|Blocking dns to only one server can bite you later if that server changes or goes off line.|
Better to set a GPO that prevents users from changing network settings.
This assumes you were savvy enough not to make users admins on their machines.
Answers are only as good as the information you provide.
How to properly post a question:
Sorry no tech support via PM's