config:
  ubuntu-core:
    autopilot: true
    timezone: Europe/Berlin
    hostname: testhost
    modprobe: ""
    network:
      interfaces:
      - name: eth0
        content: |
          allow-hotplug eth0
          iface eth0 inet dhcp
      ppp:
      - name: ppp/chap-secrets
        content: "# Secrets for authentication using CHAP\n# client\tserver\tsecret\t\t\tIP
          addresses\n\n\n"
      - name: ppp/ip-down
        content: "#!/bin/sh\n#\n# This script is run by the pppd _after_ the link
          is brought down.\n# It uses run-parts to run scripts in /etc/ppp/ip-down.d,
          so to delete\n# routes, unset IP addresses etc. you should create script(s)
          there.\n#\n# Be aware that other packages may include /etc/ppp/ip-down.d
          scripts (named\n# after that package), so choose local script names with
          that in mind.\n#\n# This script is called with the following arguments:\n#
          \   Arg  Name                          Example\n#    $1   Interface name
          \               ppp0\n#    $2   The tty                       ttyS1\n#    $3
          \  The link speed                38400\n#    $4   Local IP number               12.34.56.78\n#
          \   $5   Peer  IP number               12.34.56.99\n#    $6   Optional ``ipparam''
          value    foo\n\n# The  environment is cleared before executing this script\n#
          so the path must be reset\nPATH=/usr/local/sbin:/usr/sbin:/sbin:/usr/local/bin:/usr/bin:/bin\nexport
          PATH\n\n# These variables are for the use of the scripts run by run-parts\nPPP_IFACE=\"$1\"\nPPP_TTY=\"$2\"\nPPP_SPEED=\"$3\"\nPPP_LOCAL=\"$4\"\nPPP_REMOTE=\"$5\"\nPPP_IPPARAM=\"$6\"\nexport
          PPP_IFACE PPP_TTY PPP_SPEED PPP_LOCAL PPP_REMOTE PPP_IPPARAM\n\n# as an
          additional convenience, $PPP_TTYNAME is set to the tty name,\n# stripped
          of /dev/ (if present) for easier matching.\nPPP_TTYNAME=`/usr/bin/basename
          \"$2\"`\nexport PPP_TTYNAME \n\n# If /var/log/ppp-ipupdown.log exists use
          it for logging.\nif [ -e /var/log/ppp-ipupdown.log ]; then\n  exec >> /var/log/ppp-ipupdown.log
          2>&1\n  echo $0 $@\n  echo\nfi\n\n# This script can be used to override
          the .d files supplied by other packages.\nif [ -x /etc/ppp/ip-down.local
          ]; then\n  exec /etc/ppp/ip-down.local \"$@\"\nfi\n\nrun-parts /etc/ppp/ip-down.d
          \\\n  --arg=\"$1\" --arg=\"$2\" --arg=\"$3\" --arg=\"$4\" --arg=\"$5\" --arg=\"$6\"\n\n"
      - name: ppp/ip-down.d/0000usepeerdns
        content: |+
          #!/bin/sh -e

          # exit if the resolvconf package is installed
          [ -x /sbin/resolvconf ] && exit 0

          # follow any symlink to find the real file
          if [ -e /etc/resolv.conf ]; then
            REALRESOLVCONF=$(readlink --canonicalize /etc/resolv.conf)
          else
            REALRESOLVCONF=/etc/resolv.conf
          fi

          # if an old resolv.conf file exists, restore it
          if [ -e $REALRESOLVCONF.pppd-backup.$PPP_IFACE ]; then
            mv -f $REALRESOLVCONF.pppd-backup.$PPP_IFACE $REALRESOLVCONF

            # restart nscd because resolv.conf has changed
            if [ -e /var/run/nscd.pid ]; then
              /etc/init.d/nscd restart || true
            fi
          fi

          exit 0

      - name: ppp/ip-down.d/000resolvconf
        content: |+
          #!/bin/sh
          #
          # PPP down hook script for resolvconf
          #
          # Reconfigures resolver to take into account
          # the disappearance of the ppp interface.
          #
          # This file is part of the resolvconf package.
          #

