PROFILE SUMMARY:

• Around 7+ years of diversified experience in network administration and network security engineer.
• Experience in deploying and troubleshooting LAN/WAN, MPLS, ETHER - CHANNEL, IP Routing Protocols-(RIPV2, OSPF, EIGRP & BGP), Switching, Firewall, Technologies, NAT, VLAN, STP, VTP, 802.1q, HSRP, GLBP and Load Balancers, VPN configurations.
• Experience in implementation, support and troubleshooting of VLAN’s including operational knowledge of STP, PVST, RSTP, inter VLAN routing, Port security, Ether-Channel, LACP Protocol and ISL/802.1q.
• Expertise in installing, configuring, and troubleshooting of Cisco Routers (7200, 3800, 3600, 2800, 2600, 800) and installing, configuring and maintaining Cisco Switches (2900, 3500, 3750 series, 6500 series).
• Implemented REDISTRIBUTION on different IP Routing protocols and Migration from IPV4/IPV6
• Design, implement and configure the GM Financial core network and WAN circuitry using a collapsed core design using: Ethernet MPLS links, 6500, 4500, 4500x, BGP, OSPF.
• Extensively worked on Cisco PIX 506/515E while designing and implementing various projects with Cisco PIX firewall and migrated and implemented new solutions with Cisco ASA Firewall series 5500, 5510, 5512-X.
• Extensive knowledge in configuring, monitoring and troubleshooting Cisco’s ASA 5500.
• Experience with Checkpoint Firewalls NG, NGX, NGR55, NGX R65, R70, R75, UTM.
• Experience with GAIA, Checkpoint VPN-1/Firewall-1, Standalone & Distributed setup, Security management, Log server, Secure platform (SPLAT), Provider-1, and VSX gateway with clusters and Virtual firewall models like smart-1, power-1.
• Worked on different firewall and security appliance such as: Palo Alto 200,500, 3020, 3060, 5020,5060
• Designed and configured Palo Alto Central Management Platform with Panorama and Wildfire Deployment.
• Experience with F5 Big IP and Cisco ACE load balancers for load balancing and traffic management.
• Worked on F5 APM, LTM, GTM series like 6400, 6800, 8800 for the corporate application and their availability.
• Installed high availability Big IP F5 LTM, GTM and ASM Load balancers to provide uninterrupted service to customers.
• Hands on knowledge/experience on F5 Load balancers, its methods, Implementation and troubleshooting on LTMs and GTMs.
• Experience Configuring VDC&VPC in Nexus Switches 7k, 5k and 2k.
• Configuring Nexus 2000 Fabric Extender (FEX) which acts as a remote line card (module) for the Nexus 7000.
• Experience in configuring, upgrading and verifying the NX-OS operation system.
• Experience with converting Cisco 6500 IOS to Cisco Nexus NX-OS in the data center environment.
• Expertise in installing, configuring and troubleshooting Juniper E, J, M & T-Series Routers and Juniper EX Switches (EX2200, EX2500, EX3200, EX4200, EX4500, EX8200 series).
• Worked on Juniper Net Screen Firewalls like NS50, SSG 550M, SSG520M, ISG 1000, ISG 200.
• Expertise in preparing Technical Documentation and Presentation using Microsoft VISIO/Office.

TECHNICAL SKILLS:

Cisco Platforms: Nexus 9K,7K, 5K, 3K,2K & 1K, Cisco routers (7600,7200, 3900, 3600, 2800, 2600, 2500, 2000,1800 series) & Cisco Catalyst switches (6500, 4900, 3750, 3500, 4500, 2900 series), ASR (9K, 901, 903), ISR G1’s & G2’s, SUP720 & SUP 2T, Cisco unified manager, Cisco sip phones 7940, 7960, Cisco Wireless controller 2500,5500,5700.

Juniper Platforms: SRX, MX, EX Series Routers and Switches.

Networking concepts: Access-lists, Routing, Switching, sub-netting, Designing, CSU/DSU, IPsec, VLAN, VPN, WEP, WAP, MPLS, VoIP, Bluetooth, Wi-Fi, checkpoint(R77.30).

Load Balancers: Cisco CSM, F5 Networks (Big-IP), LTM, GTM, Citrix NetScaler, cisco ucs.

WAN Technologies: Frame Relay, ISDN, ATM, MPLS, Leased line & exposure to PPP, DS1, DS3, OC3, WAAS, T1/T3, & SONET, CRS 4 slot.

