diff --git a/policy/modules/contrib/l2tp.te b/policy/modules/contrib/l2tp.te
index 10a8ea66f7..c32354caa1 100644
--- a/policy/modules/contrib/l2tp.te
+++ b/policy/modules/contrib/l2tp.te
@@ -30,12 +30,14 @@ allow l2tpd_t self:capability net_admin;
 allow l2tpd_t self:process signal_perms;
 allow l2tpd_t self:fifo_file rw_fifo_file_perms;
 allow l2tpd_t self:netlink_socket create_socket_perms;
+allow l2tpd_t self:netlink_generic_socket create_socket_perms;
 allow l2tpd_t self:rawip_socket create_socket_perms;
 allow l2tpd_t self:socket create_socket_perms;
 allow l2tpd_t self:tcp_socket { accept listen };
 allow l2tpd_t self:unix_dgram_socket sendto;
 allow l2tpd_t self:unix_stream_socket { accept listen };
 allow l2tpd_t self:pppox_socket create_socket_perms;
+allow l2tpd_t sysfs_t:file { open read };
 
 read_files_pattern(l2tpd_t, l2tp_conf_t, l2tp_conf_t)
 
@@ -77,6 +79,7 @@ kernel_request_load_module(l2tpd_t)
 corecmd_exec_bin(l2tpd_t)
 
 dev_read_urand(l2tpd_t)
+dev_read_sysfs(l2tpd_t)
 
 term_setattr_generic_ptys(l2tpd_t)
 term_use_generic_ptys(l2tpd_t)