The tdatAllowedIP attribute defines a filter, and requires two values, an IP address and a mask. The tdatAllowedIP is similar to an allow element in an IP XML document. If the IP address of the incoming session, when ANDed with the mask, matches the IP address in the attribute ANDed with the mask, the filter allows access to the incoming IP address.
For details on how to specify IP addresses and masks for IP filtering, see the topics beginning with IP Filters.