Work with F5 Beacon

F5 Beacon tracks the health and status of different application components, defines application structure and allows users to create customized dashboards to get a global view of their applications.

The main entities in Beacon are:

  • Source - endpoints sending telemetry data to Beacon; for example, BIG-IP as a source sends stats (status, metrics, etc.) on virtual servers
  • Application - Beacon’s representation of an application, depicted as a tree structure composed of components
  • Component - a single entity in the application tree structure with health derived from one or more metrics and/or dependencies on other components
  • Monitor - a synthetic test to monitor uptime and performance for HTTP endpoints and DNS lookups
  • Widget - a visualization module that utilizes Beacon data to provide insight on the application portfolio
  • Dashboard - a customizable grouping of widgets
  • Insight - Pertinent information about the application portfolio. Insights are categorized as cost, operational, or security. Custom insights are created by customers via API or the portal. Built-in insights are provided by F5.

To utilize Beacon, users configure endpoints (i.e. sources) to ingest telemetry data to Beacon, create monitors, onboard applications, create insights and create dashboards to help capture all these insights.

Beacon API and Postman collection

Login & Navigate to F5 Beacon

  1. Login to the F5 Beacon portal at
  2. Click the Beacon icon in the Cloud Services navigation menu on the left.

Beacon has the following menu items:

  • Application Landscape - manage and view applications in a list or plotted on a map
  • Dashboard View - view configured dashboards
  • Insights - view built-in and custom insights by category and severity
  • Dashboard Management - create, modify and delete dashboards
  • Configuration - configure sources to ingest telemetry data for applications


F5 Beacon offers a single pane of glass, where telemetry data from different sources can be fused together to provide actionable insights.  Telemetry data can be ingested from different sources, leveraging built-in integrations such as F5 BIG-IP, F5 BIG-IQ and many more.

For the latest set of integrations refer to Configuration > Integrations.

Adding a new source

  1. Navigate to Configuration.

  2. Navigate to the Integrations tab and click the link on each tile to view the instructions. For the purposes of this documentation, we will focus on F5 BIG-IP integration using Telemetry Streaming as an example. Refer to the Beacon Getting Started Guide for a more in-depth tutorial on how to onboard other sources.

  1. Follow the instructions provided and create a token for use on BIG-IP.

  2. On the Tokens tab, click Create. Provide a name and optional description and click Create Token.

  3. Click the Show button and copy the access token for use in the Telemetry Streaming declaration.

  4. After following the instructions for configuring Telemetry Streaming, navigate to the Sources tab and see the newly added BIG-IP source.


  1. It can take up to a minute for a device to be processed and appear in the list of sources.
  2. If the device still does not appear, validate the device has outbound connectivity to Beacon and/or check the Telemetry Streaming log.

Onboard an application

Applications in Beacon are composed of one or more components. For example, an application may be composed of an API service and data processing services. Components can be nested in a tree structure to represent the dependencies that they have on each other.

Applications can be created using the declarative API or using the portal. Applications consist of a tree structure, starting with the application at the root. The application will include components as dependencies, which themselves may have dependencies. For any component in the tree, one or more health sources can be defined. The application can also include metadata in the form of key/value labels.

The telemetry data that sources send to Beacon can be used to define health for a component. This is referred to as a health source. The health for each component is derived from the combination of associated health sources and dependencies on other components. When creating applications, the portal makes it easy to select source data used to define health.


In the above example, metrics for healthy BIG-IP virtual servers are attached as health sources for the Data process API, API Gateway and Database components. A metric for an unhealthy BIG-IP virtual server is attached as a health source to the Backend API component.

Create application

  1. Navigate to Beacon via the Cloud Services navigation menu.

  2. On the Application Landscape page, click Create.

  3. The Create Application page will appear. Initially, a side panel will be shown to configure the root component. Provide a name, plus optional description and labels if desired. Health sources can be added to the root component directly, or its health can be derived solely from its children. When complete, click Save. Finish creating the application by adding additional components as desired.


When attaching metrics to an application to define health, there are a handful of measurements currently supported:

  • bigip-virtual - health defined by a BIG-IP virtual server
  • bigiq-app - health defined by a BIG-IQ application
  • bigiq-app-svc - health defined by a BIG-IQ application service
  • monitor - health defined by a Beacon HTTP monitor
  • dns-monitor - health defined by a Beacon DNS monitor
  • beacon-health-source - health defined by anything feeding data to the Beacon generic ingestion API
  • uptime-robot - health defined by an Uptime Robot monitor

Display application on the map

An application can be placed on the map by adding the following labels (case sensitive) on the root component of an application.

