From 37c7a28aa151d25b60e5bc4691e2bd1bd38bd307 Mon Sep 17 00:00:00 2001
From: "copilot-swe-agent[bot]" <198982749+Copilot@users.noreply.github.com>
Date: Fri, 13 Mar 2026 17:15:06 +0000
Subject: [PATCH 1/5] Initial plan
From 020dbe79c4fe18322b1485386ff58bd2bdca5372 Mon Sep 17 00:00:00 2001
From: "copilot-swe-agent[bot]" <198982749+Copilot@users.noreply.github.com>
Date: Fri, 13 Mar 2026 17:25:19 +0000
Subject: [PATCH 2/5] Add missing networking runtime configuration switches to
networking.md
Co-authored-by: BillWagner <493969+BillWagner@users.noreply.github.com>
---
docs/core/runtime-config/networking.md | 108 +++++++++++++++++++++++--
1 file changed, 103 insertions(+), 5 deletions(-)
diff --git a/docs/core/runtime-config/networking.md b/docs/core/runtime-config/networking.md
index 0b20557a3b562..b734a582738dd 100644
--- a/docs/core/runtime-config/networking.md
+++ b/docs/core/runtime-config/networking.md
@@ -1,7 +1,8 @@
---
title: Networking config settings
description: Learn about runtime settings that configure networking for .NET apps.
-ms.date: 11/27/2019
+ms.date: 03/13/2026
+ai-usage: ai-assisted
---
# Runtime configuration options for networking
@@ -17,14 +18,111 @@ ms.date: 11/27/2019
[!INCLUDE [runtimehostconfigurationoption](includes/runtimehostconfigurationoption.md)]
+## HTTP/3 protocol
+
+- Configures whether support for the HTTP/3 protocol is enabled.
+- In .NET 6, HTTP/3 is disabled by default and must be enabled explicitly. Starting in .NET 7, HTTP/3 is enabled by default.
+
+| | Setting name | Values |
+| - | - | - |
+| **runtimeconfig.json** | `System.Net.SocketsHttpHandler.Http3Support` | `false` - disabled (default in .NET 6)
`true` - enabled |
+| **Environment variable** | `DOTNET_SYSTEM_NET_HTTP_SOCKETSHTTPHANDLER_HTTP3SUPPORT` | `0` - disabled
`1` - enabled |
+
+[!INCLUDE [runtimehostconfigurationoption](includes/runtimehostconfigurationoption.md)]
+
## SPN creation in HttpClient (.NET 6 and later)
-- Impacts generation of [service principal names](/windows/win32/ad/service-principal-names) (SPN) for Kerberos and NTLM authentication when `Host` header is missing and target is not running on default port.
-- .NET 6 and later versions don't include the port in the SPN, but the behavior is configurable.
+- Impacts generation of [service principal names](/windows/win32/ad/service-principal-names) (SPN) for Kerberos and NTLM authentication when `Host` header is missing and the target isn't running on the default port.
+- .NET 6 and later versions don't include the port in the SPN by default. However, the behavior is configurable.
+
+| | Setting name | Values |
+| - | - | - |
+| **runtimeconfig.json** | `System.Net.Http.UsePortInSpn` | `true` - includes port number in SPN, for example, `HTTP/host:port`
`false` - doesn't include port in SPN, for example, `HTTP/host` |
+| **Environment variable** | `DOTNET_SYSTEM_NET_HTTP_USEPORTINSPN` | `1` - includes port number in SPN, for example, `HTTP/host:port`
`0` - doesn't include port in SPN, for example, `HTTP/host` |
+
+[!INCLUDE [runtimehostconfigurationoption](includes/runtimehostconfigurationoption.md)]
+
+## HTTP/2 dynamic window scaling
+
+- Configures whether the HTTP/2 dynamic window scaling algorithm is disabled for flow control. The algorithm is enabled by default.
+- When set to `true`, the dynamic window scaling algorithm is disabled.
+
+| | Setting name | Values |
+| - | - | - |
+| **runtimeconfig.json** | `System.Net.SocketsHttpHandler.Http2FlowControl.DisableDynamicWindowSizing` | `false` - enabled (default)
`true` - disabled |
+| **Environment variable** | `DOTNET_SYSTEM_NET_HTTP_SOCKETSHTTPHANDLER_HTTP2FLOWCONTROL_DISABLEDYNAMICWINDOWSIZING` | `0` - enabled (default)
`1` - disabled |
+
+[!INCLUDE [runtimehostconfigurationoption](includes/runtimehostconfigurationoption.md)]
+
+## HTTP/2 stream receive window size
+
+- Configures the maximum size of the HTTP/2 stream receive window.
