I got ssh brute force attack almost every day :p, which is almost all originated from somewhere outside malaysia (china, taiwan etc). A simple iptables rules that only allowed tcp traffic from streamyx IP range.

#iptables -P INPUT DROP
#iptables -A INPUT -p tcp --dport 80 -j ACCEPT
#iptables -A INPUT -p tcp --dport 22 -m iprange --src-range 60.0.0.0-60.255.255.255 -j ACCEPT


iptables - how to specify a range of ip address

iptables quick howto-