diff --git a/sepolicy/ohos_policy/communication/netmanager/system/netsysnative.te b/sepolicy/ohos_policy/communication/netmanager/system/netsysnative.te
index b563bc43bd7c732a8bd429b8242084875a3e18cd..8aac7b64ec767575f8c5716af24fd52b4d358551 100644
--- a/sepolicy/ohos_policy/communication/netmanager/system/netsysnative.te
+++ b/sepolicy/ohos_policy/communication/netmanager/system/netsysnative.te
@@ -40,6 +40,13 @@ allow netsysnative data_service_el1_file:file { create write open ioctl read };
 allow netsysnative fwmark_service:sock_file { create unlink setattr write };
 allow netsysnative dnsproxy_service:sock_file { create unlink setattr };
 allow netsysnative netsysnative:process { setfscreate };
+allow netsysnative netsysnative:tcp_socket { create connect write read getopt setopt };
+allow netsysnative port:tcp_socket { name_connect };
+allow netsysnative normal_hap:fd { use };
+allow netsysnative normal_hap:tcp_socket { read write getopt setopt };
+allow netsysnative normal_hap:unix_dgram_socket { read write getopt setopt };
+allow netsysnative normal_hap:udp_socket { read write getopt setopt };
+allow netsysnative normal_hap:unix_stream_socket { read write getopt setopt };
 allow netsysnative normal_hap_attr:fd { use };
 allow netsysnative normal_hap_attr:tcp_socket { read write getopt setopt };
 allow netsysnative normal_hap_attr:unix_dgram_socket { read write getopt setopt };