Brute force attempts?

Hey all. I was going over the daily logs for my server when I noticed someone was trying to access an ftp account. Some 1000 tries on two usernames. The users do not exist so the chances of cracking the password are slim Brute force attempts?

But what should I do now? The ip was from peru, should I simply block the address and forget about it or should I infrom his ISP or something similar?

Also, does anyone know of a way to automatically block an IP after so many failed login attempts, or email an allert to an admin?

 

 

 

 

Top