Gotcha.  Now this may just be a Packet Tracer limitation, but I can't seem to do NAT from global config mode. Is there any other way to do it? Or maybe does something else need to be enabled before I can use that command?

9.6.  This is a 5506, which the only ASA PT offers where you can put addresses on the actual interfaces.  I did try it on the other available 5505 and the command is not there either.  

I may revert to an older version of PT to see if its possible. Unfortunately I don't have the lab equipment to do this for real, and the customer needs to maintain 100% uptime.  I have implemented a nat rule before that took down a different organization's network, so I am worried about doing that again :P.  I do appreciate your help regardless!

Fair point. 

So I recreated everything in GNS3 (whew was that a pain to get going). Now I can ping from ASA 1 all the way across to ASA 2, but it wont even get phase one up. In wireshark I am seeing no ISAKMP or IPSec packets at all, and also none show up in counters, and debug gives no information.

Same configs in the OP except also including nat (inside,outside) source static local-subnet local-subnet destination static remote-subnet remote-subnet no-proxy-arp route-lookup.

I think its just a bug though, because I can ping all the way over the the other ASA, and when I remove the access-list for interesting traffic it shows to have killed the ikev1 session via debug, and I see those packets in wireshark. But when I added the acl back in it does not show the SA still, even though I can then ping again.

It also increments the show crypto protocol statistics all when I do that as well.

There are actually no hits on the rule. And the ping hits from outside but not inside.. didnt think to try that.  Seems like there is still something going on :/

 Oh good lord. That was it. I didnt know the SA wouldnt be brought up until you hit it from the inside subnet. You are a life saver! I really appreciate all your help.