+- Defaults to 16 MB. The value can't be less than 65,535.
+
+| | Setting name | Values |
+| - | - | - |
+| **Environment variable** | `DOTNET_SYSTEM_NET_HTTP_SOCKETSHTTPHANDLER_FLOWCONTROL_MAXSTREAMWINDOWSIZE` | Integer (default: 16 MB; minimum: 65,535) |
+
+## HTTP/2 stream window scale threshold
+
+- Configures the multiplier used for the HTTP/2 stream window scale threshold. This multiplier controls how aggressively the receive window grows. Higher values result in a more conservative window growth, which reduces peak throughput. The value can't be less than 0.
+- Defaults to 1.0.
+
+| | Setting name | Values |
+| - | - | - |
+| **Environment variable** | `DOTNET_SYSTEM_NET_HTTP_SOCKETSHTTPHANDLER_FLOWCONTROL_STREAMWINDOWSCALETHRESHOLDMULTIPLIER` | Float (default: 1.0; minimum: 0) |
+
+## HTTP activity propagation
+
+Configures whether distributed tracing activity propagation is enabled for . When enabled, outgoing HTTP requests propagate trace context headers (such as `traceparent`) for distributed tracing tools like OpenTelemetry.
+
+| | Setting name | Values |
+| - | - | - |
+| **runtimeconfig.json** | `System.Net.Http.EnableActivityPropagation` | `true` - enabled (default)
`false` - disabled |
+| **Environment variable** | `DOTNET_SYSTEM_NET_HTTP_ENABLEACTIVITYPROPAGATION` | `1` - enabled (default)
`0` - disabled |
+
+[!INCLUDE [runtimehostconfigurationoption](includes/runtimehostconfigurationoption.md)]
+
+## Socket inline completions
+
+Configures whether socket continuations are allowed to run on the event thread instead of being dispatched to the . Enabling this setting can improve performance in some scenarios. However, it might degrade performance if expensive work holds the I/O thread for longer than needed.
+
+> [!NOTE]
+> Test to make sure enabling this setting helps performance in your specific scenario.
+
+| | Setting name | Values |
+| - | - | - |
+| **Environment variable** | `DOTNET_SYSTEM_NET_SOCKETS_INLINE_COMPLETIONS` | `0` - disabled (default)
`1` - enabled |
+
+## Socket thread count
+
+Configures the number of threads used for socket I/O. When not overridden, the value is calculated based on processor count and architecture. Use this setting for extreme loads only.
+
+| | Setting name | Values |
+| - | - | - |
+| **Environment variable** | `DOTNET_SYSTEM_NET_SOCKETS_THREAD_COUNT` | Integer |
+
+## IPv6
+
+Configures whether Internet Protocol version 6 (IPv6) is disabled.
+
+| | Setting name | Values |
+| - | - | - |
+| **runtimeconfig.json** | `System.Net.DisableIPv6` | `false` - enabled (default)
`true` - disabled |
+| **Environment variable** | `DOTNET_SYSTEM_NET_DISABLEIPV6` | `0` - enabled (default)
`1` - disabled |
+
+[!INCLUDE [runtimehostconfigurationoption](includes/runtimehostconfigurationoption.md)]
+
+## UseSocketsHttpHandler
+
+Configures whether uses or the older HTTP handler implementations. When set to `false`, is used instead.
+
+> [!NOTE]
+> Starting in .NET 5, this setting is no longer available. is the only HTTP handler available.
| | Setting name | Values |
| - | - | - |
-| **runtimeconfig.json** | `System.Net.Http.UsePortInSpn` | `true` - includes port number in SPN, for example, `HTTP/host:port`
`false` - does not include port in SPN, for example, `HTTP/host` |
-| **Environment variable** | `DOTNET_SYSTEM_NET_HTTP_USEPORTINSPN` | `1` - includes port number in SPN, for example, `HTTP/host:port`
`0` - does not include port in SPN, for example, `HTTP/host` |
+| **runtimeconfig.json** | `System.Net.Http.UseSocketsHttpHandler` | `true` - use (default)
`false` - use |
+| **Environment variable** | `DOTNET_SYSTEM_NET_HTTP_USESOCKETSHTTPHANDLER` | `1` - use (default)
`0` - use |
[!INCLUDE [runtimehostconfigurationoption](includes/runtimehostconfigurationoption.md)]
From df2d6d1d2023386196c2b52cd8cbd453d11e97f3 Mon Sep 17 00:00:00 2001
From: Bill Wagner
Date: Mon, 16 Mar 2026 10:05:27 -0400
Subject: [PATCH 3/5] Apply suggestions from code review
Co-authored-by: Genevieve Warren <24882762+gewarren@users.noreply.github.com>
---
docs/core/runtime-config/networking.md | 8 ++++----
1 file changed, 4 insertions(+), 4 deletions(-)
diff --git a/docs/core/runtime-config/networking.md b/docs/core/runtime-config/networking.md
index b734a582738dd..11e1b9bd1fc0c 100644
--- a/docs/core/runtime-config/networking.md
+++ b/docs/core/runtime-config/networking.md
@@ -21,11 +21,11 @@ ai-usage: ai-assisted
## HTTP/3 protocol
- Configures whether support for the HTTP/3 protocol is enabled.
