# ============================================================
# Directory: vendor-blocklist/
# Filename: vendor-blocklist.txt
# Description: Known vendor telemetry endpoints.
# Format: One entry per line. Lines starting with # are comments.
#         Domains are resolved to IPs by the firewall loader.
#         IPs are used directly.
# Usage: Referenced by nftables/iptables/pf rulesets.
# Update: Run update-blocklist.sh or manually edit.
# Date: 2026-06-01
# Version: 1.0.0
# ============================================================

# ----------------------------------------------------------
# INTEL
# ----------------------------------------------------------
# Intel Management Engine telemetry
# Intel Active Management Technology (AMT)
# Intel Driver & Support Assistant
# Intel Software Guard Extensions (SGX) attestation

intel.com
intel.ca
intel.co.uk
intel.de
intel.fr
intel.jp
downloadcenter.intel.com
dsadata.intel.com
edc.intel.com
mesm.intel.com
trustedservices.intel.com
software.intel.com
update.intel.com

# Intel ME IP ranges (known telemetry sinks)
192.55.54.0/24
192.55.55.0/24
192.55.56.0/24

# ----------------------------------------------------------
# AMD
# ----------------------------------------------------------
# AMD telemetry and driver updates
# AMD PSP (Platform Security Processor) callbacks

amd.com
support.amd.com
drivers.amd.com
telemetry.amd.com
gpuopen.com

# AMD IP ranges
23.96.0.0/16

# ----------------------------------------------------------
# NVIDIA
# ----------------------------------------------------------
# NVIDIA telemetry, GeForce Experience, driver updates
# NVIDIA Shield telemetry

nvidia.com
download.nvidia.com
telemetry.nvidia.com
gfe.nvidia.com
services.nvidia.com
nvidia.gg
shield.nvidia.com

# NVIDIA IP ranges
23.0.0.0/11

# ----------------------------------------------------------
# MICROSOFT
# ----------------------------------------------------------
# Windows telemetry, update checks, license validation
# Office telemetry, OneDrive sync, Cortana

microsoft.com
update.microsoft.com
download.microsoft.com
telemetry.microsoft.com
watson.microsoft.com
stats.microsoft.com
redir.metaservices.microsoft.com
choice.microsoft.com
compatexchange.cloudapp.net
cerkit.microsoft.com
activity.windows.com
browser.pipe.aria.microsoft.com
dc.services.visualstudio.com
events.data.microsoft.com
g.live.com
login.msa.akadns.net
nexusrules.officeapps.live.com
officeclient.microsoft.com
ris.api.iris.microsoft.com
sls.update.microsoft.com
sqm.microsoft.com
sqm.telemetry.microsoft.com
ssw.live.com
telecommand.telemetry.microsoft.com
telemetry.appex.bing.net
telemetry.microsoft.com
telemetry.remoteapp.windowsclient.com
telemetry.urs.microsoft.com
vortex.data.microsoft.com
watson.telemetry.microsoft.com
wdcp.microsoft.com
wes.df.telemetry.microsoft.com
win1710.ipv6.microsoft.com

# Microsoft IP ranges (Azure telemetry)
13.64.0.0/11
13.96.0.0/12
13.104.0.0/14
20.0.0.0/11
40.64.0.0/10
52.96.0.0/12
104.40.0.0/13
131.253.0.0/16
157.55.0.0/16
157.56.0.0/14

# ----------------------------------------------------------
# APPLE
# ----------------------------------------------------------
# macOS/iOS telemetry, iCloud, Siri, Apple Music

apple.com
icloud.com
telemetry.apple.com
swscan.apple.com
swcdn.apple.com
mesu.apple.com
gdmf.apple.com
configuration.apple.com
setup.icloud.com
p03-contentws.icloud.com
p04-contactsws.icloud.com

# Apple IP ranges
17.0.0.0/8

# ----------------------------------------------------------
# GOOGLE
# ----------------------------------------------------------
# Chrome telemetry, Android, Google Services

google.com
clients1.google.com
clients2.google.com
clients3.google.com
clients4.google.com
safebrowsing.google.com
update.googleapis.com
tools.google.com
www.google-analytics.com
ssl.google-analytics.com
play.googleapis.com
android.clients.google.com
connectivitycheck.gstatic.com

# Google IP ranges
8.8.4.0/24
8.8.8.0/24
8.34.208.0/20
8.35.192.0/20
35.192.0.0/12
35.208.0.0/12
35.224.0.0/12
108.170.192.0/18
108.177.0.0/17
130.211.0.0/16
142.250.0.0/15
146.148.0.0/17
162.216.148.0/22
162.222.176.0/21
172.217.0.0/16
172.253.0.0/16
173.194.0.0/16
174.125.0.0/16
192.158.28.0/22
199.192.112.0/22
199.223.232.0/21
209.85.128.0/17
216.58.192.0/19
216.73.80.0/20

# ----------------------------------------------------------
# DELL
# ----------------------------------------------------------
# Dell SupportAssist, Dell Update, Dell telemetry

dell.com
support.dell.com
downloads.dell.com
telemetry.dell.com
www.dell-supportassist.com
delltech.com

# ----------------------------------------------------------
# HP
# ----------------------------------------------------------
# HP telemetry, HP Support Assistant, HP Update

hp.com
support.hp.com
update.hp.com
telemetry.hp.com
hpsupport.com
hp.com/go/techcenter

# ----------------------------------------------------------
# LENOVO
# ----------------------------------------------------------
# Lenovo System Update, Lenovo Vantage, Lenovo telemetry

lenovo.com
support.lenovo.com
download.lenovo.com
telemetry.lenovo.com
lenovosoftware.com
pcsupport.lenovo.com

# ----------------------------------------------------------
# LOGITECH
# ----------------------------------------------------------
# Logitech Options, G Hub, firmware updates

logitech.com
support.logitech.com
download.logitech.com
logi.com

# ----------------------------------------------------------
# SAMSUNG
# ----------------------------------------------------------
# Samsung SSD Magician, Samsung Update, Smart Switch

samsung.com
support.samsung.com
download.samsung.com
smartswitch.samsung.com
samsungkies.com

# ----------------------------------------------------------
# QUALCOMM
# ----------------------------------------------------------
# Qualcomm wireless card telemetry, firmware checks

qualcomm.com
update.qualcomm.com
qualcomm.com/documents

# ----------------------------------------------------------
# BROADCOM
# ----------------------------------------------------------
# Broadcom wireless/firmware telemetry

broadcom.com
support.broadcom.com
download.broadcom.com

# ----------------------------------------------------------
# REALTEK
# ----------------------------------------------------------
# Realtek audio/network driver telemetry

realtek.com
tw.realtek.com
download.realtek.com

# ----------------------------------------------------------
# GENERIC CATCH-ALL
# ----------------------------------------------------------
# Common telemetry endpoints used by multiple vendors

telemetry.*.com
stats.*.com
update.*.com
metrics.*.com
analytics.*.com
crash.*.com
report.*.com