diff --git a/ChangeLog b/ChangeLog
index d83975a..6784926 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -20,10 +20,10 @@ vNEXT:
 	Warn about unknown settings in the configuration
 	file.
 
-	Added per-protocol `transparent` option. The option
-	requires CAP_NET_ADMIN to work. sslh-fork drops the
-	capability after creating the server-side
-	transparent socket.
+	Added per-protocol `transparent` option. sslh-fork
+	drops the capability after creating the server-side
+	transparent socket. Transparent now uses CAP_NET_RAW
+	instead of CAP_NET_ADMIN.
 
 v1.21: 11JUL2020
 	WARNING:
diff --git a/common.c b/common.c
index 8d215b9..e0999f3 100644
--- a/common.c
+++ b/common.c
@@ -801,7 +801,7 @@ static int use_transparent(void)
 }
 
 /* set needed capabilities for effective and permitted, clear rest
- * IN: cap_net_admin: set to 1 to set CAP_NET_ADMIN
+ * IN: cap_net_admin: set to 1 to set CAP_NET_RAW
  * */
 void set_capabilities(int cap_net_admin) {
 #ifdef LIBCAP
@@ -811,7 +811,7 @@ void set_capabilities(int cap_net_admin) {
     int ncap = 0;
 
     if (cap_net_admin)
-        cap_list[ncap++] = CAP_NET_ADMIN;
+        cap_list[ncap++] = CAP_NET_RAW;
 
     caps = cap_init();