Click the Security Settings link in the Administration menu.
Firstly, add the IP or IP range that should be allowed to access the login page. The settings should be filled in as shown on the right (simply change the IP/IP Range).
Now add a blanket deny for all IPs. The list is processed top to bottom so any IPs that match the allow range will be shown the login screen.