local bricks logo
Menu
front face photo of akansha bajaj

Akanksha Bajaj

Leasing and Off-Plan Specialist

Email:akankshabajaj@example.com
Phone:9032109312
Location:Dubai

3. Why this is better

  1. Security: If you keep port 3001 open, anyone can visit your site via http://YOUR_IP:3001 and bypass your SSL/HTTPS and any security rules you set in Nginx.
  2. Professionalism: Users should never have to type :3001 in their browser.
  3. Scalability: You can have 50 apps running on your VPS, and you will still only have ports 80 and 443 open.

4. How the traffic flows now

  1. User types recruiting.darkalphacapital.com.
  2. Request hits your VPS on Port 80/443.
  3. Nginx sees the name "recruiting.darkalphacapital.com".
  4. Nginx sends that request internally to localhost:3001.
  5. Docker delivers it to your HR-Automation container.

Your Next Step

Since you've already run the ufw allow commands earlier, you are fine for now. But as soon as you finish the Nginx config and Certbot (SSL) steps I gave you in the previous message, I recommend deleting the individual port rules (3000 and 3001) to lock down your server.

Have you already added the "A Record" to your DNS settings for the subdomain? If so, we can check if it has propagated yet.