Surely every device at one site does not require connectivity to every device at the other site?
In the likely event that each site offers a small subset of services which need to be accessible, then I suggest you use static NAT to hide the 'real' 10.50.x.x IP addresses and then advertise the NAT pool subnet to the other site.
To add to what @Seb Rupik mentioned, here is a guide on how to deal with overlapping subnets on the ASA:
Thank you both. The problem over here is Site A is accessing resources from Site B
Site A uses 10.50.50.0/24 as an example and advertised out through out Site A's networks
Site B also uses the same range
so what can be done to for site A to access Site B. We used to use Public IP's but Site B does not have public available
Form what I understand from the question now is
earlier you had an available public Ip address on both sites A and B and you were able to NAT 10.50.50.0/24 ( on side A) to X ip address and 10.50.50.0/24 ( on side B) to Y ip address. Now, B doesn't have Y and so you cant use it anymore. Is this is the scenario you are trying to implement?
you can use a local IP( y ip address) on side B, NAT all 10.50.50.0/24 behind site B to that and add it to the Crypto ACL .
earlier the Crypto ACL was X to Y and Y to X . now this can be changed to X to y.
of course you would need to allow access for y wherever Y had access earlier.
Is this the topology? if not, could you please share the topology, even a simple example would do to make sure we understand what you are trying to achieve.
The 2nd thing which comes to my mind is Site B is totally routed to site A and doesn't have any Public IP and you want to route all traffic from Site B to Site A and make sure Site A can access all resources behind B.
Yes the above is correct, however in Site A, they also use 10.50.50.0/24 and company policy is generally to use crypto tunnel to Public IP and not Private IP to Site B. Site B has a public range (Ex: 188.8.131.52/24) but cant use it for this purpose
So is there any other way? Am I making it clear?
I am sorry however you would need to compromise on one of the things:-
You either can use a LOCAL IP ( going against your company policy) or make arrangements for a Public IP ( which isn't available for now)
Please rate the answers that are helpful