Comment 11 for bug 1577488

In the description you stated:

The semantics surrounding the "enable_snat" flag when set to "False" on a distributed router could use some refinement. We could use this flag to enable SNAT node bypass (fast-exit). This approach has the benefit of cleaning up some semantics that seem loosley defined, and allows us to piggyback on an existing attribute without extending the model. The drawback is that this field is exposed to tenants who most likely are not aware of how their network traffic is routed by the provider network.

The policy framework can be leveraged to restrict access to this flag and I believe this is already possible to allow operators to prevent tenants for seeing it.

Can you elaborate if this is the only limitation you see?