Check out the lightweight on-premises email archiving software developed by iRedMail team: Spider Email Archiver.
Since iRedMail-0.9.1, it's able to restrict mail users to login from specified IP addresses or networks.
Allowed IP/networks must be separated by comma. If the user tries to log in elsewhere, the authentication will fail the same way as if a wrong password was given.
Below sample usage shows how to restrict mail user
email@example.com to login
from only IP address
172.16.244.1 or network
If webmail is running on same server, and you want to allow user to login
from webmail, please allow IP
With iRedAdmin-Pro, please go to user profile page, click tab
you will find setting
Restrict to login from specified addresses like below:
sql> USE vmail; sql> UPDATE mailbox SET allow_nets='172.16.244.1,192.168.1.0/24' WHERE firstname.lastname@example.org';
To remove this restriction (allow to login from anywhere), just set
value of SQL column
mailbox.allow_nets to NULL. WARNING: It must be NULL,
not empty string.
To allow user
email@example.com to login from IP
172.16.244.1 and network
192.168.1.0/24, please add new attribute
allowNets to this user:
To remove this restriction, just remove attribute
allowNets for this user.