-- In .NET 6, HTTP/3 is disabled by default and must be enabled explicitly. Starting in .NET 7, HTTP/3 is enabled by default.
+- Starting in .NET 7, HTTP/3 is enabled by default.
| | Setting name | Values |
| - | - | - |
-| **runtimeconfig.json** | `System.Net.SocketsHttpHandler.Http3Support` | `false` - disabled (default in .NET 6)
`true` - enabled |
+| **runtimeconfig.json** | `System.Net.SocketsHttpHandler.Http3Support` | `false` - disabled
`true` - enabled |
| **Environment variable** | `DOTNET_SYSTEM_NET_HTTP_SOCKETSHTTPHANDLER_HTTP3SUPPORT` | `0` - disabled
`1` - enabled |
[!INCLUDE [runtimehostconfigurationoption](includes/runtimehostconfigurationoption.md)]
@@ -37,8 +37,8 @@ ai-usage: ai-assisted
| | Setting name | Values |
| - | - | - |
-| **runtimeconfig.json** | `System.Net.Http.UsePortInSpn` | `true` - includes port number in SPN, for example, `HTTP/host:port`
`false` - doesn't include port in SPN, for example, `HTTP/host` |
-| **Environment variable** | `DOTNET_SYSTEM_NET_HTTP_USEPORTINSPN` | `1` - includes port number in SPN, for example, `HTTP/host:port`
`0` - doesn't include port in SPN, for example, `HTTP/host` |
+| **runtimeconfig.json** | `System.Net.Http.UsePortInSpn` | `true` - include port number in SPN, for example, `HTTP/host:port`
`false` - don't include port in SPN, for example, `HTTP/host` |
+| **Environment variable** | `DOTNET_SYSTEM_NET_HTTP_USEPORTINSPN` | `1` - include port number in SPN, for example, `HTTP/host:port`
`0` - don't include port in SPN, for example, `HTTP/host` |
[!INCLUDE [runtimehostconfigurationoption](includes/runtimehostconfigurationoption.md)]
From bfc0bc996f685d485533911d4ee244959c7ad895 Mon Sep 17 00:00:00 2001
From: "copilot-swe-agent[bot]" <198982749+Copilot@users.noreply.github.com>
Date: Mon, 16 Mar 2026 14:07:49 +0000
Subject: [PATCH 4/5] Address PR review feedback: simplify HTTP/3 description,
fix br tags, remove UseSocketsHttpHandler section
Co-authored-by: BillWagner <493969+BillWagner@users.noreply.github.com>
---
docs/core/runtime-config/networking.md | 25 +++++--------------------
1 file changed, 5 insertions(+), 20 deletions(-)
diff --git a/docs/core/runtime-config/networking.md b/docs/core/runtime-config/networking.md
index 11e1b9bd1fc0c..a56aa9045d9a1 100644
--- a/docs/core/runtime-config/networking.md
+++ b/docs/core/runtime-config/networking.md
@@ -1,7 +1,7 @@
---
title: Networking config settings
description: Learn about runtime settings that configure networking for .NET apps.
-ms.date: 03/13/2026
+ms.date: 03/16/2026
ai-usage: ai-assisted
---
# Runtime configuration options for networking
@@ -20,12 +20,11 @@ ai-usage: ai-assisted
## HTTP/3 protocol
-- Configures whether support for the HTTP/3 protocol is enabled.
-- Starting in .NET 7, HTTP/3 is enabled by default.