          [ -x /sbin/resolvconf ] || exit 0

          case "$6" in
            nm-pptp-service-*|nm-l2tp-service-*|/org/freedesktop/NetworkManager/PPP/*)
              # NetworkManager handles it
              exit 0
              ;;
          esac

          /sbin/resolvconf -d "${PPP_IFACE}.pppd"

      - name: ppp/ip-up
        content: "#!/bin/sh\n#\n# This script is run by the pppd after the link is
          established.\n# It uses run-parts to run scripts in /etc/ppp/ip-up.d, so
          to add routes,\n# set IP address, run the mailq etc. you should create script(s)
          there.\n#\n# Be aware that other packages may include /etc/ppp/ip-up.d scripts
          (named\n# after that package), so choose local script names with that in
          mind.\n#\n# This script is called with the following arguments:\n#    Arg
          \ Name                          Example\n#    $1   Interface name                ppp0\n#
          \   $2   The tty                       ttyS1\n#    $3   The link speed                38400\n#
          \   $4   Local IP number               12.34.56.78\n#    $5   Peer  IP number
          \              12.34.56.99\n#    $6   Optional ``ipparam'' value    foo\n\n#
          The  environment is cleared before executing this script\n# so the path
          must be reset\nPATH=/usr/local/sbin:/usr/sbin:/sbin:/usr/local/bin:/usr/bin:/bin\nexport
          PATH\n\n# These variables are for the use of the scripts run by run-parts\nPPP_IFACE=\"$1\"\nPPP_TTY=\"$2\"\nPPP_SPEED=\"$3\"\nPPP_LOCAL=\"$4\"\nPPP_REMOTE=\"$5\"\nPPP_IPPARAM=\"$6\"\nexport
          PPP_IFACE PPP_TTY PPP_SPEED PPP_LOCAL PPP_REMOTE PPP_IPPARAM\n\n# as an
          additional convenience, $PPP_TTYNAME is set to the tty name,\n# stripped
          of /dev/ (if present) for easier matching.\nPPP_TTYNAME=`/usr/bin/basename
          \"$2\"`\nexport PPP_TTYNAME \n\n# If /var/log/ppp-ipupdown.log exists use
          it for logging.\nif [ -e /var/log/ppp-ipupdown.log ]; then\n  exec > /var/log/ppp-ipupdown.log
          2>&1\n  echo $0 $@\n  echo\nfi\n\n# This script can be used to override
          the .d files supplied by other packages.\nif [ -x /etc/ppp/ip-up.local ];
          then\n  exec /etc/ppp/ip-up.local \"$@\"\nfi\n\nrun-parts /etc/ppp/ip-up.d
          \\\n  --arg=\"$1\" --arg=\"$2\" --arg=\"$3\" --arg=\"$4\" --arg=\"$5\" --arg=\"$6\"\n\n#
          if pon was called with the \"quick\" argument, stop pppd\nif [ -e /var/run/ppp-quick
          ]; then\n  rm /var/run/ppp-quick\n  wait\n  kill $PPPD_PID\nfi\n\n"
      - name: ppp/ip-up.d/0000usepeerdns
        content: |+
          #!/bin/sh -e

          # this variable is only set if the usepeerdns pppd option is being used
          [ "$USEPEERDNS" ] || exit 0

          # exit if the resolvconf package is installed
          [ -x /sbin/resolvconf ] && exit 0

          # create the file if it does not exist
          if [ ! -e /etc/resolv.conf ]; then
            : > /etc/resolv.conf
          fi

