Tilghman Lesher wrote: > > Yes, you can use the permit/deny labels to specify an IP mask that is eligible > to authenticate: > deny=0.0.0.0/0 > permit=192.168.0.0/16 > permit=172.16.0.0/12 > permit=10.0.0.0/8 > > By the way, after the slash, you can use either CIDR notation or a netmask. > Thanks.