I have two Cisco 3560 CAT/s connecting two locations with 10Mb Ethernet line between them. OSPF is enabled across the domain. I have failover link over Internet VPN with 2 ASA/s 5510 that are connected to both 3560 respectivly at any location. OSPF is enabled over the VPN too. Everything is running ok but when I am logged one of the CAT/s and I issue sh ip route ospf, I see in the routing table the public IP network that is attached to the outside Interface on the ASA (it happens on both sides) because it has been learned by OSPF which is normal. I want to avoid these public IP networks to be installed in the routing tables in my internal CAT Switches on both sides. Tried with distribute-list and route-map matching access-list, it works but only on the CAT Switch, the rest of the networking devices (OSPF enabled) behind of the CAT Switches are still learning the public IP subnets.
How to remove these ISP ranges from my internal network? Any help would be highly appreciated!