Bilal was assigned a pentest to scan a specific server. Upon reviewing the task, he noticed the requirement: 'The attacker must scan all the ports on the server multiple times using a set of spoofed source IP addresses.' Which Nmap flag should Bilal use to fulfill this requirement?