          # follow any symlink to find the real file
          REALRESOLVCONF=$(readlink --canonicalize /etc/resolv.conf)

          # merge the new nameservers with the other options from the old configuration
          {
            cat /etc/ppp/resolv.conf
            grep --invert-match '^nameserver[[:space:]]' "$REALRESOLVCONF" || true
          } > "$REALRESOLVCONF.tmp"

          # backup the old configuration and install the new one
          cp -a "$REALRESOLVCONF" "$REALRESOLVCONF.pppd-backup.$PPP_IFACE"
          mv -f "$REALRESOLVCONF.tmp" "$REALRESOLVCONF"

          # restart nscd because resolv.conf has changed
          if [ -e /var/run/nscd.pid ]; then
            /etc/init.d/nscd restart || true
          fi

          exit 0

      - name: ppp/ip-up.d/000resolvconf
        content: "#!/bin/sh\n#\n# PPP up hook script for resolvconf\n#\n# Reconfigures
          resolver to take into account\n# the appearance of the ppp interface.\n#\n#
          This file is part of the resolvconf package.\n#\n\n[ -x /sbin/resolvconf
          ] || exit 0\n\n[ \"$USEPEERDNS\" ] || exit 0\n\ncase \"$6\" in\n  nm-pptp-service-*|nm-l2tp-service-*|/org/freedesktop/NetworkManager/PPP/*)\n\t#
          NetworkManager handles it\n\texit 0\n\t;;\nesac\n\nR=\"\"\nif [ \"$DNS1\"
          ] ; then\n\tR=\"${R}nameserver $DNS1\n\"\nfi\nif [ \"$DNS2\" ] ; then\n\tR=\"${R}nameserver
          $DNS2\n\"\nfi\n\necho -n \"$R\" | /sbin/resolvconf -a \"${PPP_IFACE}.pppd\"\n\n"
      - name: ppp/ipv6-down
        content: |+
          #!/bin/sh

          # These variables are for the use of the scripts run by run-parts.
          PPP_IFACE="$1"
          PPP_TTY="$2"
          PPP_SPEED="$3"
          PPP_LOCAL="$4"
          PPP_REMOTE="$5"
          PPP_IPPARAM="$6"
          export PPP_IFACE PPP_TTY PPP_SPEED PPP_LOCAL PPP_REMOTE PPP_IPPARAM

          # The environment is cleared before executing this script.
          PATH=/usr/local/sbin:/usr/sbin:/sbin:/usr/local/bin:/usr/bin:/bin
          export PATH

          # If /var/log/ppp-ipupdown.log exists use it for logging.
          if [ -e /var/log/ppp-ipupdown.log ]; then
            exec >> /var/log/ppp-ipupdown.log 2>&1
          fi

          # This script can be used to override the .d files supplied by other packages.
          if [ -x /etc/ppp/ipv6-down.local ]; then
            exec /etc/ppp/ipv6-down.local "$@"
          fi

          run-parts /etc/ppp/ipv6-down.d \
            --arg="$1" --arg="$2" --arg="$3" --arg="$4" --arg="$5" --arg="$6"

      - name: ppp/ipv6-up
        content: |+
          #!/bin/sh

          # These variables are for the use of the scripts run by run-parts.
          PPP_IFACE="$1"
          PPP_TTY="$2"
          PPP_SPEED="$3"
          PPP_LOCAL="$4"
          PPP_REMOTE="$5"
          PPP_IPPARAM="$6"
          export PPP_IFACE PPP_TTY PPP_SPEED PPP_LOCAL PPP_REMOTE PPP_IPPARAM

          # The environment is cleared before executing this script.
          PATH=/usr/local/sbin:/usr/sbin:/sbin:/usr/local/bin:/usr/bin:/bin
          export PATH

          # If /var/log/ppp-ipupdown.log exists use it for logging.
          if [ -e /var/log/ppp-ipupdown.log ]; then
            exec >> /var/log/ppp-ipupdown.log 2>&1
          fi

