diff --git a/internal/fail2ban-curl-allow.pp b/internal/fail2ban-curl-allow.pp
new file mode 100644
index 0000000..936404a
Binary files /dev/null and b/internal/fail2ban-curl-allow.pp differ
diff --git a/internal/fail2ban-curl-allow.te b/internal/fail2ban-curl-allow.te
new file mode 100644
index 0000000..14c604d
--- /dev/null
+++ b/internal/fail2ban-curl-allow.te
@@ -0,0 +1,11 @@
+
+module fail2ban-curl-allow 1.0;
+
+require {
+	type fail2ban_t;
+	type http_cache_port_t;
+	class tcp_socket name_connect;
+}
+
+#============= fail2ban_t ==============
+allow fail2ban_t http_cache_port_t:tcp_socket name_connect;