You should block those IPs using firewall.
- You should constantly monitor the log, and append your block list with the new IPs that attacks.
- Or allow only the IPs that are expected.
You should have strong password for root login, if that is ssh attack. Or even you can think about locking the root account, and use some sudo account to do the administration and be in the safer side.