IPinfo allows you to reliably identify important information about an abusive IP including City, Region and Country. It also provides abuse information that will allow you to report the abuse to the netblock owner, you will usually need to provide Firewall and/or event logs that detail the attack. In some instances the attack may have been made from an anonymous VPN service, they are unlikely to have any logs of who undertook the attack but may be able to block your IP address or IP Range from their network.
It’s very useful to be able to block traffic based on the country its originating from, so many of the Brute Force attacks that we face on a daily basis originate from a small number of countries. Many popular Firewalls provide this feature either as standard or as part of an additional security service subscription.
Watchguard – Geolocation
Fortinet – Geo IP block list
Sophos Firewall – country-based firewall rule
SonicWall – Geo-IP filter
Smoothwall – GeoBlocking
Draytek – Country Object or Geo-Blocking
Untangle NG Firewall – geolocation
pfSense (with pfBlockerNG Package) – geo-blocking