But definitively, KVM is a whole lot extra handy for every little thing than an OpenVZ pr any container system to get a VPS.netfilter iptables (before long to get replaced by nftables) is really a user-space command line utility to configure kernel packet filtering guidelines developed by netfilter.By deciding on a "VPS" you will be using a sliver