Routing a Login

I’m using Ignition 7.8.12 and have two types of users for the system. Type 1 can access status and indicator information for the Systems configured in the Gateway. Type 2 has control access and all the abilities of Type 1. We would like to look at the IP the user is logging in from and based on that network segment, either deny access, or alow them onto their Type1/2 level Client.

I have seen the Zones and Service Security documentation, but nothing so fine grain as this type of approach. Thoughts?

Thanks in advance,