I've 2 ASA 5505 connected with VPN Tunnel IPSEC Site-to-Site.
One "remote" 192.168.1.0/24 inside network and one local "192.168.200.0/24" inside network (you can see the schema)
The local host have 192.168.200.254 as default gateway.
I can't add static route to all host and I can't add static route to 192.168.200.254.
Can I NAT the incoming VPN as 192.168.200.1 or one 192.168.200.x free for connect correcly my host?
Otherwise my host send output packet to default gateway.
Thanks for your support
The configuration has to be applied on the ASA with the 192.168.200.0 subnet on it's inside, it has to be something like this:
access-list VPN_NAT permit ip 192.168.1.0 255.255.255.0 192.168.200.0 255.255.255.0
nat (outside) X access-list VPN_NAT outside
global (inside) X Y.Y.Y.Y (where the Y.Y.Y.Y) is the ip address
If you have other traffic on the vpn going through the tunnel that does not require nat, then you need to add outside nat exemption rules since these lines above forces all traffic through the asa to have a nat statement.
See if this works for you, else post your nat config here.