Disallowing certain hosts with courier-imap/pam?

[cryo]

I am running both courier-imapd and courier-imapd-ssl, and now I want to disallow the former from being accessed from anywhere except localhost and hosts on my local (10.x.x.x) network.

First I enabled seperate authentication in the /etc/courier-imap/imapd file, so the normal connection uses /etc/pam.d/imap and the SSL one uses /etc/pam.d/imaps. I then tried using the PAM module pam_access.so to limit access, but it doesn't seem to work; access it allowed even if I put -:ALL:ALL in my /etc/security/access.conf.

I tried with more drastic things like auth required pam_deny.so in the /etc/pam.d/imap file, which works fine. Maybe Courier-IMAP only does auth and not account with PAM? I also tried to use pam_rhosts and make an /etc/hosts.equiv file... but.. it didn't quite work either, it just disallowed access from everyone.

Anyone got an idea?
_________________
Sune.