LAN technologies: Ethernet, Fast Ethernet, Gigabit Ethernet, & 10 Gigabit Ethernet, Port- channel, VLANS, VTP, STP, RSTP, 802.1Q, VPLEX.

Security Protocols: IKE, IPSEC, SSL-VPN.

Networking protocols: RIP, OSPF, EIGRP, BGP, MP-BGP, LDP STP, RSTP, VLANs, VTP, PAGP, LACP, MPLS HSRP, VRRP, GLBP, TACACS+, Radius, AAA, RSVP-TE, MP- BGP, MCAST - NG, ASM, SSM, IGMP, MVR, FHRP, ELP.:

Communication Protocols: TCP/IP, UDP, DHCP, DNS, ICMP, SNMP, ARP, RARP, PPP, HDLC and I9SDN.

Firewall Security: Cisco PIX 500 series, Cisco ASA 5500 series, Checkpoint, Juniper SRX, Palo Alto, Fortinet Firewall.

Sniffers: Wire Shark, Solar Winds, GNS3, Riverbed

Operating Systems: MS DOS, Windows 95/98, Windows NT/2000/XP/Vista/7/8, UNIX, LINUX, NEXUS.

Scripting Language: HTML, Java Script, PHP, Perl, Bash.

Automation tools: Puppet, Chef etc.

PROFESSIONAL EXPERIENCE:

Confidential, Minneapolis, MN

Network Engineer

Responsibilities:

• Responsible for entire LAN and WAN/WLAN maintenance, troubleshooting and installation, deployment, and upgrade of software, hardware and network facilities. Configuration, support and maintenance of the network environment.
• Administered IP phone network with Cisco Call Manager and Unity and implemented global VOIP dial plan for PGS PANS which resulted in 70% cost reduction in long distance.
• Maintained multiple software tools Net brain, Solar winds, Stat seeker IPAM, Net flow Analyzer Cisco WCS, Visual Uptime Select.
• Expertise in installing, configuring, and maintaining Cisco Switches (2900, 3750, 3700 series, 3850 series).
• Expertise in installing, configuring, and troubleshooting of Cisco Routers (6500,3850, 3750, 2600).
• Security policy review and configuration in Palo Alto and Juniper SRX Firewall in US offices and Data centers, communicated with juniper engineering and QA test systems.
• Successfully installed Palo Alto PA-5060 firewalls to protect Data Center and provided L3 support for routers/switches/firewalls.
• Deploying and decommission of VLANs on core ASR 9K, Nexus 9k, 7K, 5K and its downstream devices, ci
• Experience on Internet protocols and services (TCP/IP, WWW, FTP, TELNET, NFS, SSH, RSH, etc.
• Designed, configured and administrated Silver-Peak WAN Optimization devices.
• Implemented security policies using ACL, Firewall, IPSEC, SSL, VPN, IPS/IDS, AAA (TACACS+, RADIUS).
• Working as SME for IDS/IPS products (e.g., Tipping Point, Juniper, Sourcefire and IBM)
• Performing CERT/SOC operations to include IDS event monitoring and analysis, security incident handling, incident reporting, and threat analysis.
• Worked with IDS/IPS to identify threats in the network for rapid containment and remediation
• Experience configuring RIP v1&2, OSPF, EIGRP, BGP, MPLS, Frame Relay and PBR.
• Replaced old 6500 and WAN routers from DR testing site and Installed Nexus 7K and ASR 6800routers.
• Maintain, monitor and perform WAN configuration backups and configured IP access list filters
• Implementation and operation of WAN accelerator appliances such as Cisco WAAS and Steelhead Riverbed.
• Supported multi-vendor LAN/WAN enterprise environment including Aruba controllers, Airwave and APs/Cisco wireless controllers, Cisco ISE experience.
• Layer 1/Layer 2/Layer 3 Troubleshooting in Enterprise LAN/WAN/MAN environment
• Operation and Maintenance of the South West Asia Theater Top Level Aggregate WAN infrastructure in support of 20000 users with over 50 routers.
• Provided BGP and firewall consulting to clients SRX240 and EX4200 implementation. Included reviewing and improving IP Plan, application requirements, and WAN failover.
• Supported Infobot appliances grid environment for DNS, DHCP and IP Address Management tools (IPv4). design and deployment of a DNS Relay server architecture effectively replacing Microsoft owned DNS servers on the corporate backbone
• Configuring HSRP between VLANs, Configuring Ether-Channels, Port Channel on 6500 catalysts. implementation, and administration of the following network protocols: BGP, EIGRP, SNMP, SSH, ICMP, STP, DHCP, DNS, and more recently, VRPP, HSRP
• Configuring & Managing LAN, WAN, VPN and Firewall of Juniper MX Routers for End Users and VLAN on Juniper EX series switch 2500, 4500 appliances. Experience with Firewall migrations from PIX firewall to Cisco ASA and Juniper SRX firewall
• Currently work with VOIP gateways to support analog and fax solutions and configuring the gateways to communicate with Cisco Unified Call Manager 8.5.1
• Work with SSH, Telnet, SNMP, VLANs, SFPs, port activations, sty, IP access-groups, banner logins, AAA authentication, HSRP, IOS upgrades, and VOIP
• Administrating DNS, DHCP, and Exchange & ISA servers. Created and managed user and group accounts in user Manager and in MS Exchange Administration.
• Experience in Active Directory, GPOs, DNS, DHCP, File & Print Server, IIS (Web Server), FTP, Terminal Server, RIS, RRAS, NAT, WSUS, Microsoft Clustering, Exchange Mail Server and ISA Server
• Maintenance and Network control with secure DNS, DHCP and IPAM using Infobot.
• Experience in installing and configuring DNS, DHCP server
• Understanding of latest security trends, vulnerability assessment techniques and attacks like DOS and Man in the middle attack
• Manage LAN technicians at GEICO’s corporate Headquarters for Desktop support, Data Center management, and overall responsibility for building cabling and moves.
• From the Director level, develop procedures and manage all Voice, PBX, LAN, WAN, Frame Relay, Cabling, and Internet projects.
• Administrated a network using Network Access Control List (NAC) to enhance security of the LAN network.
• Configured and maintained WAN/LAN links, VPN connectivity, and remote access infrastructure. providing Level 3 and vendor level troubleshooting of all LAN and WAN related issues.
• Worked extensively with 3Com & Cisco routers and switches; AGS+, 1000 series, 2500, 4006, 5500 (for WAN MAN & LAN) and some Juniper routers.
• Worked on F5 BIG-IP LTM 8900, configured profiles, provided and ensured high availability.
• Worked on F5 and CSM load balancers deploying many load balancing techniques with multiple components for efficient performance
• Worked on AWS security and AWS paaS desirable experience.
• Work with VOIP and traditional call flows and signaling protocols which include MGCP, SCCP, H.323, SIP/H.248, RTP/RTCP, T1, DTMF and FXS/FXO, TCP/IP, LAN Switching, Routing protocols
• Configured SNMP on all the network devices and added them to Solar winds for monitoring.
• Experience working with Layer 1-7 switching, TCP/IP, OSPF and load balancing (Cisco L2/L3 switches.
• Troubleshoot Core network incidents involving TCP/IP, Ethernet, cabling, Brocade routers/switches configuration, Cisco routers/switches configuration, Check Point and WatchGuard Firewall work with multiple OSI Layer 2 and Layer 3 routing protocols (i.e. EIGRP, ATM, TCP/IP, BGP, OSPF, and MPLS to bring new routers into the production environment for Network Augmentation Team.
• Addition to support PGS Tensor network I have been supporting the connectivity of the following office to PGS PANS 3.0 WAN network.
• Used Wireshark, Net scout and TCP dump captured and analyzed SIP-SDP, RTP, TCP, UDP, IP packets. Demonstrated and Analyzed packet flow in Ethernet, ARP, IP, TCP, UDP using Wireshark observed their behavior at each layer of OSI.
• Worked on architecting, provisioning and migrating workloads to AWS.

Confidential, Minneapolis, MN

Network Engineer

Responsibilities:

• Configuring and troubleshooting Cisco 1800, 1900, 2800, 3800, 3900 series routers and Cisco Nexus 9K, 7K, 5K, 6500, 4900, 3750 series catalyst switches.
• Strong hands on and troubleshooting experience on Nexus 9k,7k,5k and 2k.
• Troubleshoot application load balancing issues on Cisco CSS and ACE platforms.
• Expertise in all routing protocols such as OSPF, BGP.
• Worked extensively on policy design and implementation for ISE solution various Network
• Migrated and implemented new solutions with Juniper SRX 240, 650, 1400, 3400. • Configuring Site-Site VPN on Juniper Firewall with SRX 1400, 3400.
• Advanced knowledge, design, installation, configuration, maintenance, migration and administration on Juniper SRX device.
• Enabled and verified UTM feature on Juniper SRX 550 Service gateway.
• Support LWAPP, GLB, VRRP, HSRP, OSPF, VOIP, etc.
• Manage VOIP Installation and maintenance of SIP hosted PBX Customers.
• Develop from the ground SIP VOIP service. Implementation, troubleshooting and Configuration. Create documentation templates for future installations and procedure guidelines.
• Management of SAN related technology.
• Multiple projects implementations, support and co-ordination, firewall IPS, IDS, VPN and remote access technology.
• Implement Cisco IOS Firewall IDS using 2600 series router
• Configured 6500, 3750 and 4500 for Network Access Solution integration with Cisco Identity Service Engine on ESX 4.0 VMware and physically with Cisco ISE appliances.
• Configured Cisco ISE for Wireless and Wired 802.1x Authentication on Cisco Wireless LAN Controllers, Catalyst Switches, and Cisco ASA Firewalls.
• Provide configuration steps needed for migration of existing customer traffic onto the newly built upgraded network of Cisco ASR 9Ks, Nexus switches across all Data Centers.
• Support in configuring VPC, VDC and ISSU software upgrade on Nexus 7010
• Configured Layer 2 and 3 with Cisco Nexus 7K, 5K instead of 6509,9710, 5596UP, 3850,3950, ASR.
• Implemented Positive Enforcement Model with the help of Palo ALTO Networks
• Co-ordinated with global security Management teams and support teams as required and completed Palo Alto Firewall rule add, modification, and delete.
• Extensive working experience of VLANs, Ether channels, Spanning tree protocol and MPLS.
• Configured IPX/SPX, HDLC, PPP, TCP/IP, BGP, EIGRP, RIP, & HSRP.
• Configured TCP/IP addressing scheme to assigned IP blocks.
• Configured and supported TCP/IP networks
• Expert Level Knowledge about TCP/IP and OSI models
• Configured BGP, OSPF and VRF on Cisco routers.
• Integrating Configuring RSA SecurID with ISE for Token based authentications using RSA Native method RSA RADIUS method for user's remote VPN users
• Experience with the architecture of complex global DNS infrastructure.
• Configuration UDLD, Loop guard, IP source guard, BPDU guard and other spanning tree features on cisco switches. Worked on Infobot for creating the DNS entries, A records and CNAMEs.
• Experience in Installation, Configuration and Administration of Windows 2000/2003, HTTP, FTP, DNS, NTP, DHCP servers under various LAN and WAN environments.
• Designed and implemented an IP addressing scheme with subnets for different departments.
• Performed testing on Cisco routers and switches laboratory scenarios and deploy on site for production.
• Managed international trouble ticket system that indicated backbone trunk circuit outages throughout the WAN
• Provided BGP and firewall consulting to clients SRX240 and EX4200 implementation. Included reviewing and improving IP Plan, application requirements, and WAN failover
• Service support software is Remedy. Acknowledges Remedy generated service tickets that are sent to the NOC L2 queue and to send the tickets to the appropriate queue when necessary.
• Completed upgrade of Corporate LAN, by upgrading IOS on core switches (6509/6513), replacing/adding supervisor’s modules(720/IV), GE and FE modules, GBIC/SFP modules on 4500/4006 switches. Configured STP, HSRP, VRRP. OSPF and BGP routing protocols for internal and external connectivity.
• Worked with engineering team to resolve tickets and troubleshoot L3/L2 problems efficiently .
• Worked on cisco CUCM/VCS.

Confidential

Network Engineer

Responsibilities:

