You with the first rule (the top one) denied access from any ip to any port, the second rule allows access to port 80 from any ip, but since the rules are applied from top to bottom, access to port 80 will be closed by the very first rule (packets matching the rule will be discarded) and the second rule will no longer be processed (since there is nothing to process, the first rule has already done its job). By the way, this is written in the text at the very bottom of your screenshot.

I'll just offer you a link to Lissyara 's article .
You need not to chew on the "why" but to understand how it generally works.
Well, off man on IPFW fryahi

A hint: the rules are applied from top to bottom until the first occurrence. The rest is more like a task than a question.

If the first rule covers the address range of the second rule in the source field (the screenshot shows that different addresses are specified in the source field for the first and second rules, but what is specifically indicated in the first rule is not visible), then everything will be closed for you, because . the second rule simply will not reach - as other comrades pointed out, the rules are checked from top to bottom.
But if the addresses in the source field do not intersect, then the second rule will work and the port will be available for the specified addresses.
PS: I hope the last rule by default is to close everything for everyone?