We are in the process of migrating some Cisco VPN 3030s to Cisco ASA 5540. I have a couple of questions regarding the subnet mask of the local IP pools defined on the ASA.
In the command reference it is mentioned that the packets could be routed incorrectly if we use an incorrect mask.
1. Is the communication between connected VPN clients affected by this subnet mask?
2. Is there any drawback of using 255.255.255.255 as the subnet mask?
3. For some groups we use split tunneling. If the local subnet conflicts with the VPN assigned subnet, would local communication not be possible and could this be fixed by using a 255.255.255.255 mask (except for the assigned IP address)?
We are running version 8.0(4) on the ASA.
Thanks in advance for your help!