From 194d50891b71d0b661ef290f65958ada8a984eec Mon Sep 17 00:00:00 2001
From: Stephan de Wit <stephan.de.wit@deciso.com>
Date: Tue, 28 Feb 2023 14:25:37 +0100
Subject: [PATCH] Unbound: dnsbl_module: allow host bits during parsing of ip
 network

ipaddress.ip_network is strict by default, but model validation allows host bits in a CIDR notation, so turn
strict parsing off.
---
 .../service/templates/OPNsense/Unbound/core/dnsbl_module.py     | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/opnsense/service/templates/OPNsense/Unbound/core/dnsbl_module.py b/src/opnsense/service/templates/OPNsense/Unbound/core/dnsbl_module.py
index 0d101fede..9d1e780b2 100644
--- a/src/opnsense/service/templates/OPNsense/Unbound/core/dnsbl_module.py
+++ b/src/opnsense/service/templates/OPNsense/Unbound/core/dnsbl_module.py
@@ -280,7 +280,7 @@ class DNSBL:
                         if type(self.dnsbl['data'][key]['source_net']) is list:
                             for item in self.dnsbl['data'][key]['source_net']:
                                 try:
-                                    source_nets.append(ipaddress.ip_network(item))
+                                    source_nets.append(ipaddress.ip_network(item, False))
                                 except ValueError:
                                     log_err("dnsbl_module: unparsable network %s in %s" % (key, item))
                     self.dnsbl['data'][key]['source_net'] = source_nets