+- Starting in .NET 7, HTTP/3 is enabled by default.
| | Setting name | Values |
| - | - | - |
-| **runtimeconfig.json** | `System.Net.SocketsHttpHandler.Http3Support` | `false` - disabled
`true` - enabled |
+| **runtimeconfig.json** | `System.Net.SocketsHttpHandler.Http3Support` | `false` - disabled
`true` - enabled |
| **Environment variable** | `DOTNET_SYSTEM_NET_HTTP_SOCKETSHTTPHANDLER_HTTP3SUPPORT` | `0` - disabled
`1` - enabled |
[!INCLUDE [runtimehostconfigurationoption](includes/runtimehostconfigurationoption.md)]
@@ -37,8 +36,8 @@ ai-usage: ai-assisted
| | Setting name | Values |
| - | - | - |
-| **runtimeconfig.json** | `System.Net.Http.UsePortInSpn` | `true` - include port number in SPN, for example, `HTTP/host:port`
`false` - don't include port in SPN, for example, `HTTP/host` |
-| **Environment variable** | `DOTNET_SYSTEM_NET_HTTP_USEPORTINSPN` | `1` - include port number in SPN, for example, `HTTP/host:port`
`0` - don't include port in SPN, for example, `HTTP/host` |
+| **runtimeconfig.json** | `System.Net.Http.UsePortInSpn` | `true` - include port number in SPN, for example, `HTTP/host:port`
`false` - don't include port in SPN, for example, `HTTP/host` |
+| **Environment variable** | `DOTNET_SYSTEM_NET_HTTP_USEPORTINSPN` | `1` - include port number in SPN, for example, `HTTP/host:port`
`0` - don't include port in SPN, for example, `HTTP/host` |
[!INCLUDE [runtimehostconfigurationoption](includes/runtimehostconfigurationoption.md)]
@@ -112,17 +111,3 @@ Configures whether Internet Protocol version 6 (IPv6) is disabled.
| **Environment variable** | `DOTNET_SYSTEM_NET_DISABLEIPV6` | `0` - enabled (default)
`1` - disabled |
[!INCLUDE [runtimehostconfigurationoption](includes/runtimehostconfigurationoption.md)]
-
-## UseSocketsHttpHandler
-
-Configures whether uses or the older HTTP handler implementations. When set to `false`, is used instead.
-
-> [!NOTE]
-> Starting in .NET 5, this setting is no longer available. is the only HTTP handler available.
-
-| | Setting name | Values |
-| - | - | - |
-| **runtimeconfig.json** | `System.Net.Http.UseSocketsHttpHandler` | `true` - use (default)
`false` - use |
-| **Environment variable** | `DOTNET_SYSTEM_NET_HTTP_USESOCKETSHTTPHANDLER` | `1` - use (default)
`0` - use |
-
-[!INCLUDE [runtimehostconfigurationoption](includes/runtimehostconfigurationoption.md)]
From c9d8bdbb1dc5c789ee28bad260316124ca853589 Mon Sep 17 00:00:00 2001
From: "copilot-swe-agent[bot]" <198982749+Copilot@users.noreply.github.com>
Date: Mon, 16 Mar 2026 14:22:45 +0000
Subject: [PATCH 5/5] Add additional networking runtime config switches: HTTP,
TLS, QUIC, and HttpListener
Co-authored-by: BillWagner <493969+BillWagner@users.noreply.github.com>
---
docs/core/runtime-config/networking.md | 94 ++++++++++++++++++++++++++
1 file changed, 94 insertions(+)
diff --git a/docs/core/runtime-config/networking.md b/docs/core/runtime-config/networking.md
index a56aa9045d9a1..dfa21c1bf7f0e 100644
--- a/docs/core/runtime-config/networking.md
+++ b/docs/core/runtime-config/networking.md
@@ -82,6 +82,43 @@ Configures whether distributed tracing activity propagation is enabled for proactively sends `Basic` proxy authentication credentials on the first request instead of waiting for a `407` challenge response from the proxy. This is useful for proxies that don't send `407` challenge responses.
+
+| | Setting name | Values |
+| - | - | - |
+| **runtimeconfig.json** | `System.Net.Http.SocketsHttpHandler.ProxyPreAuthenticate` | `false` - disabled (default)
`true` - enabled |
+| **Environment variable** | `DOTNET_SYSTEM_NET_HTTP_SOCKETSHTTPHANDLER_PROXYPREAUTHENTICATE` | `0` - disabled (default)
`1` - enabled |
+
+[!INCLUDE [runtimehostconfigurationoption](includes/runtimehostconfigurationoption.md)]
+
+## Maximum connections per server
+
+Configures the maximum number of simultaneous TCP connections that opens to a single server. The handler ignores values less than `1` and uses the default.
+
+- Defaults to unlimited (`int.MaxValue`).
