SUMMARY

• CCNA, CCNP and Juniper CERTIFIED professional with 8+ years of experience in network design, Networking and Security implementation, and support.
• Routing, switching, firewall technologies, system design, implementation and troubleshooting of complex network systems.
• Excellent knowledge in Routing, Switching, Firewall and Gateway technologies, system design, wireless design, data network design, capacity management and network growth.
• Exposure to LAN/WAN setup, Integration, configuration and troubleshooting
• Hands - on experience on Up-gradation of Cisco IOS on different Cisco devices and modules
• Provided services in many industries such as Consulting, Telecommunications and IT Infrastructure. Specializing in LAN, WAN, WLAN, and Data Center networks
• Experienced in Troubleshooting for connectivity and hardware problems on Cisco Networks.
• Experience in L2/L3 protocols like VLAN, STP, ISL, MPLS and Trunking protocols.
• Experience in set up, configuration and management of Cisco ASA Firewall in various domain such as Internet, DMZ, Business-Partner and Remote-Access VPN etc.
• Experience in creating DAP Policies on Cisco ACI for Remote-access users and Creating IPSEC tunnel on ASA with Business Partner Firewall.
• Knowledge Cisco Data centre, Cisco Nexus and MDS Family portfolios, and Cisco Unified Fabric solution, Cisco Nexus Operating System(NX-OS) and Cisco Data Center Network Manager (DCNM) and Cloud Technology.
• Experience in configuring and Troubleshooting BIG-IP F5 load balancer LTM
• Creating Virtual Servers, Nodes, Pools and iRules on BIG-IP F5 in LTM module.
• Experience in Layer 2 Routing protocol configurations: ATM/FRAME RELAY,IP services such as QoS and VPN technologies: IPSec & SSL..
• Implemented multiple Cisco Nexus based Data-Center environments, as well as 6500/4500/3750 series switches, 7200/3900/2900/1900 series router.
• Multiple data center migrations and transformation projects, with great expertise on Wireshark.
• Extensive experience in configuring and troubleshooting of protocols RIP v1/v2, EIGRP, OSPF, BGP and MPLS.
• Worked on network topologies and configurations, TCP/IP, UDP, Frame Relay, ATM, bridges, routers, hubs and switches.
• Hands on Knowledge/experience on F5 load balancers, its methods, implementation and troubleshooting on LTMs and GTMs.
• Worked extensively on Palo Alto, Juniper Net screen and SRX Firewalls.
• Well experienced in configuring HSRP, GLBP, ICMP, PPP, PAP, OSPF, CHAP and SNMP.
• Experience in installing and configuring DNS, DHCP server
• Expertise in installing, configuring, and maintaining Cisco Switches (2900, 3500, 7600, 3700 series, 6500 series) Cisco Routers (4800, 3800, 3600, 2800, 2600, 2900, 1800, 1700, 800)
• Expertise in installing, configuring and troubleshooting Juniper Routers ( J,M and MX-series)
• Implement/Maintain a Juniper Environment of 600 data collection units across USA.
• Extensive experience in dealing with Vendors for MPLS/DSL installations.

TECHNICAL SKILLS

Cisco router platforms: 2500, 2600, 2800, 3600, 3700, 3800, 7200, 7609, ASR1k.

Cisco Switch platforms: 2900XL, 2950, 2960, 3560, 3750X, 4500, 6500

Firewalls: Cisco PIX 501, 510, 515E, Cisco ASA 5520, 5540,.

Network Configuration: Advanced switch/router configuration (Cisco IOS access list, Route redistribution/propagation).

Routing Protocols: IGRP, EIGRP, OSPF, BGPv4, MP-BGP

WAN Protocols: HDLC, PPP, MLPPP

Circuit switched WAN: T1/E1 - T3/E3/OCX (Channelized, Fractional & full).

Packet Switched WAN: ATM, FRAME RELAY, MPLS, VPNs

Security Technologies: Cisco FWSM/PIX/ASDM, Cisco Routers Cisco GSR 12416, 12418, Cisco 7200vxr, Cisco 3640, Cisco 3600, and checkpoint.

