I would recommend using something like
LogCheck, which checks your logs for suspicious activity such as failed logins, etc.
A DDOS attack does not need to grind your machine to a halt, but rather use all of your available bandwidth - so that geniuine users will have a leesser chance of accessing the server.