This artifact demonstrates how to securely access internal services (such as FileBrowser or Jupyter) running on FABRIC VMs using SSH tunnels through a bastion host. It includes automation to generate a self-contained archive (fabric_ssh_tunnel_tools.tgz) with the necessary SSH configuration and keys.

Once extracted, users can run a single ssh command using the provided ssh_config to establish a secure tunnel that forwards local ports to services hosted on their VM. This allows convenient browser-based access via localhost, even when the VM is on a private subnet.

Key Features:

• SSH tunnel setup using ProxyJump through the FABRIC bastion
• Packaged config and key management in a downloadable .tgz archive
• Support for port-forwarding multiple services (FileBrowser, etc.)
• Cross-platform usage (Linux, macOS, Windows with WSL or SSH clients)

Usage Example:

ssh -F ssh_config vm-alias

This creates a tunnel to the VM through the bastion, enabling access to services like:

http://localhost:5555   (FileBrowser)

This method is ideal for users needing secure, on-demand access to services running on FABRIC VMs without requiring direct external connectivity or VPNs.