I have a couple of VPN endpoints negotiationg 28800 lifetime, and some 86400 (default). One site, however, is configured with only one policy (86400) but negotiating at 28800. Shouldn't it pick up policy 2 instead? I know that between Cisco devices, the lower lifetime is used, but why are some picking up 86400 and some not?
crypto isakmp policy 1
crypto isakmp policy 2