As an example, there can’t be any disk failures compared with using a bare-steel device and it’s simple to backup a whole VM to afterwards restore it.netfilter iptables (quickly to get replaced by nftables) can be a consumer-space command line utility to configure kernel packet filtering rul