I have setup a blackhole BGP route server and from any Unix, I am able to use Fail2Ban and send remote commands to add the failed attempts to the blackhole list. For the life of me, I cannot figure how to do the same thing from a Mikrotik.
I really don’t want to use another Unix box to log into each firewall to get the banned_ip list from each router, but I think that will be the only way to do it unless Mikrotik has a remote command execution that I am totally missing.