my java client is running on Windows, so I guess I should run plink.
The article Andy linked to has the pink syntax.
Also, I am using VistaLink connections, so I assume that I should establish my connection using the same parameters that Andy used for RPCBroker. Is that right?
Almost the same, except that you will need to change 9260 to the port that your server is running VistaLink on. When I do SSH tunnels, I try to re-use the same port number on both sides to reduce confusion, unless the local port is already used by something else, or it's a low-numbered port (< 1024) that requires administrative privileges. So if VistaLink on your server was running on port 8001, I would use -L 8001:127.0.0.1:8001. Then no matter where I run the java application from, I just have to change the host in the java application's configuration -- I never have to worry about the port.
How about the server side? Do I need to configure ssh at the MUMPS level, or do I do it at the Linux-Ubuntu level?
On the server side, you just need to sudo apt-get install openssh-server. There is no configuration at the MUMPS level for SSH. To the MUMPS application, it will look like your tunneled connection is actually originating from the server machine itself.
You will need to make sure VistaLink is running -- that is configured at the MUMPS level.
