So I have a very specific use case and need to use my old backup win10 laptop for a test (only windows or mac allowed, no linux). I never connect this laptop to the internet because I need it to stay on 10 to work with specific software/hardware I have on it. But this test requires internet. How can I block the windows update servers on my VLAN? I know the second I connect this thing microslop will corrupt it to force me to update.
Remove all windows-machines, morelike.
For your use-case, you might want to block ALL the internet for that notebook, & then open ONLY the internet-link you require, for your test.
Trying to blacklist a dynamic-set of cloud IP-addresses seems like a losing-game.
Flip it: whitelist only what you explicitly require, for your test.
_ /\ _