          # This script can be used to override the .d files supplied by other packages.
          if [ -x /etc/ppp/ipv6-up.local ]; then
            exec /etc/ppp/ipv6-up.local "$@"
          fi

          run-parts /etc/ppp/ipv6-up.d \
            --arg="$1" --arg="$2" --arg="$3" --arg="$4" --arg="$5" --arg="$6"

          # if pon was called with the "quick" argument, stop pppd
          if [ -e /var/run/ppp-quick ]; then
            rm /var/run/ppp-quick
            wait
            kill $PPPD_PID
          fi

      - name: ppp/options
        content: "# /etc/ppp/options\n# \n# Originally created by Jim Knoble <jmknoble@mercury.interpath.net>\n#
          Modified for Debian by alvar Bray <alvar@meiko.co.uk>\n# Modified for PPP
          Server setup by Christoph Lameter <clameter@debian.org>\n#\n# To quickly
          see what options are active in this file, use this command:\n#   egrep -v
          '#|^ *$' /etc/ppp/options\n\n# Specify which DNS Servers the incoming Win95
          or WinNT Connection should use\n# Two Servers can be remotely configured\n#
          ms-dns 192.168.1.1\n# ms-dns 192.168.1.2\n\n# Specify which WINS Servers
          the incoming connection Win95 or WinNT should use\n# ms-wins 192.168.1.50\n#
          ms-wins 192.168.1.51\n\n# Run the executable or shell command specified
          after pppd has\n# terminated the link.  This script could, for example,
          issue commands\n# to the modem to cause it to hang up if hardware modem
          control signals\n# were not available.\n#disconnect \"chat -- \\d+++\\d\\c
          OK ath0 OK\"\n\n# async character map -- 32-bit hex; each bit is a character\n#
          that needs to be escaped for pppd to receive it.  0x00000001\n# represents
          '\\x01', and 0x80000000 represents '\\x1f'.\nasyncmap 0\n\n# Require the
          peer to authenticate itself before allowing network\n# packets to be sent
          or received.\n# Please do not disable this setting. It is expected to be
          standard in\n# future releases of pppd. Use the call option (see manpage)
          to disable\n# authentication for specific peers.\nauth\n\n# Use hardware
          flow control (i.e. RTS/CTS) to control the flow of data\n# on the serial
          port.\ncrtscts\n\n# Use software flow control (i.e. XON/XOFF) to control
          the flow of data\n# on the serial port.\n#xonxoff\n\n# Specifies that certain
          characters should be escaped on transmission\n# (regardless of whether the
          peer requests them to be escaped with its\n# async control character map).
          \ The characters to be escaped are\n# specified as a list of hex numbers
          separated by commas.  Note that\n# almost any character can be specified
          for the escape option, unlike\n# the asyncmap option which only allows control
          characters to be\n# specified.  The characters which may not be escaped
          are those with hex\n# values 0x20 - 0x3f or 0x5e.\n#escape 11,13,ff\n\n#
          Don't use the modem control lines.\n#local\n\n# Specifies that pppd should
          use a UUCP-style lock on the serial device\n# to ensure exclusive access
          to the device.\nlock\n\n# Don't show the passwords when logging the contents
          of PAP packets.\n# This is the default.\nhide-password\n\n# When logging
          the contents of PAP packets, this option causes pppd to\n# show the password
          string in the log message.\n#show-password\n\n# Use the modem control lines.
          \ On Ultrix, this option implies hardware\n# flow control, as for the crtscts
          option.  (This option is not fully\n# implemented.)\nmodem\n\n# Set the
          MRU [Maximum Receive Unit] value to <n> for negotiation.  pppd\n# will ask
          the peer to send packets of no more than <n> bytes. The\n# minimum MRU value
          is 128.  The default MRU value is 1500.  A value of\n# 296 is recommended
          for slow links (40 bytes for TCP/IP header + 256\n# bytes of data).\n#mru
          542\n\n# Set the interface netmask to <n>, a 32 bit netmask in \"decimal
          dot\"\n# notation (e.g. 255.255.255.0).\n#netmask 255.255.255.0\n\n# Disables
          the default behaviour when no local IP address is specified,\n# which is
          to determine (if possible) the local IP address from the\n# hostname. With
          this option, the peer will have to supply the local IP\n# address during
          IPCP negotiation (unless it specified explicitly on the\n# command line
