I should note that there are many ways to spoof mere headers in HTTP (X-Forwarded-For). Spoofing the connection IP is considerably more difficult.

On the other hand if you have multiple users behind the same proxy (or proxy bank) then restricting connection IP isn't fair.

On the whole, one-vote-per-username seems to be the fairest method of restricting polling... though it does require registration to vote...