Named groups of filter rules that block or allow network access for specific areas of LogScale, providing an additional layer of security by limiting access to APIs, shared dashboards, and wall monitors. IP filters use standard IPv4 or IPv6 address specifications and can include single addresses, CIDR subnet ranges, or combinations of allow and deny rules. For example, an API token that provides user management access can be further restricted to only be accessed from a specific IP address or network range. These filters support flexible rule combinations where deny rules take precedence over allow rules, enabling fine-grained network-based access control across LogScale functionality.