There may be a way to do this more elegantly, but the brute force method would be to create an acl for each user and an acl for each ip address eg:
Code:
acl user1id ident "user1"
acl user1ip src 192.168.7.1
...
http_access allow user1id user1ip
http_access deny user1id