fix(ns-scan): block network scan for large network (/19 or lower)

[m-dilorenzi]

This pull request enhances the network scanning functionality by adding subnet size validation and improving interface information. The most important changes are:

Network scanning improvements:

• Updated the scan function to take both device and interface parameters, and added logic to block ARP scans on subnets smaller than /20, returning a validation error if the subnet is too large.
• Added the netmask_to_cidr_notation helper function to convert a netmask (e.g., 255.255.0.0) into CIDR notation (e.g., 16), using the ipaddress module.

Interface listing enhancements:

• Modified the list_interfaces function to include the netmask in CIDR notation for each interface in its output.

Command-line interface updates:

• Updated the command-line argument handling to require and pass the interface parameter for scans, ensuring the new validation logic is used.

Refs: #1434

[Tbaile]

https://nethserver.github.io/python3-nethsec/nethsec.utils.html#get_interface_from_device

[gsanchietti]

Since you're already executing the code in a try/except, you get rif of the netmask_to_cidr notation function

[gsanchietti]

Suggested change

	netmask_cidr = netmask_to_cidr_notation(netmask)
	netmask_cidr = ipaddress.IPv4Network(f'0.0.0.0/{netmask}').prefixlen

[m-dilorenzi]

It’s best to use ip -j address to determine the network netmask. This approach also lets you handle interfaces that aren’t statically configured (ex. DHCP, OpenVPN tunnels, etc.), for which the netmask can’t be retrieved via UCI because it isn’t explicitly configured there.