We also have the issue, where our default route is breaking our configured rules in the remote devices. See this post :
We want to achieve access to internal networks, but not route Internet through the VPN. Is there a way to achieve this (split tunnel, with SFConnect as Internet). Everything works fine without OSPF, as we’ve added rules in Outbound Policy
