I've noticed that I can't ping a public device (on my block) from the vpn. The vpn is NOT my firewall, but another ASA (5520). The inside interface on the ASA is on my private side. From a host on the lan and not on vpn, I can ping this device. The path the packet would take is from:
host -> core switch -> asa5550 -> packetshaper -> fatpipe -> device to ping
The above works. The path vpn would take is:
asa5520_vpn -> core switch -> asa5550 -> packetshaper -> fatpipe -> device
The above doesn't work. From the vpn, I can ping all the way to the ASA5550 and it works fine, but nothing past it.