# ec2-vpn-connection-ike-version-check
<a name="ec2-vpn-connection-ike-version-check"></a>

Checks if an Amazon EC2 VPN connection is configured to use only IKEv2 protocol. The rule is NON\_COMPLIANT if the VPN connection's tunnel allows IKE versions other than IKEv2. 



**Identifier:** EC2\_VPN\_CONNECTION\_IKE\_VERSION\_CHECK

**Resource Types:** AWS::EC2::VPNConnection

**Trigger type:** Configuration changes

**AWS Region:** All supported AWS regions except Asia Pacific (New Zealand), Middle East (Bahrain), China (Beijing), Asia Pacific (Thailand), Middle East (UAE), Asia Pacific (Malaysia), Mexico (Central), Asia Pacific (Taipei), Canada West (Calgary), China (Ningxia) Region

**Parameters:**

None  

## AWS CloudFormation template
<a name="w2aac20c16c17b7d635c19"></a>

To create AWS Config managed rules with AWS CloudFormation templates, see [Creating AWS Config Managed Rules With AWS CloudFormation Templates](aws-config-managed-rules-cloudformation-templates.md).