Hello Ryan, I have seen on more than one video that you copy your private ssh key when demonstrating SSH between a public instance and a private instance. You say, "I’m going to load the private key" and "you should never ever do that". Why don’t you use an ssh agent. It’s as simple as "ssh-add -K SOME_PRIVATE_KEY"
Thats right Daren…SSH forwarding is the recommended way of not storing the private keys on the bastion host but Ryan is warning here though.