Uhm,

Malicious Web Page Demos: were blocked by my UFP sevrer, titghly integrated into a *real* firewall aka CPNG and another kick ass solution known as SSSG;

Scrap Files - Hidden File Extensions: Linux?;

Malicious File Attachment Demos: Receive as E-mail Attachment: That's why I got a CVP server, a CVP server for those who don't happen to know is an AV over IP security solution that -also- tightly integrates into CP thru simple resources;

So, my one and only REAL FW does better than your solution for a fraction of the system load, you know why? cuz it was built by security freaks for security freaks, installing 3 FWs on top of each other is just a system resouce hog no more, can't even consider it to solve any real security issues. Most of those FWs don't even bind to the interface's IP stack so packet based attacks like just pass thru it without any troubles, plus since when did these boxes do stateful inspection to undertsand wtf is actually going on?

The verdict?
Well, there are some solutions out there that cost a bit more but actually provide a lot more than having 3 FWs installed on the same box, plus, if your system cries from 3FWs, what would it do with an AV, IDS, VPN client-server, Auth demon and a small webserver do?

Bah,
etsh911

Cya invict