Adding the following to your IP tables will only allow 3 connections at once from any IP if it goes above 3 then that IP is locked out for 3minutes. At this stage the bot running the attack will either give up as its getting no reply from the SSH server or it will keep trying until it finishes its wordlist

iptables -I INPUT -p tcp -m tcp --dport 22 -m state --state NEW -m recent --set --name DEFAULT --rsource

iptables -I INPUT -p tcp -m tcp --dport 22 -m state --state NEW -m recent --update --seconds 180 --hitcount 4 --name DEFAULT --rsource -j DROP

1. Download Putty From Here
2. Run Putty and insert your servers host name
3. Expand ssh on the sidebar and select tunnels
4. Check the Dynamic Box and in Source port enter a port e.g 3000 and then Press Add
5. Press open and login to your ssh account. Open the event log if you want by holding down ctrl right clicking and then selecting event log
6. Open firefox and click on tools > Options
7. Click On Advanced and then select the networking tab
8. Click on the Setting button under connection
9. check the manual proxy configuration box
10. Across from socks host type in localhost and in the Port box type in the port you set for source port on the tunnel page in putty
11. Press Ok and exit options and you should be good to go