I don't fully understand the topology. Can you draw it out ascii style with parts of the addresses so we can see what is where? Sounds like you just need to put some traffic filters on there.
You could use ACLs to deny certain traffic from going to certain networks, or you could policy route traffic based on the source, to go out a specific interface...which should bypass the normal route which may want to go into your lan.
Josh