Cisco Switches: Cisco 2960, Cisco 3560, Cisco 3750, Cisco 6500 series

Juniper Routers: E, J, M and T- Series

Cisco Nexus Switches: Cisco 7010, Cisco 7018, Cisco 5020, Cisco 2148, Cisco 2248

Redundancy and management: HSRP, RPR, NSF/NSR

Physical interfaces: Fast Ethernet, Gigabit Ethernet, Serial, HSSI, Sonet (POS)

Layer 2 technology: VLAN, VTP, VMPS, ISL, dot1q, DTP, Spanning-tree, PVST

Layer 3 Switching: CEF, MLS, Ether Channel

QOS: CBWFQ, LLQ, WRED, Policing/Shaping.

Load Balancer: BigIP 2000, 4000, 5000, 7000 series, F5 LTM 8900, 6800, GTM and 3-DNS,A10

Switches: Catalyst 6500, MSFC, MSFC2, 7600, 3700, 3500

LAN Technologies: Ethernet, Fast Ethernet, Gigabit Ethernet, & 10 Gigabit Ethernet, Port- channel, VLANS, VTP, STP, RSTP, 802.1Q.

WAN Technologies: Frame Relay, ISDN, ATM, MPLS, leased lines & exposure to PPP, HDLC, CSU/DSU.

Operating Systems: Microsoft XP/Vista/7, UNIX, Linux (Redhat, Fedora) Windows Servers 2003/2008, Windows MS-Office.

PROFESSIONAL EXPERIENCE

Confidential, Rochester, MN

Sr. Network Engineer/ Administrator

Responsibility:

• Managing State Data Center / traditional Network infrastructure to ensure quality, efficiency and dependability.
• Analyzing complex Datacenter / classical Ethernet network, Web application Firewalls, load balance Problems and developing corrective action.
• Experience with convert Checkpoint VPN rules over to the Cisco hardware solution and worked on RSA secure IDs to providing VPN Token to Company USERS, Migration with Cisco ASA VPN experience.
• Designing and configuring Data center Network, BIG-IP F5 / Load balancer using different types of routing protocols to meet users request for service following design guidelines.
• Debugging Security incidents and seeking ways to improve State Network Security and performance, maintaining F5 Firewalls and overall State Network Security.
• Experience with convert juniper SRX VPN rules over to the Checkpoint 12000 Boxes, Migration Experienced with SPLAT and Junos.
• Design secure VLAN’s and ACL’s based on user/port/hardware specific use for Internet
• Work on multiple business unit projects including bring a new site Online, circuit upgrades, and new vendor access.
• Implemented testing tools, including traffic generation in C using the tcp dump pcap library and zone generation in Python.
• Performed the code upgrades on F5 from v10 to v11.
• Gather and document system functional requirement with respect to Solarwind.
• Created BluecoatHTTP/HTTPS, FTP, Telnetproxyrules for B2B connection.
• Assumed, documented, trained, and transitioned all 7X24 WAN/EVPN supports to data center teams.
• Configuring & managing around 500+ Network &Security Devicesthat includesCisco Nexus & Arista Switches, Juniper MX Series Routers, Juniper SRXFirewalls,A10 Load balancers.
• Experience with convert Checkpoint VPN rules over to the Cisco ACI solution. Migration with Cisco ASA VPN experience and troubleshooting on NOC system.
• Configured Security Policies including NAT, PAT, AAA, ACL’s Standard Access Lists, Distribute-Lists, Route-Maps, VPN Concentrators, IPS/IDS, (PIX, ASA) firewalls Palo Alto.
• Designed new security VLAN’s with ACL’s for new domain migration
• Manage, configure, and backup Cisco VoIP infrastructure and call centers; Upgrade IOS versions; Cisco Unified Call Manager for 250+ VoIP users.
• Experience with F5 load balancers - LTM, GTM series like 6400, 6800, 8800 for the corporate applications and their availability
• Manage yearly Phone and Fax audits for our industries inside the C.I.
• Cisco hardware Port website filtering and managing; bandwidth utilization reporting
• Solar Winds Tool Set for Network monitoring and troubleshooting of sites connectivity
• Manage 100+ VM Servers.
• Configuring RIP, OSPF and Static routing on JuniperVPN appliances, Juniper SRX 240,JUNOS.
• Managed and configured Cisco Unity, Cisco Unified Call Manager for 500+ VoIP users
• Websense website monitoring and filtering; bandwidth utilization
• Provide interfacing to new telecommunication services for new infrastructure deployment.
• Provide interfacing for PBX to vendor upgrading services required as part of migration process.
• Provide structure interfacing for new Cisco Call Manager Express required as part of deployment, VoIP < 300..
• Switches, Nexus Switches, Juniper and Palo Alto Firewalls, F5 BigIP Load balancers, Blue Coat Proxies and Riverbed WAN Optimizers.
• Troubleshoot and Worked with Security issues related to Cisco ASA/PIX, Checkpoint, IDS/IPS and Juniper Netscreen firewalls,
• In-depth knowledge and experience in WAN technologies including T1, T3, ISDN, HDLC, Point to Point, ATM, Bluecoat Proxy & Frame Relay.
• Use of Altiris, Service Desk, Exchange/AD, OWA, Symantec Endpoint Encryption, Single Sign On, McKesson, EPIC, Midas, Crystal Reports, etc., and EMR, HIPAA and other compliance.
• Install, adjust pre-configured and test Cisco WAN and LAN hardware devices for each site requirements.
• Provide technical theory for pre-site compilation for consistent gather of design requirements.
• Provide support for all conversion and migrations from WCS to NCS support for wireless system delivery.