          or in an options file).\n#noipdefault\n\n# Enables the \"passive\" option
          in the LCP.  With this option, pppd will\n# attempt to initiate a connection;
          if no reply is received from the\n# peer, pppd will then just wait passively
          for a valid LCP packet from\n# the peer (instead of exiting, as it does
          without this option).\n#passive\n\n# With this option, pppd will not transmit
          LCP packets to initiate a\n# connection until a valid LCP packet is received
          from the peer (as for\n# the \"passive\" option with old versions of pppd).\n#silent\n\n#
          Don't request or allow negotiation of any options for LCP and IPCP\n# (use
          default values).\n#-all\n\n# Disable Address/Control compression negotiation
          (use default, i.e.\n# address/control field disabled).\n#-ac\n\n# Disable
          asyncmap negotiation (use the default asyncmap, i.e. escape\n# all control
          characters).\n#-am\n\n# Don't fork to become a background process (otherwise
          pppd will do so\n# if a serial device is specified).\n#-detach\n\n# Disable
          IP address negotiation (with this option, the remote IP\n# address must
          be specified with an option on the command line or in\n# an options file).\n#-ip\n\n#
          Disable IPCP negotiation and IP communication. This option should\n# only
          be required if the peer is buggy and gets confused by requests\n# from pppd
          for IPCP negotiation.\n#noip\n\n# Disable magic number negotiation.  With
          this option, pppd cannot\n# detect a looped-back line.\n#-mn\n\n# Disable
          MRU [Maximum Receive Unit] negotiation (use default, i.e.\n# 1500).\n#-mru\n\n#
          Disable protocol field compression negotiation (use default, i.e.\n# protocol
          field compression disabled).\n#-pc\n\n# Require the peer to authenticate
          itself using PAP.\n#+pap\n\n# Don't agree to authenticate using PAP.\n#-pap\n\n#
          Require the peer to authenticate itself using CHAP [Cryptographic\n# Handshake
          Authentication Protocol] authentication.\n#+chap\n\n# Don't agree to authenticate
          using CHAP.\n#-chap\n\n# Disable negotiation of Van Jacobson style IP header
          compression (use\n# default, i.e. no compression).\n#-vj\n\n# Increase debugging
          level (same as -d).  If this option is given, pppd\n# will log the contents
          of all control packets sent or received in a\n# readable form.  The packets
          are logged through syslog with facility\n# daemon and level debug. This
          information can be directed to a file by\n# setting up /etc/syslog.conf
          appropriately (see syslog.conf(5)).  (If\n# pppd is compiled with extra
          debugging enabled, it will log messages\n# using facility local2 instead
          of daemon).\n#debug\n\n# Append the domain name <d> to the local host name
          for authentication\n# purposes.  For example, if gethostname() returns the
          name porsche,\n# but the fully qualified domain name is porsche.Quotron.COM,
          you would\n# use the domain option to set the domain name to Quotron.COM.\n#domain
          <d>\n\n# Enable debugging code in the kernel-level PPP driver.  The argument
          n\n# is a number which is the sum of the following values: 1 to enable\n#
          general debug messages, 2 to request that the contents of received\n# packets
          be printed, and 4 to request that the contents of transmitted\n# packets
          be printed.\n#kdebug n\n\n# Set the MTU [Maximum Transmit Unit] value to
          <n>. Unless the peer\n# requests a smaller value via MRU negotiation, pppd
          will request that\n# the kernel networking code send data packets of no
          more than n bytes\n# through the PPP network interface.\n#mtu <n>\n\n# Set
          the name of the local system for authentication purposes to <n>.\n# This
          is a privileged option. With this option, pppd will use lines in the\n#
          secrets files which have <n> as the second field when looking for a\n# secret
          to use in authenticating the peer. In addition, unless overridden\n# with
          the user option, <n> will be used as the name to send to the peer\n# when
          authenticating the local system to the peer. (Note that pppd does\n# not
          append the domain name to <n>.)\n#name <n>\n\n# Enforce the use of the hostname
          as the name of the local system for\n# authentication purposes (overrides
