diff --git a/ping.te b/ping.te
index 37b9b3c36240bd0d44d6b3e1c004c90aab227734..9adf079b93a6f23bdafe0a106c114c36c54f9c1d 100644
--- a/ping.te
+++ b/ping.te
@@ -1,4 +1,13 @@
 type ping, domain;
+permissive ping;
 type ping_exec, exec_type, file_type;
 domain_auto_trans(shell, ping_exec, ping)
-unconfined_domain(ping)
+
+allow ping self:capability net_raw;
+allow ping self:rawip_socket create_socket_perms;
+allow ping self:udp_socket create_socket_perms;
+allow ping node:rawip_socket node_bind;
+allow ping dnsproxyd_socket:sock_file write;
+allow ping netd:unix_stream_socket connectto;
+allow ping devpts:chr_file rw_file_perms;
+allow ping shell:fd use;