Cisco's SDM firewall and IDS reviews

[ejensen () vibrant com]

Hello everyone, has anyone worked with the Cisco SDM package?  

I'm looking for reviews (or experiences) that compare this with a PIX or Sonicwall or something similar.  Specifically, 
does the SDM software compete on the same level as other firewall appliances for SMB sized networks?

Since SDM also has an IDS function, how does that rate when compared to a stand alone IDS appliance?  I assume it uses 
the same signature sets as any other Cisco IDS device.  

My question comes from customers asking me whey they need a firewall when the latest ISR (integrated service router) 
devices from Cisco have one included.  I can't find any whitepapers or reviews comparing the SDM software package to 
other firewalls.  

SDM version 2.4 is the latest, so that's the one I'm using.  When you look at the config after setting up one of these, 
it looks like everything is done via ACLs.  Granted, that's the heart of any firewall, but I expect to see something 
along the lines of packet inspection, and looking at code or signatures before allowing connections.  I'm not sure that 
is actually going on in the SDM package.

Last concern, does this package qualify to protect a medical network?  Does HIPPA approve?

Thanks for the help!
Erick