diff --git a/refpolicy/policy/modules/kernel/corenetwork.if b/refpolicy/policy/modules/kernel/corenetwork.if
index 68ea75de..8d9c27f0 100644
--- a/refpolicy/policy/modules/kernel/corenetwork.if
+++ b/refpolicy/policy/modules/kernel/corenetwork.if
@@ -2,6 +2,7 @@
 ## <module name="corenetwork" layer="kernel">
 ## <summary>Policy controlling access to network objects</summary>
 
+ifdef(`interface_pass',`',`
 #######################################
 #
 # corenetwork_network_tcp_on_general_interface(domain)
@@ -784,6 +785,7 @@ attribute reserved_port_type;
 class udp_socket name_bind;
 ')
 
+') dnl end if not interface_pass
 ########################################
 #
 # This section is processed through m4 to create real interfaces
@@ -1315,4 +1317,6 @@ declare_ports($1_port_t,shift($*))
 ')
 ')
 
+ifdef(`interface_pass',`',`
 ## </module>
+')