1# DHCP client 2type dhcpclient, domain; 3type dhcpclient_exec, exec_type, vendor_file_type, file_type; 4 5init_daemon_domain(dhcpclient) 6net_domain(dhcpclient) 7 8dontaudit dhcpclient kernel:system module_request; 9allow dhcpclient self:capability { net_admin net_raw }; 10allow dhcpclient self:netlink_route_socket { ioctl write nlmsg_write }; 11allow dhcpclient varrun_file:dir search; 12allow dhcpclient self:packet_socket { create bind write read }; 13allowxperm dhcpclient self:netlink_route_socket ioctl { SIOCGIFFLAGS 14 SIOCSIFFLAGS 15 SIOCSIFMTU 16 SIOCGIFINDEX 17 SIOCGIFHWADDR }; 18