apiVersion: networking.gke.io/v1 kind: MultiClusterIngress metadata: name: foobar-ingress namespace: multi-cluster-demo annotations: networking.gke.io/static-ip: x.x.x.x networking.gke.io/pre-shared-certs: "mci-certs" spec: template: spec: backend: serviceName: default-backend servicePort: 443 rules: - host: bar1.endpoints.$PROJECT-ID.cloud.goog http: paths: - backend: serviceName: bar servicePort: 443 - host: foo1.endpoints.$PROJECT-ID.cloud.goog http: paths: - backend: serviceName: foo servicePort: 443 --- apiVersion: networking.gke.io/v1 kind: MultiClusterService metadata: name: foo namespace: multi-cluster-demo annotations: beta.cloud.google.com/backend-config: '{"ports": {"443":"backend-health-check"}}' networking.gke.io/app-protocols: '{"https":"HTTPS"}' spec: template: spec: selector: app: foo ports: - name: https protocol: TCP port: 443 targetPort: 443 --- apiVersion: networking.gke.io/v1 kind: MultiClusterService metadata: name: bar namespace: multi-cluster-demo annotations: beta.cloud.google.com/backend-config: '{"ports": {"443":"backend-health-check"}}' networking.gke.io/app-protocols: '{"https":"HTTPS"}' spec: template: spec: selector: app: bar ports: - name: https protocol: TCP port: 443 targetPort: 443 --- apiVersion: networking.gke.io/v1 kind: MultiClusterService metadata: name: default-backend namespace: multi-cluster-demo annotations: beta.cloud.google.com/backend-config: '{"default": "backend-health-check"}' networking.gke.io/app-protocols: '{"https":"HTTPS"}' spec: template: spec: selector: app: default-backend ports: - name: https protocol: TCP port: 443 targetPort: 443 --- apiVersion: cloud.google.com/v1 kind: BackendConfig metadata: name: backend-health-check namespace: multi-cluster-demo spec: healthCheck: requestPath: /healthz port: 443 type: HTTPS