I am not getting any exact answer about affect on CPU utilization by Iptables for LXCs.
If CPU utilization of a process increases when iptables are enabled on the system then what is alternative method to listen internal IP : Port on external IP : Port
iptables rules exist in kernel space while a LXD proxy device is a user-space process.
There should be some speed benefits in iptables but with LXD proxy devices you get ease of use, added functionality (in-built PROXY protocol), and rules are associated with the correct container.
The big question is how massive should the network load be, so that differences in response time would become noticeable.
I do not have an answer to that and I would be interested to see someone produce a comparison.