---
title: CORS
url: https://docs.vultr.com/products/network/cdn-pull-zone/features/cors
description: Cross-Origin Resource Sharing (CORS) is a security feature that controls how web resources on one domain can be requested from another domain.
publish_date: 2024-09-23T20:21:07.118198Z
last_updated: 2026-05-26T20:16:29.445408Z
---

# How to Enable CORS Protection for Vultr CDN Pull Zones

Cross-Origin Resource Sharing (CORS) Protection in Vultr CDN Pull Zones provides you with the capability to manage which websites can access your content. This feature helps secure your resources by allowing you to specify approved domains and prevent unauthorized sites from making requests. By implementing CORS protection, you ensure that your content is only shared with trusted sources, enhancing both security and control over how your content is distributed and accessed.

Follow this guide to enable the CORS protection feature for Vultr CDN Pull Zones on your Vultr account using the Vultr Console, API, or CLI.

=== "Vultr Console"

    1. Navigate to **Products**, click **CDN**, and then click **Pull Zones**.
    1. Click your target CDN Pull Zone subscription to open its management page.
    1. Click **Features**.
    1. Select **cors** and click **Update Features**.

=== "Vultr API"

    1. Send a `GET` request to the [**List CDN Pull Zones** endpoint](https://www.vultr.com/api/#tag/CDNs/operation/list-pullzones) and note the target Pull Zone subscription's ID.

        ```console
        $ curl "https://api.vultr.com/v2/cdns/pull-zones" \
            -X GET \
            -H "Authorization: Bearer ${VULTR_API_KEY}"
        ```

    1. Send a `PUT` request to the [**Update CDN Pull Zone** endpoint](https://www.vultr.com/api/#tag/CDNs/operation/update-pullzone) to enable cors protection feature for your target Pull Zone subscription.

        ```console
        $ curl "https://api.vultr.com/v2/cdns/pull-zones/{pullzone-id}" \
            -X PUT \
            -H "Authorization: Bearer ${VULTR_API_KEY}" \
            -H "Content-Type: application/json" \
            --data '{
                "cors": true
            }'
        ```

=== "Vultr CLI"

    1. List all available CDN Pull Zone subscriptions and note the target Pull Zone subscription's ID. 

        ```console
        $ vultr-cli cdn pull list
        ```

    1. Enable cors protection feature for your target Pull Zone subscription.

        ```console
        $ vultr-cli cdn pull update <pullzone-id> --cors
        ```