          the name option).\n#usehostname\n\n# Set the assumed name of the remote
          system for authentication purposes\n# to <n>.\n#remotename <n>\n\n# Add
          an entry to this system's ARP [Address Resolution Protocol]\n# table with
          the IP address of the peer and the Ethernet address of this\n# system.\n#proxyarp\n\n#
          Use the system password database for authenticating the peer using\n# PAP.
          Note: mgetty already provides this option. If this is specified\n# then
          dialin from users using a script under Linux to fire up ppp wont work.\n#
          login\n\n# If this option is given, pppd will send an LCP echo-request frame
          to the\n# peer every n seconds. Normally the peer should respond to the
          echo-request\n# by sending an echo-reply. This option can be used with the\n#
          lcp-echo-failure option to detect that the peer is no longer connected.\nlcp-echo-interval
          30\n\n# If this option is given, pppd will presume the peer to be dead if
          n\n# LCP echo-requests are sent without receiving a valid LCP echo-reply.\n#
          If this happens, pppd will terminate the connection.  Use of this\n# option
          requires a non-zero value for the lcp-echo-interval parameter.\n# This option
          can be used to enable pppd to terminate after the physical\n# connection
          has been broken (e.g., the modem has hung up) in\n# situations where no
          hardware modem control lines are available.\nlcp-echo-failure 4\n\n# Set
          the LCP restart interval (retransmission timeout) to <n> seconds\n# (default
          3).\n#lcp-restart <n>\n\n# Set the maximum number of LCP terminate-request
          transmissions to <n>\n# (default 3).\n#lcp-max-terminate <n>\n\n# Set the
          maximum number of LCP configure-request transmissions to <n>\n# (default
          10).\n#lcp-max-configure <n>\n\n# Set the maximum number of LCP configure-NAKs
          returned before starting\n# to send configure-Rejects instead to <n> (default
          10).\n#lcp-max-failure <n>\n\n# Set the IPCP restart interval (retransmission
          timeout) to <n>\n# seconds (default 3).\n#ipcp-restart <n>\n\n# Set the
          maximum number of IPCP terminate-request transmissions to <n>\n# (default
          3).\n#ipcp-max-terminate <n>\n\n# Set the maximum number of IPCP configure-request
          transmissions to <n>\n# (default 10).\n#ipcp-max-configure <n>\n\n# Set
          the maximum number of IPCP configure-NAKs returned before starting\n# to
          send configure-Rejects instead to <n> (default 10).\n#ipcp-max-failure <n>\n\n#
          Set the PAP restart interval (retransmission timeout) to <n> seconds\n#
          (default 3).\n#pap-restart <n>\n\n# Set the maximum number of PAP authenticate-request
          transmissions to\n# <n> (default 10).\n#pap-max-authreq <n>\n\n# Set the
          maximum time that pppd will wait for the peer to authenticate\n# itself
          with PAP to <n> seconds (0 means no limit).\n#pap-timeout <n>\n\n# Set the
          CHAP restart interval (retransmission timeout for\n# challenges) to <n>
          seconds (default 3).\n#chap-restart <n>\n\n# Set the maximum number of CHAP
          challenge transmissions to <n>\n# (default 10).\n#chap-max-challenge\n\n#
          If this option is given, pppd will rechallenge the peer every <n>\n# seconds.\n#chap-interval
          <n>\n\n# With this option, pppd will accept the peer's idea of our local
          IP\n# address, even if the local IP address was specified in an option.\n#ipcp-accept-local\n\n#
          With this option, pppd will accept the peer's idea of its (remote) IP\n#
          address, even if the remote IP address was specified in an option.\n#ipcp-accept-remote\n\n#
          Disable the IPXCP and IPX protocols.\n# To let pppd pass IPX packets comment
          this out --- you'll probably also\n# want to install ipxripd, and have the
          Internal IPX Network option enabled\n# in your kernel.  /usr/doc/HOWTO/IPX-HOWTO.gz
          contains more info.\nnoipx\n\n# Exit once a connection has been made and
          terminated. This is the default,\n# unless the `persist' or `demand' option
          has been specified.\n#nopersist\n\n# Do not exit after a connection is terminated;
          instead try to reopen\n# the connection.\n#persist\n\n# Terminate after
          n consecutive failed connection attempts.\n# A value of 0 means no limit.