• Designed, validated and implemented LAN, WLAN & WAN structure to suite client's needs.
• Troubleshooting the TCP/IP networks for connectivity, outages and slow networks issues and recommended appropriate and cost-effective solutions for the congestion.
• Network consists of Heavy Cisco equipment such as: Cisco 2924 switches, Cisco 5500 series Layer 3 switches, Cisco 7200 series routers, Cisco Pix firewall 500 series and Wireless Access points Cisco 1230.
• Configured Cisco ASA 5510 for VPN Network Access Control integration with Cisco ISE (Inline PEPs).
• Perform network application analysis with Omni peak, Ethereal, Wireshark, and Sniffer.
• Mitigated WAN/LAN connectivity issues and performed new installs using multiple vendor equipment. configurations for multiple data centers and LAN/WAN/MAN of a large dispersed geographical network with varying requirements
• Provided primary cabling plant (UTP) management and administration. Experience in designing MPLS VPN and QOS for architecture using Cisco multi-layer switches.
• Responsible for deploying various network security & High Availability in Checkpoint Firewall.
• Configuring routing protocols OSPF, EIGRP, RIP, MPBGP, LDP and BGP V4.
• Expertise in handling VoIP issues and maintenance and changes made to the system. Converted digital phone systems to VOIP phone systems for entire HQ office
• Used and Maintained Routing Protocols BGP, TCP/IP, BGP, ISIS, OSPF, MPLS, RSVP, and VRRP in a dual-stack IPv4/6 environment.
• Working closely with Server team, Network appliance team to migrate the server connections and Riverbed, F5 connections from Catalyst 6500 Switches to Nexus 7000, 5000.
• Worked on FTP, HTTP, DNS, DHCP servers in windows server-client environment with resource allocation to desired Virtual LANs of network.
• Participated in 24 x 7 incident and problem support.
• Worked on Switching related tasks included implementing VLANS.
• Hands on experience in configuring Cisco Nexus 9k, 7k, 5k and 2k, 6509.
• Extensive knowledge and troubleshooting in data communication protocols and standards including TCP/IP, UDP, IEEE 802.3, Token Ring, Cable Modem, PPPOE, ADSL, Multilayer Switching, DoD standards.
• Performing network monitoring, providing analysis using various tools like Wireshark.
• Experience in virtualization with network segmentation.
• Worked on routing related tasks included providing cisco router configuration and change management, providing technical support for Cisco Router configurations and installation for Customer. Configuring IP RIP, EIGRP, OSPF and BGP. Configuring routing policy for BGP.
• Strong knowledge and experience with Microsoft Office Suite (word Excel, PowerPoint and Visio).
• Started working on IWAN and Sophos firewall.

Confidential

Network Admin

Responsibilities:

• Cisco ASA 5505, 5510 designs, implementation, configuration and troubleshoot. Basically, creating Lan Firewall, VPN, access-list, remote VPN.
• Migration from 2500 series to 2600 series Routers.
• Installed, configured (through CLI & SDM) and managed CISCO routers and Catalyst switches.
• Performed Troubleshooting and monitored routing protocols such OSPF, EIGRP & BGP.
• Configured ACL & NAT through CLI.
• Experience with protocols such as Frame Relay, IEEE 802.11 and VLAN, OSPF and BGP, DNS, DHCP, FTP, NTP, SNMP, SMTP and TELNET.
• Involved in customer escalations and troubleshooting issues related to connectivity, STP, VLAN, Trucking, VTP, Layer 2/3 switching, Ether channels, Inter-VLAN routing, log messages, high CPU utilization and parameters that can degrade performance of network.
• Monitor, evaluate & report on health of both Wide & Local Area (WAN/LAN) Networks.
• Configured VLANS on multiple catalyst switches performed troubleshooting on TCP/IP network problems, Administered Frame-Relay and networks
• Provided technical support and problem resolution for the LAN and its environment by analyzing the problem, identifying the cause and circumstances of the problems and finding a solution to the identified problem.
• Experience with working on some ecommerce technologies.
• Experience on Check Point Next-Generation Firewalls R65, R70, R75.

Confidential

Network Admin

Responsibilities:

• Troubleshooting hardware, software, and other network related problems, and systems Desktop responsibilities included software & hardware installation & configuration.
• Implemented Site-to-Site VPNs between ASA Firewall and Router.
• Responsible for layer 2 security which was implemented using a dedicated VLAN ID for all trunk ports, setting user ports to non-TRUNKING, deployed port security when possible for user ports.
• Configuration & maintenance of Cisco2600 series routers with OSPF protocols.
• Configuration and implementation of various protocols on 2800 series router for efficient performance of network.
• Installation, Integration and maintenance of LAN, WAN and MAN setup.
• VLAN Configurations, troubleshooting and Firewall ACLs and Object-Groups configuration and support.
• Upgrade the network by translating protocols like EIGRP to OSPF.
• Redistribution from RIP to OSPF and vice versa by implementing Hub and Spoke topology with a Frame Relay Switch.
• Configuration & maintenance of Cisco 2900 series switches including VLANS &TRUNKING protocols.