Events
Apr 29, 2 PM - Apr 30, 7 PM
Join the ultimate Windows Server virtual event April 29-30 for deep-dive technical sessions and live Q&A with Microsoft engineers.
Sign up nowNetwork Controller with Failover Clustering
Beginning with Windows Server 2025 Software Defined Networking infrastructure uses a smaller footprint for the Network Controller (NC), one of the core infrastructural components. NC can now be deployed directly on the host as a Failover Clustering service. Service Fabric based infrastructure continues to be supported. This article provides an overview of Network Controller high availability using Failover Clustering, how it works with Software Load Balancer and Gateways, and how it differs from Network Controller on Service Fabric.
Beginning with Azure Local, version 23H2, Software Defined Networking infrastructure uses a smaller footprint for the Network Controller (NC), one of the core infrastructural components. NC can now be deployed directly on the host as a Failover Clustering service. Service Fabric based infrastructure continues to be supported. This article provides an overview of Network Controller high availability using Failover Clustering, how it works with Software Load Balancer and Gateways, and how it differs from Network Controller on Service Fabric.
Network Controller is a key component of the SDN ecosystem. It allows you to deploy and manage your tenant network configurations, including virtual networking, logical networking, and network security. In previous versions of Windows Server and Azure Local, Network Controller had to be hosted inside a VM. VM-based resource deployment is a long and resource-intensive. VMs took up more CPU and Memory, resources that could be spent on your core application workloads. Beginning with Windows Server 2025 and Azure Local, version 23H2, the NC service will be natively integrated with the host machine using Failover Clustering, freeing up resources for your other workloads. The following illustration provides an overview of the key differences between NC on Service Fabric and NC on Failover Clustering.
With Network Controller on Failover Clustering, all the Network Controller microservices are now contained in a failover cluster resource group. SDN microservices use a single database and single partition, rather than three databases duplicated across 3 VMs when using Service Fabric. With each SDN microservice as a Failover Clustering resource group, there’s a significant reduction in CPU utilization and storage.
Network Controller and all its services are set as a Failover Cluster group set across the servers in your Software Defined Networking cluster. For example, your network topology includes four servers clustered together with a single Top-of-Rack (ToR) Switch, and the Network Controller component as a Failover Clustering Generic Resource is spread across all servers. Instead of the three VMs in previous versions, each Network Controller microservice is highly available as a Failover Cluster Resource Group. The following diagram shows a 4-node deployment with Network Controller on Failover Clustering.
The resource group has the same provisioning requirements as NC VMs. The API Microservice requires a floating IP address in your management network and DNS registration is still supported.
With Network Controller on Failover Clustering, resource ownership is associated with a specific node within the Failover Cluster. When a server goes down, resource groups are transferred to another node within the cluster. Replication of data is done through the underlying infrastructure of Failover Clustering which is Storage Replica. To learn more about Failover Clustering and Storage Replica, see the following resources:
This transition from Service Fabric to Failover Clustering only affects our Network Controlling services. Other network function virtualization roles, such as the Software Load Balancer and Gateway are still hosted on Virtual Machines. Network Controller on Failover Clustering doesn't affect the behavior or operation of other network function virtualization roles. For more details on Software Load Balancing and Gateways, visit the following links:
Start deploying Network Controller with Failover Clustering in your Software Defined Networking environment, see Deploy Network Controller with Failover Clustering.
To learn more about the requirements and configuration options, see Plan a SDN Deployment.
Start deploying Network Controller with Failover Clustering in your Software Defined Networking environment, see Deploy Network Controller with Failover Clustering.
To learn more about the requirements and configuration options, see Plan a SDN Deployment.
Additional resources
Training
Learning path
Implement Windows Server high availability - Training
Implement Windows Server high availability
Certification
Microsoft Certified: Azure Network Engineer Associate - Certifications
Demonstrate the design, implementation, and maintenance of Azure networking infrastructure, load balancing traffic, network routing, and more.
Documentation
-
Deploy Network Controller with Failover Clustering on Windows Server and Azure Local
Learn how to deploy Network Controller with Failover Clustering using SDN Express on Windows Server and Azure Local.
-
Network Controller with Service Fabric on Windows Server and Azure Local
You can use this topic to learn about Network Controller high availability for Software Defined Networking (SDN) in Windows Server.
-
Post-Deployment Steps for Network Controller
This topic provides certificate configuration instructions for non-Kerberos deployments of Network Controller in Windows Server 2019 and 2016 Datacenter.