Hi,
I use firewall rules (add-src-to-address-list) to catch IP addresses who try scanning ports, use mail bombers, maybe have Trojans etc…
I want get mail from MT when some of IP get into this list. Is this possible and how?
Maybe it can do with some clever firewall rule, maybe with scripting tools - I can’t solve this.
well, if there were no better methods - you may use API ‘listen’ command…
Ok, thank for answer…
can any tell lilte bit more about this API ‘listen’? link to documentation will be great.
I use RB500 if it make sence.
Maybe any other ideas?
All this I need, because sometimes in this black list incur IP from my subnets and users can’t use network. I want know when it happen before user make a call. 
http://wiki.mikrotik.com/wiki/API
but you will need an external program for this…
Thanks for info. I read small piece of API wiki and figure out - it’s not for my skills… 