Protect server against brute force attacks

Is there a service in Sophos XG that automatically blocks the ip of the client that is trying to brute force access a web server?

That is, if there is, what can be an effective way to prevent brute force attacks on, for example, an apache server that provides services on the internet?

Edited TAGs
[edited by: emmosophos at 4:56 PM (GMT -7) on 22 Sep 2021]