diff --git a/sepolicy/ohos_policy/communication/netmanager/system/netsysnative.te b/sepolicy/ohos_policy/communication/netmanager/system/netsysnative.te
index b9f23ecdf36a9308bb7307a388f9ba03af6ccb23..844036ac0abf1b65c9b3c3f7de79f8c53497b7f6 100644
--- a/sepolicy/ohos_policy/communication/netmanager/system/netsysnative.te
+++ b/sepolicy/ohos_policy/communication/netmanager/system/netsysnative.te
@@ -38,11 +38,14 @@ allow netsysnative netsysnative:netlink_kobject_uevent_socket { listen };
 allow netsysnative system_bin_file:lnk_file { read };
 allow netsysnative accessibility_param:file { read open map };
 allow netsysnative data_service_file:dir { search };
-allow netsysnative data_service_el1_file:dir { search write add_name };
-allow netsysnative data_service_el1_file:file { create write open ioctl read };
+allow netsysnative data_service_el1_file:dir { search write add_name create remove_name };
+allow netsysnative data_service_el1_file:file { create write open ioctl read getattr setattr unlink lock };
 allow netsysnative fwmark_service:sock_file { create unlink setattr write };
 allow netsysnative dnsproxy_service:sock_file { create unlink setattr };
 allow netsysnative netsysnative:process { setfscreate };
+allow netsysnative netsysnative:packet_socket { create bind write read };
+allow netsysnative sa_foundation_cesfwk_service:samgr_class { get };
+allow netsysnative foundation:binder { call transfer };
 allow netsysnative normal_hap_attr:fd { use };
 allow netsysnative normal_hap_attr:tcp_socket { read write getopt setopt };
 allow netsysnative normal_hap_attr:unix_dgram_socket { read write getopt setopt };