![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(169.60000000000002, 66%, 26%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EC%3C/text%3E%3C/svg%3E)
Azure Application Gateway
An Azure service that provides a platform-managed, scalable, and highly available application delivery controller as a service.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(124.80000000000001, 83%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERV%3C/text%3E%3C/svg%3E)
Hello @cargobuddy,
Thank you for reaching out to Microsoft Q&A.
As discussed, offline, we observed that the Application Gateway was configured with only a public IP address, while the AKS cluster was deployed with private access only and does not have a public endpoint enabled.
In this scenario, if the AKS cluster is intended to be accessed using a private IP, the Application Gateway must also have a private frontend IP configuration in addition to the public IP.
After adding a private IP configuration to the Application Gateway and restarting the Ingress Controller, the issue was resolved.
The AKS backend pool is now being automatically detected and populated in the Application Gateway as expected.
If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".