Host Access Control allows you to lock down access to various services on your host in order to only allow specific IP addresses. This can be used to secure SSH connections to your server.
After navigating to Host Access Control (WHM >> Security Center >> Host Access Control) you will see three columns. Daemon, Access List, and Action. You will want to set the "Daemon" column to SSH, the "Access list" value to All and then the "Action" will be Deny.
This means that all IP addresses will be denied from accessing SSH. In order to allow IP addresses to access SSH, you will want to create additional rules with the following values.
Daemon = SSH
Access List = 220.127.116.11 (replace with actual IP address)
Action = Allow
You will then want to use the arrows on the lef-hand side to move the "allow" rules above the "deny" rule. The whitelisted IP addresses will need to be above the deny rule in order to work properly.
For more information on how to use Host Access Control, and how it can be used to secure more services than just SSH, please see the following documentation.