diff --git a/DEPLOYMENT.md b/DEPLOYMENT.md
index f3999a3e..690bdb65 100644
--- a/DEPLOYMENT.md
+++ b/DEPLOYMENT.md
@@ -54,7 +54,11 @@ terraform plan \
     -var "env_id=${ENV_ID}" \
     -var "spanner_processing_units=100" \
     -var "deletion_protection=false" \
-    -var "datastore_region_id=us-east1"
+    -var "datastore_region_id=us-east1" \
+    -var "backend_domains=[\"${ENV_ID}-api.test.webstatus.dev\"]" \
+    -var "frontend_domains=[\"${ENV_ID}-website.test.webstatus.dev\"]" \
+    -var "custom_ssl_certificates_for_frontend=[]" \
+    -var "custom_ssl_certificates_for_backend=[]"
 ```
 
 That will print the plan to create everything. Once it looks okay, run:
@@ -65,9 +69,15 @@ terraform apply \
     -var "env_id=${ENV_ID}" \
     -var "spanner_processing_units=100" \
     -var "deletion_protection=false" \
-    -var "datastore_region_id=us-east1"
+    -var "datastore_region_id=us-east1" \
+    -var "backend_domains=[\"${ENV_ID}-api.test.webstatus.dev\"]" \
+    -var "frontend_domains=[\"${ENV_ID}-website.test.webstatus.dev\"]" \
+    -var "custom_ssl_certificates_for_frontend=[]" \
+    -var "custom_ssl_certificates_for_backend=[]"
 ```
 
+**NOTE**: You may need to run it multiple times if it gets stuck.
+
 Create the tables by running:
 
 ```sh
@@ -100,7 +110,12 @@ terraform destroy \
     -var "env_id=${ENV_ID}" \
     -var "spanner_processing_units=100" \
     -var "deletion_protection=false" \
-    -var "datastore_region_id=us-east1"
+    -var "datastore_region_id=us-east1" \
+    -var "custom_ssl_certificates_for_frontend=[]" \
+    -var "custom_ssl_certificates_for_backend=[]"
+
+If it fails, run: `./network/clean_up.sh web-compass-staging ${ENV_ID}-webstatus-dev-network`
+
 terraform workspace select default
 terraform workspace delete $ENV_ID
 ```
diff --git a/infra/backend/service.tf b/infra/backend/service.tf
index b1abaf06..d86e9064 100644
--- a/infra/backend/service.tf
+++ b/infra/backend/service.tf
@@ -276,6 +276,17 @@ resource "google_compute_target_https_proxy" "lb_https_proxy" {
   ]
 }
 
+# resource "google_dns_record_set" "dns" {
+#   count = var.dns_zone != null ? 1: 0
+#   name = "frontend.${var.dns_zone}"
+#   type = "A"
+#   ttl  = 300
+
+#   managed_zone = var.dns_zone
+
+#   rrdatas = [google_compute_instance.frontend.network_interface[0].access_config[0].nat_ip]
+# }
+
 resource "google_compute_managed_ssl_certificate" "lb_default" {
   provider = google.public_project
   name     = "${var.env_id}-backend-ssl-cert"
diff --git a/infra/backend/variables.tf b/infra/backend/variables.tf
index 842d5464..ad11fbb3 100644
--- a/infra/backend/variables.tf
+++ b/infra/backend/variables.tf
@@ -94,3 +94,8 @@ variable "min_instance_count" {
 variable "max_instance_count" {
   type = number
 }
+
+# variable "dns_zone" {
+#   type     = string
+#   nullable = true
+# }