Create secure IAM-controlled connections between Google Cloud resources and VM instances!
- Become free from VPC firewall rules and start using IAM roles to control access in the Google Cloud.
- Allow yourself to use App Engine Standard environment that doesn't allow custom network configuration, instead of the slow-ass Flexible environment.
- Stop wasting your time trying to connect Cloud Functions to the VPC network.
How it works with IAM?
Simply give the allowed resource's service account the
Service Account User role,
as well as either
Compute OS Login
or (the less recommended)
Compute OS Admin Login
(which can be given on a specific VM instance), and start connecting!
npm install --save gcloud-ssh-tunnel
Then use it:
const gcloudSshTunnel = ;let tunnel =;// the return value is a promise (that can also be awaited)tunnel;//tunnel; // closes the tunnel and ends all client connections