          The default value is 10.\n#maxfail <n>\n\n# Initiate the link only on demand,
          i.e. when data traffic is present. \n# With this option, the remote IP address
          must be specified by the user on\n# the command line or in an options file.
          \ Pppd will initially configure\n# the interface and enable it for IP traffic
          without connecting to the peer. \n# When traffic is available, pppd will
          connect to the peer and perform\n# negotiation, authentication, etc.  When
          this is completed, pppd will\n# commence passing data packets (i.e., IP
          packets) across the link.\n#demand\n\n# Specifies that pppd should disconnect
          if the link is idle for <n> seconds.\n# The link is idle when no data packets
          (i.e. IP packets) are being sent or\n# received.  Note: it is not advisable
          to use this option with the persist\n# option without the demand option.
          \ If the active-filter option is given,\n# data packets which are rejected
          by the specified activity filter also\n# count as the link being idle.\n#idle
          <n>\n\n# Specifies how many seconds to wait before re-initiating the link
          after\n# it terminates.  This option only has any effect if the persist
          or demand\n# option is used.  The holdoff period is not applied if the link
          was\n# terminated because it was idle.\n#holdoff <n>\n\n# Wait for up n
          milliseconds after the connect script finishes for a valid\n# PPP packet
          from the peer.  At the end of this time, or when a valid PPP\n# packet is
          received from the peer, pppd will commence negotiation by\n# sending its
          first LCP packet.  The default value is 1000 (1 second).\n# This wait period
          only applies if the connect or pty option is used.\n#connect-delay <n>\n\n#
          Packet filtering: for more information, see pppd(8)\n# Any packets matching
          the filter expression will be interpreted as link\n# activity, and will
          cause a \"demand\" connection to be activated, and reset\n# the idle connection
          timer. (idle option)\n# The filter expression is akin to that of tcpdump(1)\n#active-filter
          <filter-expression>\n\n# ---<End of File>---\n"
      - name: ppp/pap-secrets
        content: "#\n# /etc/ppp/pap-secrets\n#\n# This is a pap-secrets file to be
          used with the AUTO_PPP function of\n# mgetty. mgetty-0.99 is preconfigured
          to startup pppd with the login option\n# which will cause pppd to consult
          /etc/passwd (and /etc/shadow in turn)\n# after a user has passed this file.
          Don't be disturbed therefore by the fact\n# that this file defines logins
          with any password for users. /etc/passwd\n# (again, /etc/shadow, too) will
          catch passwd mismatches.\n#\n# This file should block ALL users that should
          not be able to do AUTO_PPP.\n# AUTO_PPP bypasses the usual login program
          so it's necessary to list all\n# system userids with regular passwords here.\n#\n#
          ATTENTION: The definitions here can allow users to login without a\n# password
          if you don't use the login option of pppd! The mgetty Debian\n# package
          already provides this option; make sure you don't change that.\n\n# INBOUND
          connections\n\n# Every regular user can use PPP and has to use passwords
          from /etc/passwd\n*\thostname\t\"\"\t*\n\n# UserIDs that cannot use PPP
          at all. Check your /etc/passwd and add any\n# other accounts that should
          not be able to use pppd!\nguest\thostname\t\"*\"\t-\nmaster\thostname\t\"*\"\t-\nroot\thostname\t\"*\"\t-\nsupport\thostname\t\"*\"\t-\nstats\thostname\t\"*\"\t-\n\n#
          OUTBOUND connections\n\n# Here you should add your userid password to connect
          to your providers via\n# PAP. The * means that the password is to be used
          for ANY host you connect\n# to. Thus you do not have to worry about the
          foreign machine name. Just\n# replace password with your password.\n# If
          you have different providers with different passwords then you better\n#
          remove the following line.\n\n#\t*\tpassword\n\n\n"
      - name: ppp/peers/provider
        content: |+
          # example configuration for a dialup connection authenticated with PAP or CHAP
          #
          # This is the default configuration used by pon(1) and poff(1).
          # See the manual page pppd(8) for information on all the options.

