diff --git a/mac/apparmor/yumechi-no-kuni-proxy-worker b/mac/apparmor/yumechi-no-kuni-proxy-worker
index 8df7f0c..0fb5240 100644
--- a/mac/apparmor/yumechi-no-kuni-proxy-worker
+++ b/mac/apparmor/yumechi-no-kuni-proxy-worker
@@ -26,7 +26,7 @@ profile yumechi-no-kuni-proxy-worker @{prog_path} {
 
     network tcp,
     network udp,
-    network raw,
+    network netlink raw,
     deny network (bind) udp,
 
     change_profile -> yumechi-no-kuni-proxy-worker//serve,
@@ -67,6 +67,7 @@ profile yumechi-no-kuni-proxy-worker @{prog_path} {
 
         network tcp,
         network udp,
+        network netlink raw,
         deny network (bind) tcp,
         deny network (bind) udp,
 
@@ -81,6 +82,9 @@ profile yumechi-no-kuni-proxy-worker @{prog_path} {
             include <abstractions/apparmor_api/change_profile>
             include <abstractions/fonts>
 
+            deny capability,
+            deny network,
+
             signal (receive) peer=yume-proxy-worker//serve,
         }
     }