Comment 3 for bug 1690937

Ihar, we want spoofing protection without the IP and only the MAC address. So in the case of 0.0.0.0/0, all IPs are acceptable only if the MAC the IP is associated with is in the list of configured MAC addresses.

We can ammend the if statement to something like the following (where get_mac() is fake):

if any(netaddr.IPNetwork(ip).prefixlen == 0 and not get_mac(ip) for ip in addresses)
    return

Use cases are for network security, I will ask for a specific scenario.