Password Reset URL with external domain

I use the Keycloak admin REST API to trigger an email notification to the user for password reset.
However, the reset email goes out with the internal IP Address and port which will not be accessible externally outside the firewall.


Whereas, I actually need this to be something like

How do I go about setting this up such a way the external user gets the right URL ?

Thank you!