os-bind: Allow ACLs to reference firewall aliases

[arichtman]

Important notices

Before you add a new report, we ask you kindly to acknowledge the following:

• I have read the contributing guide lines at https://github.com/opnsense/core/blob/master/CONTRIBUTING.md
• I am convinced that my issue is new after having checked both open and closed issues at https://github.com/opnsense/core/issues?q=is%3Aissue

Is your feature request related to a problem? Please describe.

When configuring Bind ACLs, you must enter and update network addresses/ranges manually.

Describe the solution you like

If ACLs could reference Firewall aliases, we could compose existing networks and addresses, as well as have automatic adjustments like tracked interfaces, and dynamic IPs like v6 prefixes.

Describe alternatives you considered

Using a hook script to pull my LAN IPv6 prefix out and sed it into the Bind conf file.

Additional context

Specifically, I'm looking to allowlist recursive queries from my LAN's IPv6 subnet, with it surviving a prefix change since my ISP does not guarantee a static prefix.