Hi,
As far as I understand, you should manage that on your Call Rest Service Node in you microlfow with set error handler.
- Set a threshold for errors for each individual users
- Create an entity call as IP_Restriction.
- If a user exceed that threshold. Write to that table.
- Add a control logic on your microlow for restricted ips..
Is that sounds ok for your requirements?