On the hosts urls of your fleet server host you will need to add the public endpoint so the agent will also try to checkin with fleet using the public endpoint.
So, you need to edit your Fleet Host server to add it.
You will probably need to reenroll your agent for it to get the new settings as it currently cannot communicate with the fleet server to get the updated policy.