diff --git a/public/racoon.te b/public/racoon.te
index c99740feeb2267a441be4ec5602f40d1c7b8fd66..b0fe669e602f6bc7bd461dd63e17ff929c10494d 100644
--- a/public/racoon.te
+++ b/public/racoon.te
@@ -5,6 +5,7 @@ type racoon_exec, exec_type, file_type;
 typeattribute racoon mlstrustedsubject;
 
 net_domain(racoon)
+allowxperm racoon self:udp_socket ioctl { SIOCSIFFLAGS SIOCSIFADDR };
 
 binder_use(racoon)