But definitively, KVM is a whole lot more hassle-free for every little thing than an OpenVZ pr any container program for just a VPS.netfilter iptables (shortly to be replaced by nftables) is often a user-Area command line utility to configure kernel packet filtering procedures made by netfil