This guide walks you through deploying a React Single Page Application (SPA) on an AWS EC2 instance using NGINX and securing it with SSL via Let's Encrypt. You'll also learn how to configure a custom domain (dgspace.xyz) and manage DNS using AWS Route 53.
-
Frontend: React SPA (built with
npm run build) -
Server: Ubuntu 22.04 EC2 Instance
-
Web Server: NGINX
-
SSL: Let's Encrypt via Certbot
-
Domain:
dgspace.xyz
📝 Note: These commands work on Ubuntu-based systems
(macOS Terminal, Linux shell, or Windows WSL).
If you're using another OS or shell, the steps might differ slightly.
This EC2 + NGINX deployment is beginner-friendly, it’s a great starting point for developers who want to:
✅ Learn and understand:
- How a server works and responds to requests
- How domain names (DNS) map to IP addresses and servers
- How NGINX serves static files or acts as a reverse proxy
- How to set up SSL (HTTPS) using Let's Encrypt / Certbot
- How to use tools like
scp,chmod, andsystemctlto manage files and services
🎯 Why this is great for beginners:
- You control every step, so you learn deeply by doing
- It's closer to real-world infrastructure compared to platforms like Vercel or Netlify
- You’ll gain experience debugging things like:
- Broken configs
- Firewall issues
- SSL errors
- Perfect for:
- Portfolio projects
- Side projects
- Prototypes and demos
- You’re responsible for keeping the server secure and updated
- You’ll manage your own:
- Error logging
- Performance optimization
- Scaling (if traffic increases)
Once you’re comfortable with the EC2 + NGINX setup, you can start exploring the next steps to make your development and deployment process even smoother:
- ✅ CI/CD Pipelines: Automatically deploy your app whenever you make changes. No more manual uploads, everything happens automatically.
- 🐳 Docker: Package your app and everything it needs into a single container. This way, your app runs the same everywhere, whether on your computer or a server.
- ☸️ Kubernetes (K8s): Manage multiple servers and scale your app as needed. It helps if your app grows and needs to handle more traffic.
- ☁️ Managed Services: Use platforms like Vercel, Netlify - these services host your app for you, so you don’t have to manage the server yourself. It’s fast, easy, and requires less maintenance.
- A built React app (
npm run build) - An AWS account (e.g., AWS Lightsail)
- A domain (e.g., GoDaddy)
- Access to your domain registrar's DNS settings
scpandsshinstalled locally- Your EC2 PEM key (e.g.,
dgtest.pem)
- Go to AWS EC2 Console.
- Choose a region close to your location.
- Click "Launch Instance":
- Name:
react-proxy-server - AMI: Ubuntu Server 22.04 LTS
- Instance type:
t2.micro(Free Tier eligible) - Key pair: Create or upload (e.g.,
dgtest.pem) - Network settings:
- Allow SSH (port 22) from your IP
- Allow HTTP (port 80) from anywhere (0.0.0.0/0)
- Click "Launch Instance"
- Connect to Your Instance Wait for a minute until the instance is in "Running" state.
- Click the instance and find the public IP (e.g. 12.34.56.78)
- Name:
In your terminal:
mkdir -p ~/.ssh
mv ~/Downloads/dgtest.pem ~/.ssh/
cd ~/.ssh
xattr -c dgtest.pem
chmod -N dgtest.pem
chmod 400 dgtest.pemSSH into the instance:
ssh -i ~/.ssh/dgtest.pem [email protected]sudo apt update
sudo apt install nginx -yCheck UFW status:
sudo ufw statusIf active, allow HTTP traffic:
sudo ufw allow 80/tcpAt this point, you can already visit http://12.34.56.78 (your EC2 IP) and see the NGINX welcome page or a test page.
Meanwhile, let's go set up your domain’s DNS.
Buy and manage your domain on GoDaddy. After purchase:
- Go to My Products → Find your domain → Click DNS / Manage DNS
-
In AWS Route 53 → Create a Hosted Zone
- Name:
dgspace.xyz - Type: Public
- Name:
-
Copy the 4 name servers listed under the
NSrecord. -
Back in GoDaddy:
- Go to DNS → Change Nameservers → Enter custom nameservers.
- Paste the 4 Route 53 nameservers and save.
Name server propagation may take up to 1 hour.
Go to your Route 53 hosted zone. Click “Create records.”
| Record Type | Name | Value | TTL |
|---|---|---|---|
| A | (blank) | 12.34.56.78 | 300 |
| A | www | 12.34.56.78 | 300 |
Install Certbot:
sudo apt install certbot python3-certbot-nginx -yRun Certbot to configure SSL:
sudo certbot --nginx -d dgspace.xyz -d www.dgspace.xyzVerify auto-renewal:
sudo certbot renew --dry-runOn your local machine, run:
scp -i ~/.ssh/dgtest.pem -r /path/to/react-app/build [email protected]:/home/ubuntu/dgspaceThen SSH into your server and confirm:
ssh -i ~/.ssh/dgtest.pem [email protected]
ls /home/ubuntu/dgspaceYou should see the build folder inside.
Update the NGINX config:
sudo nano /etc/nginx/sites-available/react-proxy.confReplace with:
server {
listen 80;
server_name dgspace.xyz www.dgspace.xyz;
root /home/ubuntu/dgspace/build;
index index.html;
location / {
return 301 https://$host$request_uri;
}
error_page 404 /404.html;
location = /40x.html {
root /usr/share/nginx/html;
}
}
server {
listen 443 ssl;
server_name dgspace.xyz www.dgspace.xyz;
root /home/ubuntu/dgspace/build;
index index.html;
ssl_certificate /etc/letsencrypt/live/dgspace.xyz/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/dgspace.xyz/privkey.pem;
location / {
try_files $uri $uri/ /index.html;
}
error_page 404 /404.html;
location = /40x.html {
root /usr/share/nginx/html;
}
}Test and reload:
sudo nginx -t
sudo systemctl restart nginxVisit:
- http://dgspace.xyz → redirects to HTTPS
- https://dgspace.xyz → shows your deployed React app
- Always restart NGINX after modifying configs.
- SSL certificates expire in 90 days — Certbot will auto-renew if configured properly.
- Logs:
sudo tail -f /var/log/nginx/error.log
/home/ubuntu/
├── dgspace/
│ └── build/
│ ├── index.html
│ ├── static/
│ └── ...
└── ...
- Public IP:
12.34.56.78 - Domain:
dgspace.xyz