Pages Access Policy doesn't work as expected

I want to restrict my Page domain * to several CIDRs access only.
After enabling Access Policy in my-page, I enter zero-trust to edit the policy.
Under applications tab I choose to edit application name: my-page- Cloudflare Pages.
Then I choose edit on policy “Allow Members - Cloudflare Pages”.
Action is set to “Allow”
“Include” field is set to IP ranges and the value is CIDR (see attached screenshot).

After saving policy, when I enter the production deployment ( from the IP I just defined, I get forbidden page.

Is there any other place that I need to change permissions so only this specific IP will be able to access *