  • location: this label is used as the display text for the location (e.g. Seattle)

  • latitude: this label is used to capture the latitude coordinates (e.g. 47.60357)

  • longitude: this label is used to capture the longitude coordinates (e.g. -122.32945)


Filter by location using the map

  1. Click a country in the Map View to show all applications in that country.

  2. Hover over a cluster in the Map View to see a summary of application health at that location.

  3. Click a cluster from the Map View to see applications at that location in the List View.


View application details

  1. Click on the row for an application to see a slide panel that shows health history, associated insights and other details for the application.

  2. To see a more detailed view of an application, click on the application name in the List View or one of the headers in the slide panel. The detailed view provides multiple tabs showing various aspects of the application. For components that use an F5 health source (BIG-IP, BIG-IQ, monitors or DNS Load Balancer), metrics can also be viewed on the Application Map tab.

  3. The Health & Events tab displays health history and related events for an application.


Edit application

From the Application Map tab, applications can also be edited, by toggling to Edit Mode.


When creating or editing an application, the JSON Configuration tab shows the equivalent JSON for the application. The JSON is editable and suitable for use with the Declare API.



Be sure to save any changes before navigating to another tab.

HTTP Monitors


Currently, monitors originate from our US East region only. In future releases, we are looking to enhance this feature so that you can select additional regions. Stay tuned!

HTTP monitors track the status of an HTTP endpoint. The result can be used as a health source for application components. Each test will result in the following metrics being collected in Beacon. These metrics can be then queried within the portal when creating insights.

  • DNS Lookup (ms)
  • TCP Connection (ms)
  • TLS Handshake (ms)
  • Server Processing (ms)
  • Content Transfer (ms)
  • HTTP Request Time (ms)
  • HTTP Status Code
  • Health Status (AVAILABLE, CRITICAL)
  • Health Reason (e.g. Monitor check failed with status code: 502)


The resulting HTTP status codes are mapped to health values as follows:
  • < 400 is AVAILABLE
  • >= 400 is CRITICAL

HTTP monitors can be created via the portal or the Declare API (see example HTTP monitor declaration).

For details about additional capabilities not covered here, such as providing headers or transforming content, see Declare API.

Create HTTP monitors via the portal

The Monitors page under Configuration lists existing HTTP monitors and is used to create, modify and delete monitors.



View HTTP monitor latency metrics

When an HTTP monitor is added to the root of an application, the application slide panel shows latency metrics for the monitor. Click on the row for an application to show its slide panel.


DNS Monitors


Currently, DNS monitors can only be configured via API. In a future release, support will be added to manage DNS monitors in the portal.

DNS monitors are similar to HTTP monitors, but track the results of a DNS lookup. The result can be used as a health source for application components. Each test will result in the following metrics being collected in Beacon. These metrics can be then queried within the portal when creating insights.

  • DNS Lookup (ms)
  • Failure Count (number of consecutive failed tests)
  • Health Status (AVAILABLE, CRITICAL)
  • Health Reason

DNS monitors can be created via the Declare API (see example DNS monitor declaration).

For details about additional capabilities not covered here, such as specifying the DNS record type or custom name servers, see Declare API.


Dashboards are used to visualize the current and past state of the application portfolio. A set of widgets is provided, each with specific visualization, such as application health history. Widgets can be added to dashboards to create customized views.

The Dashboard Management page is used to create, modify and delete dashboards. The Dashboard View page is used to display dashboards.

Add a dashboard

To create a new dashboard:

  • Select Dashboard Management. A list of existing dashboards is displayed. To create a new dashboard, click Create.

  • On the dashboard creation page, there are two tabs, Properties and Layout.

    • On the Properties tab, provide a name and an optional description.

    • Navigate to the Layout tab and construct the widget layout by dragging widgets onto the dashboard. You can move and resize the widgets as you require.

    • There are six types of widgets available:

      • Application Map - display the tree layout of a single specified application
      • Application Current Health - display application counts grouped by current health and a specified custom label
      • Application Health History - display application counts grouped by health over time
      • Events - display details about application health transitions and trends over time
      • Insight - display a single insight
      • Insights Summary - display counts of insights grouped by category and severity
    • When complete, click Save Dashboard.

