May I ask, would the loopback mask need to be a /32, or is it OK to have this interface in the same network?
I have it in exactly the same network. Whilst I haven't tested applying a different mask I'd hazard a guess the SRX would accept it.
Also is it necessary to have the loopback address to be in the same subnet as the LAN?
In the given scenario, lan-2-lan routing is provisioned for single subnet only i.e. 192.168/23. There is no console connectivity, nor FXPs for that matter. All connections seen south of cluster are physically disconnected. Disaster recovery is invoked by plugging in Ge-0/0/4 & Ge-9/0/4. with LAN essentially 'down' at one end of a site-to-site VPN, I believe tunnel not reach a state of 'established', thus I would be unable to manage it through a tunnelled session.
btw i think this loopback solution is really really cool.