Block Microsoft Telemetry using NULL routes

Microsoft has hard coded the addresses to their telemetry servers. The known servers are:

vortex-win.data.microsoft.com
settings-win.data.microsoft.com

We cannot block there via the “hosts” file due to the sites being hard coded.
But we can block them using NULL routes.

First, open an “administrative” command prompt.
Then run the following command.

route print


This will give us our current routing information. We want the first “Gateway” address listed in the “IPv4 Route Table”.
Substitute your own “Gateway” address for “192.168.1.1” in the two commands below.

route add 111.221.29.253 mask 255.255.255.255 192.168.1.1 if 1 -p
route add 111.221.29.254 mask 255.255.255.255 192.168.1.1 if 1 -p


Now try to ping the hosts, and you will see they are now unreachable.