View dashboards

To view existing dashboards, select Dashboard View from the menu. Each existing dashboard is available as a separate tab. In addition to showing the widgets configured, each dashboard includes a Application Details table. The applications included in the list change based on any filtering applied. Clicking on some widgets will automatically apply filtering to the list.


Edit dashboards

To edit an existing dashboard:

  • Either click the edit icon at the top right when viewing a dashboard or select Dashboard Management from the F5 Beacon dropdown menu and then click on the dashboard name.
  • Editing a dashboard is similar to what was described in the Add a dashboard section.

Delete dashboards

To delete an existing dashboard:

  • Navigate to Dashboard Management.
  • Select the checkbox for the dashboard and click the :guilabel:Delete button at the top right of the grid. A popup will appear to confirm the deletion.


The Insights page within F5 Beacon is a centralized location to get insightful information about your application portfolio. Insights are divided into three categories Cost, Operations and Security.


Beacon includes two sets of insights:

  • Built-in insights are provided by F5 Networks and made available within the service. Such insights include the ‘F5 Assets and Inventory’ insight detailing F5 assets acting as Beacon sources and the ‘F5 App Protection’ insight detailing security findings for BIG-IQ HTTP applications. Built-in insights are updated automatically and cannot be edited or deleted.
  • Custom insights are based on analyzing any raw data stored in F5 Beacon or outside of it. These insights can be created either via the portal or API.

Create custom insights via the portal

Insights can also be created within the portal:

  1. Navigate to Insights via the dropdown menu and click Create.

  2. Select a measurement and one or more fields. Tags can also be selected to filter the results. Once complete, click Run to view your custom insight. It is recommended to limit the number of fields and specify additional tag values to limit the number of series to make the graph easier to read.

  3. Select a visualization type and time period to display. Click and drag within a graph or use the slider at the top of the graph to zoom in for a detailed view.

  4. To save an insight, provide a title and category at the bottom. You can optionally provide a description and one or more Associated Applications.


To edit existing insights, click the insight name from Insights.


The insight title cannot be updated once the insight is created. Changing a title can be accomplished by deleting an insight and creating a new insight with the updated title.


If you ingest data into Beacon less frequently than every 4 minutes (last day interval resolution), gaps can appear with the column charts and table widgets when viewing data by last day interval.

Create custom insights via API

Beacon users can generate custom insights and publish them to Beacon via the insights API.

See the Beacon GitHub account where there are detailed documentation and sample code for creating custom insights, including a Telegraf Ping plugin example that generates insight from the metrics reported by the Telegraf Ping plugin.


Beacon provides the ability to store metrics and subsequently query them via the portal or API to generate custom insights.


You can leverage many ways to ingest data into Beacon. For the purposes of this documentation, we will highlight an example using Telegraf. Telegraf is an open-source server agent that can collect metrics from multiple sources and systems.

Setting up Telegraf with Beacon

Telegraf has a wide range of input plugins that can gather metrics and send them to Beacon. For a detailed list, see Telegraf plugins. To get started with Telegraf, see Getting started with Telegraf and follow the setup instructions.

Select an Input plugin based on the type of metrics you want to collect. Use the HTTP plugin for the Output plugin.

# A plugin that can transmit metrics over HTTP

  ## URL is the address to send metrics to
  url = ""

  ## Timeout for HTTP message
  timeout = "120s"

  ## HTTP method
  method = "POST"

  ## Optional TLS Config
  # tls_ca = "/etc/telegraf/ca.pem"
  # tls_cert = "/etc/telegraf/cert.pem"
  # tls_key = "/etc/telegraf/key.pem"
  ## Use TLS but skip chain & host verification
  insecure_skip_verify = true

  ## Data format to output.
  data_format = "influx"

  ## HTTP Content-Encoding for write request body
  content_encoding = "identity"

  ## Additional HTTP headers
    Content-Type = "text/plain; charset=utf-8"
    X-F5-Ingestion-Token = "...."

Important fields:

  • url - the URL field points to Beacon ingestion endpoint
  • tls - the TLS configuration
  • outputs.http.headers - add an X-F5-Ingestion-Token header containing an Beacon source token, which is used for authentication

Once Telegraf is configured to run with the outputs.http plugin, Beacon will start receiving metrics sent by the Telegraf agent.