+
+| | Setting name | Values |
+| - | - | - |
+| **runtimeconfig.json** | `System.Net.SocketsHttpHandler.MaxConnectionsPerServer` | Integer (default: unlimited) |
+| **Environment variable** | `DOTNET_SYSTEM_NET_HTTP_SOCKETSHTTPHANDLER_MAXCONNECTIONSPERSERVER` | Integer (default: unlimited) |
+
+[!INCLUDE [runtimehostconfigurationoption](includes/runtimehostconfigurationoption.md)]
+
## Socket inline completions
Configures whether socket continuations are allowed to run on the event thread instead of being dispatched to the . Enabling this setting can improve performance in some scenarios. However, it might degrade performance if expensive work holds the I/O thread for longer than needed.
@@ -111,3 +148,60 @@ Configures whether Internet Protocol version 6 (IPv6) is disabled.
| **Environment variable** | `DOTNET_SYSTEM_NET_DISABLEIPV6` | `0` - enabled (default)
`1` - disabled |
[!INCLUDE [runtimehostconfigurationoption](includes/runtimehostconfigurationoption.md)]
+
+## TLS session resumption
+
+Disables TLS session resumption for . Session resumption allows TLS reconnections to skip a full handshake by reusing previously negotiated session parameters, which reduces latency.
+
+| | Setting name | Values |
+| - | - | - |
+| **runtimeconfig.json** | `System.Net.Security.DisableTlsResume` | `false` - enabled (default)
`true` - disabled |
+| **Environment variable** | `DOTNET_SYSTEM_NET_SECURITY_DISABLETLSRESUME` | `0` - enabled (default)
`1` - disabled |
+
+[!INCLUDE [runtimehostconfigurationoption](includes/runtimehostconfigurationoption.md)]
+
+## Server AIA downloads
+
+When enabled, the TLS client automatically downloads intermediate certificates from Authority Information Access (AIA) extension URLs in server certificates. This allows the client to build a complete certificate chain even when the server doesn't send the full chain.
+
+| | Setting name | Values |
+| - | - | - |
+| **runtimeconfig.json** | `System.Net.Security.EnableServerAiaDownloads` | `false` - disabled (default)
`true` - enabled |
+| **Environment variable** | `DOTNET_SYSTEM_NET_SECURITY_ENABLESERVERAIADOWNLOADS` | `0` - disabled (default)
`1` - enabled |
+
+[!INCLUDE [runtimehostconfigurationoption](includes/runtimehostconfigurationoption.md)]
+
+## QUIC configuration caching
+
+Disables caching of MsQuic configuration objects. When enabled (default), the system caches and reuses configuration objects across connections, which reduces the overhead of TLS and QUIC setup for repeated connections with the same parameters.
+
+| | Setting name | Values |
+| - | - | - |
+| **runtimeconfig.json** | `System.Net.Quic.DisableConfigurationCache` | `false` - caching enabled (default)
`true` - caching disabled |
+| **Environment variable** | `DOTNET_SYSTEM_NET_QUIC_DISABLE_CONFIGURATION_CACHE` | `0` - caching enabled (default)
`1` - caching disabled |
+
+[!INCLUDE [runtimehostconfigurationoption](includes/runtimehostconfigurationoption.md)]
+
+## App-local MsQuic (Windows)
+
+When enabled, the QUIC implementation uses the MsQuic library from the application directory instead of the system-provided library bundled with the .NET assembly.
+
+| | Setting name | Values |
+| - | - | - |
+| **runtimeconfig.json** | `System.Net.Quic.AppLocalMsQuic` | `false` - use system MsQuic (default)
`true` - use app-local MsQuic |
+
+[!INCLUDE [runtimehostconfigurationoption](includes/runtimehostconfigurationoption.md)]
+
+## HttpListener kernel response buffering (Windows)
+
+When enabled, buffers response data in the kernel via HTTP.sys. Kernel buffering can significantly improve throughput over high-latency connections for applications that use synchronous I/O or asynchronous I/O with at most one outstanding write at a time. Don't enable this setting for applications with multiple concurrent outstanding writes.
+
+> [!NOTE]
+> Enabling kernel response buffering can result in higher CPU and memory usage by HTTP.sys.
+
+| | Setting name | Values |
+| - | - | - |
+| **runtimeconfig.json** | `System.Net.HttpListener.EnableKernelResponseBuffering` | `false` - disabled (default)
`true` - enabled |
+
+[!INCLUDE [runtimehostconfigurationoption](includes/runtimehostconfigurationoption.md)]
+