I noticed that i had quite a number of connections to my ssh port on my piaware machine, including attempts to login with the user pi.
So i have setup fail2ban to take care of this a now things are more quiet in my logs. Besides ssh i also activated modules for other services i have on my machine.
I wrote a post about fail2ban so take a look if you need this for your server!
You could use something like Zerotier and enable SSH for this IP only. Then nobody would know about the existence of port 22 (or whatever you’ve set up for SSH
Have this running since a couple of weeks now and it is pretty silent on my devices