I’ve written a very simple Puppet module for the Shared Fail2Ban system we use at work.
I’ve sanitised and uploaded the module to github under the name Shared Fail2Ban Puppet.
The module is fairly simple and depends on the puppet labs mysql module on puppet forge. It may clash with other peoples fail2ban modules.
The shared installation will install ssh iptables with shared iptables on the clients with an option of mysql or api on the shared fail2ban server. You can however change the files it pushes for your own jails.