Static routing: problem reaching host on local network from router's WAN side

I'm having trouble setting up routing in a small office network. I've prepared a diagram of the topology https://drive.google.com/file/d/0B0PjGlcEN6DDV3BpNHJWTEdaWmM/view

Few words of explaination:

Server A acts as main gateway, firewall and VPN access point for the office. 

Both server A and B are running Linux and im using iptables and iproute2 tools to manage their networking stack.

Virtual server C is running inside a KVM/Qemu virtual machine on Server B. 

Server B is connected to N750 router on a wired connection, Client 1 (my workstation) is connected using WiFi.

Static routes for 192.168.123.0/24 network are established on Server A and N750 router specifying 192.168.2.2 and 192.168.1.10 as next hop respectively.

The route on N750 is NOT marked as private and has metric of 2.

What works:

Virtual server C can reach the Internet (both outgoing and returning packets are routed properly).

Client 1, Sever A and B can reach one another and Internet hosts without issues.

Client 1 and Server B can reach Virtual server C without problems.

What doesn't work:

1) When trying to connect to Virtual Server C from Server A, traffic ends up on Server's B own interface instead!

2) Also I'm unable to connect from Virtual server C to Server A (this is not critical, but I'm mentioning it in case it provides some clue)

When investigating the problem I found out that this affects all IP traffic and I was using SSH as a probe. I have added logging clauses to nat/PREROUTING, nat/POSTROUTING and filter/INPUT iptables chains on Server A and Server B tracking SYN packets on TCP/22.

When trying to reach C from Client 1 with ssh I see:

PREROUTING IN=eth0 OUT= src=192.168.1.100 DST=192.168.123.200 on B

POSTROUTING IN= OUT=virbr0 src=192.168.1.100 DST=192.168.123.200 on B

And ssh opens a session on C, as expected.

When trying to reach C from A with ssh I see:

POSTROUTING IN= OUT=eth1 src=192.168.2.1 DST=192.168.123.200 on A

PREROUTING IN=eth0 OUT= src=192.168.2.1 DST=192.168.1.10 on B

INPUT IN=eth0 OUT= src=192.168.2.1 DST=192.168.1.10 on B

And ssh opens session on B, unexpectedly. 

When trying to reach A from B I see:

POSTROUTING IN= OUT=eth0 src=192.168.1.10 DST=192.168.2.1 on B

PREROUTING IN=eth1 OUT= src=192.168.2.2 DST=192.168.2.1 on A

INPUT IN=eth1 OUT= src=192.168.2.2 DST=192.168.2.1 on A

And ssh opens session on A, as expected

When trying to reach A from C I see:

POSTROUTING IN= OUT=eth0 PHYSIN=vnet0 src=192.168.123.200 DST=192.168.2.1 on B

and nothing on A (SYN packet does not seem to reach it at all)

It appears to me that when the static route is applied to the packets coming from WAN side, the destination IP is overwritten with hext hop IP.

I went through admin interface of N750 and the users manual but came back empty handed. I also read several routing related threads on this forum, but I wasn't able to find anything relevant.

While I'm able to work around this problem by designating B as the default DMZ server and setting up DNAT on specific ports at B, I would much rather resolve this routing problem to have a simple and sane setup.

Any help is appreciated!