It’s not a bug, he has the source port set to 443 from DMZ to Internal. Source port should always leave as any because client OSes use ephemeral (random) ports when initiating outbound connections. He does not do that when he makes the rule from the command line version which is why it works. I commented on his video.