[Feature]: Support IAP tunneling when connecting to GCP VMs

[colinjc]

Problem

To follow security best practices we need to lock down SSH access to GCP VMs to only IAP authorized users. To do this, we can limit the source range to the IAP range, but dstack doesn't use the IAP tunnel.

Solution

When connecting to a GCP VMs allow tunnelling through IAP. https://cloud.google.com/compute/docs/connect/ssh-using-iap#gcloud

Workaround

No response

Would you like to help us implement this feature by sending a PR?

No