          # MUST CHANGE: replace myusername@realm with the PPP login name given to
          # your by your provider.
          # There should be a matching entry with the password in /etc/ppp/pap-secrets
          # and/or /etc/ppp/chap-secrets.
          user "myusername@realm"

          # MUST CHANGE: replace ******** with the phone number of your provider.
          # The /etc/chatscripts/pap chat script may be modified to change the
          # modem initialization string.
          connect "/usr/sbin/chat -v -f /etc/chatscripts/pap -T ********"

          # Serial device to which the modem is connected.
          /dev/modem

          # Speed of the serial line.
          115200

          # Assumes that your IP address is allocated dynamically by the ISP.
          noipdefault
          # Try to get the name server addresses from the ISP.
          usepeerdns
          # Use this connection as the default route.
          defaultroute

          # Makes pppd "dial again" when the connection is lost.
          persist

          # Do not ask the remote to authenticate.
          noauth

    watchdog:
      startup: |
        # Start watchdog at boot time? 0 or 1
        run_watchdog=1
        # Start wd_keepalive after stopping watchdog? 0 or 1
        run_wd_keepalive=1
        # Load module before starting watchdog
        watchdog_module="none"
        # Specify additional watchdog options here (see manpage).
      config: "#ping\t\t\t= 172.31.14.1\n#ping\t\t\t= 172.26.1.255\n#interface\t\t=
        eth0\n#file\t\t\t= /var/log/messages\n#change\t\t\t= 1407\n\n# Uncomment to
        enable test. Setting one of these values to '0' disables it.\n# These values
        will hopefully never reboot your machine during normal use\n# (if your machine
        is really hung, the loadavg will go much higher than 25)\n#max-load-1\t\t=
        24\n#max-load-5\t\t= 18\n#max-load-15\t\t= 12\n\n# Note that this is the number
        of pages!\n# To get the real size, check how large the pagesize is on your
        machine.\n#min-memory\t\t= 1\n#allocatable-memory\t= 1\n\n#repair-binary\t\t=
        /usr/sbin/repair\n#repair-timeout\t\t= \n#test-binary\t\t= \n#test-timeout\t\t=
        \n\n#watchdog-device\t= /dev/watchdog\n\n# Defaults compiled into the binary\n#temperature-device\t=\n#max-temperature\t=
        120\n\n# Defaults compiled into the binary\n#admin\t\t\t= root\n#interval\t\t=
        1\n#logtick                = 1\n#log-dir\t\t= /var/log/watchdog\n\n# This
        greatly decreases the chance that watchdog won't be scheduled before\n# your
        machine is really loaded\nrealtime\t\t= yes\npriority\t\t= 1\n\n# Check if
        rsyslogd is still running by enabling the following line\n#pidfile\t\t= /var/run/rsyslogd.pid
        \  \n\n"