Confidential, Midtown NY

Sr. Network Engineer

Responsibilities:

• Manipulation/filtering. Troubleshooting routing issues like suboptimal routing and asymmetric routing
• Implemented various EX, SRX & J series Juniper VPN devices
• Responsible for 6500, 3500, Nexus switching, ASA, FWSM Firewalls, CSS and F5 load balancers, Riverbed WAN accelerators, Iron Port Proxy, and Linux/Bind DNS servers.
• Experienced in Integration, configuration and maintenance of Cisco hardware, Catalyst Switches and web application Firewalls.
• Configured Adonis Bluecat Network DNS/DHCP Servers to be implemented on remote sites
• Configuring RIP, OSPF and Static routing on Juniper M and MX series Routers.
• Knowledge in Bash shell scripting, Perl, Python, Ruby. Using PBR with Route Maps for route.
• Experience working with ARISTA switches like 7100, 7500 for cloud computing, datacenter and low latency networks.
• Gigabit Ethernet and Dark Fiber.
• Gather and document system functional requirement with respect to Solarwind.
• Administer long haul dark fiber network and Campus Wide VPN and DMZ connectivity. Designed and implemented security systems including various Cisco IOS ACLs, Context-Based Access
• Involved in L2/L3 Switching Technology Administration including creating and managing VLANs, Port security, Trunking, STP, bluecoat Proxy, Inter-Vlan routing, LAN security.
• Symantec Endpoint Encryption as well as MSI client packaging.
• Remediation of firewall rules from checkpoint firewalls to Cisco ASA firewalls and their implementation.
• Provide technical and engineering support for QTC Management's nationwide network.
• Configuring various BGP attributes such as Local Preference, MED, Extended Communities, Route-Reflector clusters, Route-maps and route policy implementation.
• Used Python for configuring Cisco routers and switches.
• Implemented MPLS VPN (RFC 2547) Mechanisms on Cisco IOS and JUNOS CLI.
• Hand-on experience with Arista (7304, 7150S, 7050S, 7048T), Cisco IOS, Application-ID firewall, Load-Balance(F5 and A10), and critical network services such as DNS & DHCP(Infoblox), AD, Radius, TACACS, SMTP .
• Designed, built and configured Cisco Catalyst switches as Core, Distribution and Access switches over
• Configuring and managing main gateway routers of Juniper VPN appliances, which include configuring BGP with upstream providers, route filtering, route maps, policy routing and routes redistribution.
• Worked extensively in Configuring, Monitoring and Troubleshooting Juniper security appliance, Failover DMZ zoning & configuring VLANs/routing/NATing with the web application firewalls as per the design.
• Converting CatOS to Cisco ACI Config Conversion on distribution layer switches
• Convert Branch WAN links from TDM circuits to MPLS and to convert encryption from IPSec/GRE to GetVPN.
• Managing global outsourced services SLA with external third party vendors on the systems and applications side such as SUN, Red Hat, HP-UX, Oracle Linux, HP-UX, Symantec (to name a few).
• Experienced on Firewalls Cisco ASA, Websence DLP, SonicWall, Palo Alto Networks, Sourcefire, Checkpoint, Juniper Networks, Arista, