Got the following from semanage (I changed the port number from what I entered): # semanage port -a -t ssh_port_t -p tcp 999 [28733.118322] SELinux: Class netlink_iscsi_socket not defined in policy. [28733.125460] SELinux: Class netlink_fib_lookup_socket not defined in policy. [28733.132966] SELinux: Class netlink_connector_socket not defined in policy. [28733.140386] SELinux: Class netlink_netfilter_socket not defined in policy. [28733.147877] SELinux: Class netlink_generic_socket not defined in policy. [28733.155085] SELinux: Class netlink_scsitransport_socket not defined in policy. [28733.162860] SELinux: Class netlink_rdma_socket not defined in policy. [28733.169814] SELinux: Class netlink_crypto_socket not defined in policy. [28733.177009] SELinux: Permission audit_read in class capability2 not defined in policy. [28733.185544] SELinux: Class binder not defined in policy. [28733.191290] SELinux: the above unknown classes and permissions will be allowed [28733.872053] SELinux: Context system_u:unconfined_r:sandbox_t:s0-s0:c0.c1023 became invalid (unmapped). [28733.999945] SELinux: Context unconfined_u:unconfined_r:sandbox_t:s0-s0:c0.c1023 became invalid (unmapped). Note that selinux is still in permissive mode.