don't manage k8s config

clean up ssh config hosts
remove cert authorities from ssh config

nixos/default.nix

@@ -68,25 +68,7 @@
     '';
   };
 
-  programs.ssh = {
-    startAgent = true;
-
-    knownHosts = {
-      dmz = {
-        hostNames = [ "*.dmz" ];
-        publicKey =
-          "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIAX2IhgHNxC6JTvLu9cej+iWuG+uJFMXn4AiRro9533x";
-        certAuthority = true;
-      };
-
-      hypervisors = {
-        hostNames = [ "*.hyp" ];
-        publicKey =
-          "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIFzRkH3d/KVJQouswY/DMpenWbDFVOnI3Vut0xR0e1tb";
-        certAuthority = true;
-      };
-    };
-  };
+  programs.ssh.startAgent = true;
 
   security.sudo.extraConfig = ''
     Defaults        timestamp_timeout=30
@@ -123,7 +105,7 @@
       home = {
         privateKeyFile = config.age.secrets.wg-quick-home-privkey.path;
         address = [ "10.225.191.4/24" "fd11:5ee:bad:c0de::4/128" ];
-        dns = [ "192.168.30.8" "2a0d:6e00:1a77:30:c8fe:c0ff:feff:ee08" ];
+        dns = [ "192.168.30.131" ];
         autostart = false;
         peers = [{
           presharedKeyFile = config.age.secrets.wg-quick-home-preshared-key.path;