hosts/ni: update DNS routing for VPN internal network

hosts/ni/default.nix

@@ -194,6 +194,9 @@ in
 
   system.stateVersion = "22.11"; # Yes! I read the comment!
 
+  # Setting up split DNS whenever possible.
+  services.resolved.domains = [ "~plover.foodogsquared.one" ];
+
   # Setting up Wireguard as a VPN tunnel. Since this is a laptop that meant to
   # be used anywhere, we're configuring Wireguard here as a "client".
   #
@@ -203,6 +206,13 @@ in
   networking.wg-quick.interfaces.wireguard0 = {
     privateKeyFile = config.sops.secrets."ni/wireguard/private-key".path;
 
+    dns = with interfaces.internal; [
+      IPv4.address
+      IPv6.address
+    ];
+
+    listenPort = wireguardPort;
+
     address = with wireguardPeers.desktop; [
       "${IPv4}/24"
       "${IPv6}/96"

modules/nixos/workflows/a-happy-gnome/default.nix

@@ -68,6 +68,7 @@ in
         gnome.dconf-editor # A saner version of Windows registry.
         dialect # Your gateway to polyglotting.
         fractal # Your gateway to the matrix.
+        tangram # Your social media manager, probably.
         gnome-frog # Graphical OCR with Tesseract that I always wanted.
         gnome-solanum # Cute little matodor timers.
         gnome.gnome-boxes # Virtual machines, son.
@@ -107,8 +108,13 @@ in
         gnome-initial-setup.enable = false;
       };
 
+      # It makes Nix store directory read/write so no...
       services.packagekit.enable = false;
 
+      # Setting up split DNS with systemd-resolved. The domains should already
+      # be configured somewhere else.
+      services.resolved.enable = true;
+
       # Since we're using KDE Connect, we'll have to use gsconnect.
       programs.kdeconnect = {
         enable = true;