diff --git a/racoon.te b/racoon.te
index 1a2e54659bf2e96cbc686590009acbb045e14268..bf272d1e8f057ed279f8b1868ae7d6a5a2377434 100644
--- a/racoon.te
+++ b/racoon.te
@@ -19,9 +19,6 @@ allow racoon self:capability { net_admin net_bind_service net_raw setuid };
 
 # XXX: should we give ip-up-vpn its own label (currently racoon domain)
 allow racoon system_file:file rx_file_perms;
-# XXX Run toolbox.  Might not be needed.
-allow racoon toolbox_exec:file rx_file_perms;
-auditallow racoon toolbox_exec:file rx_file_perms;
 allow racoon vpn_data_file:file create_file_perms;
 allow racoon vpn_data_file:dir w_dir_perms;