If you ping 127.0.0.1 on Kicksecure, you get nothing. ICMP requests are blocked. But if you check your sys-net template that dvms, you will get a response. What is the trade off between blocking probes of your stack (to prevent OS filtering and tor bridge blocks) and still having functional networking?
What are the best ways to block hostile probing?
What is the safe way to make Kicksecure the default dvm? As a Standalone it cannot be made a template for sys-net dvm and a cloned template cannot be connected to tor to create the morphing.