diff --git a/refpolicy/policy/modules/services/dhcp.te b/refpolicy/policy/modules/services/dhcp.te
index 0d1cec9..d738e10 100644
--- a/refpolicy/policy/modules/services/dhcp.te
+++ b/refpolicy/policy/modules/services/dhcp.te
@@ -24,7 +24,8 @@ files_pid_file(dhcpd_var_run_t)
 # Local policy
 #
 
-dontaudit dhcpd_t self:capability { net_raw net_admin sys_tty_config };
+allow dhcpd_t self:capability net_raw;
+dontaudit dhcpd_t self:capability { net_admin sys_tty_config };
 allow dhcpd_t self:process signal_perms;
 allow dhcpd_t self:fifo_file { read write getattr };
 allow dhcpd_t self:unix_dgram_socket create_socket_perms;
@@ -38,6 +39,7 @@ allow dhcpd_t self:rawip_socket create_socket_perms;
 
 can_exec(dhcpd_t,dhcpd_exec_t)
 
+allow dhcpd_t dhcpd_state_t:dir rw_dir_perms;
 allow dhcpd_t dhcpd_state_t:file create_file_perms;
 sysnet_create_dhcp_state(dhcpd_t,dhcpd_state_t)