Pages Access Policy doesn't work as expected

I want to restrict my Page domain *.my-page.pages.dev to several CIDRs access only.
After enabling Access Policy in my-page, I enter zero-trust to edit the policy.
Under applications tab I choose to edit application name: my-page- Cloudflare Pages.
Then I choose edit on policy “Allow Members - Cloudflare Pages”.
Action is set to “Allow”
“Include” field is set to IP ranges and the value is CIDR (see attached screenshot).

After saving policy, when I enter the production deployment (.my-page.pages.dev) from the IP I just defined, I get forbidden page.

Is there any other place that I need to change permissions so only this specific IP will be able to access *.my-page.pages.dev?