security is eg
# ipfw add [$number] log [logamount 0] $body
Sometimes something useful is revealed.