MicrosoftDocs
diff --git a/‎articles/network-watcher/media/nsg-flow-logs-overview/virtual-network-flow-timeout-settings.png
336 KB b/‎articles/network-watcher/media/nsg-flow-logs-overview/virtual-network-flow-timeout-settings.png
336 KB
diff --git a/‎articles/network-watcher/nsg-flow-logs-overview.md
Lines changed: 14 additions & 3 deletions b/‎articles/network-watcher/nsg-flow-logs-overview.md
Lines changed: 14 additions & 3 deletions
@@ -448,12 +448,23 @@ Flows affected by non-default inbound rules become non-terminating. Additionally
 
 You can resolve this difference by setting the `FlowTimeoutInMinutes` property on the associated virtual networks to a non-null value. You can achieve default stateful behavior by setting `FlowTimeoutInMinutes` to 4 minutes. For long-running connections where you don't want flows to disconnect from a service or destination, you can set `FlowTimeoutInMinutes` to a value of up to 30 minutes. Use [Set-AzVirtualNetwork](/powershell/module/az.network/set-azvirtualnetwork) to set `FlowTimeoutInMinutes` property:
 
+
 ```azurepowershell-interactive
-$virtualNetwork = Get-AzVirtualNetwork -Name 'myVNet' -ResourceGroupName 'myResourceGroup'
-$virtualNetwork.FlowTimeoutInMinutes = 4
-$virtualNetwork |  Set-AzVirtualNetwork
+$virtualNetwork = @{
+    Name               = 'myVNet'
+    ResourceGroupName  = 'myResourceGroup'
+}
+
+$virtualNetworkConfig = Get-AzVirtualNetwork @virtualNetwork
+$virtualNetworkConfig.FlowTimeoutInMinutes = 4
+$virtualNetworkConfig | Set-AzVirtualNetwork
 ```
 
+Flow timeout can also be set using the Azure portal:
+
+:::image type="content" source="./media/nsg-flow-logs-overview/virtual-network-timeout-settings.png" alt-text="Screenshot showing the virtual network timeout settings in the Azure portal." lightbox="./media/nsg-flow-logs-overview/virtual-network-timeout-settings.png":::
+
+
 ### Inbound flows logged from internet IPs to VMs without public IPs
 
 Virtual machines (VMs) that don't have a public IP address associated with the NIC as an instance-level public IP, or that are part of a basic load balancer back-end pool, use [default SNAT](../load-balancer/load-balancer-outbound-connections.md). Azure assigns an IP address to those VMs to facilitate outbound connectivity. As a result, you might see flow log entries for flows from internet IP addresses, if the flow is destined to a port in the range of ports that are assigned for SNAT.