diff --git a/selinux/tabrmd.te b/selinux/tabrmd.te
index 5f04fc46..59d7e548 100644
--- a/selinux/tabrmd.te
+++ b/selinux/tabrmd.te
@@ -1,10 +1,12 @@
-policy_module(tabrmd, 0.0.1)
+policy_module(tabrmd, 0.0.2)
 
 ########################################
 #
 # Declarations
 #
 
+gen_tunable(`tabrmd_connect_all_unreserved', false)
+
 type tabrmd_t;
 type tabrmd_exec_t;
 init_daemon_domain(tabrmd_t, tabrmd_exec_t)
@@ -13,6 +15,7 @@ allow tabrmd_t self:unix_dgram_socket { create_socket_perms };
 
 dev_rw_tpm(tabrmd_t)
 logging_send_syslog_msg(tabrmd_t)
+sysnet_dns_name_resolve(tabrmd_t)
 
 optional_policy(`
     dbus_stub()
@@ -20,3 +23,6 @@ optional_policy(`
     allow system_dbusd_t tabrmd_t:unix_stream_socket rw_stream_socket_perms;
 ')
 
+tunable_policy(`tabrmd_connect_all_unreserved',`
+    corenet_tcp_connect_all_unreserved_ports(tabrmd_t)
+')