Hi. Recently i've discovered in Windows system's journals that some hackers is trying to pick up login/password to Internet server of our company. This event caused that I decided to change our antivirus with another one. I tried to use Symantec Endpoint Protection ->I installed it on my server's clone, updated, and tested: made about 100 attempts (in 20 seconds) of logon on FTP with wrong logins/password. And Symanted didn't detect my actions as attack! Some questions:
1) Symantec Endpoint Protection doesn't protect from this method of attacks?
2) May be I need try another product for my server (roles: mail server, proxy server, VPN server, gateway, FTP server, DNS server).
PS: sorry for my grammatic errors.