Index: if.c
===================================================================
RCS file: /cvs/src/sys/net/if.c,v
retrieving revision 1.380
diff -u -p -r1.380 if.c
--- if.c	13 Sep 2015 18:15:03 -0000	1.380
+++ if.c	30 Sep 2015 09:36:42 -0000
@@ -1805,9 +1799,11 @@ ifioctl(struct socket *so, u_long cmd, c
 #endif
 	case SIOCSLIFPHYADDR:
 	case SIOCSLIFPHYRTABLE:
+	case SIOCSLIFPHYTTL:
 	case SIOCADDMULTI:
 	case SIOCDELMULTI:
 	case SIOCSIFMEDIA:
+	case SIOCSVNETID:
 		if ((error = suser(p, 0)) != 0)
 			return (error);
 		/* FALLTHROUGH */
Index: if_vxlan.c
===================================================================
RCS file: /cvs/src/sys/net/if_vxlan.c,v
retrieving revision 1.28
diff -u -p -r1.28 if_vxlan.c
--- if_vxlan.c	9 Sep 2015 20:05:21 -0000	1.28
+++ if_vxlan.c	30 Sep 2015 09:36:42 -0000
@@ -331,7 +331,6 @@ vxlanioctl(struct ifnet *ifp, u_long cmd
 	struct ifaddr		*ifa = (struct ifaddr *)data;
 	struct ifreq		*ifr = (struct ifreq *)data;
 	struct if_laddrreq	*lifr = (struct if_laddrreq *)data;
-	struct proc		*p = curproc;
 	int			 error = 0, s;
 
 	switch (cmd) {
@@ -359,8 +358,6 @@ vxlanioctl(struct ifnet *ifp, u_long cmd
 		break;
 
 	case SIOCSLIFPHYADDR:
-		if ((error = suser(p, 0)) != 0)
-			break;
 		s = splnet();
 		error = vxlan_config(ifp,
 		    (struct sockaddr *)&lifr->addr,
@@ -369,8 +366,6 @@ vxlanioctl(struct ifnet *ifp, u_long cmd
 		break;
 
 	case SIOCDIFPHYADDR:
-		if ((error = suser(p, 0)) != 0)
-			break;
 		s = splnet();
 		vxlan_multicast_cleanup(ifp);
 		bzero(&sc->sc_src, sizeof(sc->sc_src));
@@ -391,8 +386,6 @@ vxlanioctl(struct ifnet *ifp, u_long cmd
 		break;
 
 	case SIOCSLIFPHYRTABLE:
-		if ((error = suser(p, 0)) != 0)
-			break;
 		if (ifr->ifr_rdomainid < 0 ||
 		    ifr->ifr_rdomainid > RT_TABLEID_MAX ||
 		    !rtable_exists(ifr->ifr_rdomainid)) {
@@ -410,8 +403,6 @@ vxlanioctl(struct ifnet *ifp, u_long cmd
 		break;
 
 	case SIOCSLIFPHYTTL:
-		if ((error = suser(p, 0)) != 0)
-			break;
 		if (ifr->ifr_ttl < 0 || ifr->ifr_ttl > 0xff) {
 			error = EINVAL;
 			break;
@@ -429,8 +420,6 @@ vxlanioctl(struct ifnet *ifp, u_long cmd
 		break;
 
 	case SIOCSVNETID:
-		if ((error = suser(p, 0)) != 0)
-			break;
 		if (ifr->ifr_vnetid < 0 || ifr->ifr_vnetid > 0x00ffffff) {
 			error = EINVAL;
 			break;