The diagram may help :)
If 2.2.2.0/24 is the remote subnet via IPSEC then all you have to do is make sure the traffic is routed to the interface where you have applied your IPSEC crypto map so if the outside interface is where the crypto map is applied then that route would work although often with internet setups the default route points that way anyway.
Like I say though, diagram would help as the above is all guesswork at the moment.
Jon