As @AndrewZ alluded to, firewall rules can still work even in the face of dynamic prefixes.
Fortunately OpenWrt supports this using a negative netmask notation. I've talked about how you can use this in LuCI in a previous post of mine:
Once this is working then you should not need to worry about changing prefixes.
This shouldn't be a problem. When a router announces a prefix either through RA or DHCPv6, the router also sends lifetime information about the prefix. The prefix goes through a validity/deprecation lifecycle so existing connections aren't disrupted. Your PC would then just have multiple IPv6 addresses, one for new connections and the rest for existing ones.
If you're using dynamic DNS, have the updater running on the PC send a AAAA record update with the appropriate TTL every time the PC receives a new prefix. The record should only contain the most recent prefix and not any of the deprecated ones.