This instance was created about 8 hours ago so yes very new.

I tried my best at following the documentation on how to set up IAP at step 5, but still no progress, and still getting the same problem. probably didn't work because I'm new at this stuff and might have missed something.

All you have to do it's to create a Firewall rule like in my screenshot. Make sure you select the network that your VM uses and allow inbound connections on port 22 (SSH) from 35.235.240.0/20 (Google's CIDR block).

That should work.

I'm still having issues trying to ssh into the instance after doing what you said. But the weird thing is I can still SFTP into the instance through WinSCP, I don't know if that means something or not. I have also run troubleshooting through gc shell and comes back with no errors in the troubleshooting but if I try ssh using a shell command it says "Permission denied (publickey)".

That's a bit odd, SFTP is basically FTP through SSH.

Thanks for your help 

Hi,
I've got yesterday info about some issues related with GCE and ssh connections.
Maybe your problem was related to that. More info here : https://status.cloud.google.com/incidents/UHoBgMgvvQKa18JQjdbs

Regarding ssh client:
If Windows, use MobaXterm 🙂 
If MacOS use native terminal (or iTerm). If you want to also use RDP client, use RoyalTSX

Personally I'm using macOS, so iTerm and paid version of RoyalTSX. 

best,
DamianS