diff --git a/public/netd.te b/public/netd.te
index d01d2f85657536281a183191d4951b4eb4223bdc..1442be7cf5a37c89e88999c3b572c38d49dc9169 100644
--- a/public/netd.te
+++ b/public/netd.te
@@ -51,6 +51,9 @@ allow netd net_data_file:file create_file_perms;
 allow netd net_data_file:dir rw_dir_perms;
 allow netd self:capability fowner;
 
+# Needed to lock the iptables lock.
+allow netd system_file:file lock;
+
 # Allow netd to spawn dnsmasq in it's own domain
 allow netd dnsmasq:process signal;