Help with ACLs and Subnet Routers

I am just starting with Tailscale for my office. I have a single Subnet Router advertising a couple routes. Now I am starting to do tags and ACLs, but when I implemented:

// all employees can access devices tagged tag:corp
{“action”: “accept”, “src”: [“autogroup:members”], “dst”: [“tag:corp:*”]},

Which is a demo ACL from the tailscales website, I lose access to all of my subnets. The Subnet Router is tagged as ‘corp’.

It looks like all traffic should be allowed if I tag it as corp, but I have to revert to allow everything everywhere defaults to get it to work again.

Any help would be appreciated! What am I doing wrong.

(a quick side note, this would not be my final ACL, I am just trying to wrap my head around how they work right now)

I think I figured it out. I had to define my subnets within the policy file.