diff --git a/wificond.te b/wificond.te
index 544c9921370a32d458b530f0993444f5afe5858a..acdf522baf3c39e3eae82f65aec93fe146082c2c 100644
--- a/wificond.te
+++ b/wificond.te
@@ -13,3 +13,9 @@ allow wificond wificond_service:service_manager { add find };
 allow wificond sysfs_wlan_fwpath:file w_file_perms;
 
 set_prop(wificond, wifi_prop)
+
+# create sockets to set interfaces up and down
+allow wificond self:udp_socket create_socket_perms;
+allow wificond self:capability net_raw;
+
+r_dir_file(wificond, proc_net)