I am looking at fail2ban, and all I see is it protecting remote logins to SSH.
Does it protect any other access to systems? Well perhaps other than VNC perhaps?
It can, but you have to either enable or create the rules. It could potentially monitor and protect just about anything that can be logged.
Look at /etc/fail2ban/jail.conf. Mine lists 73 things.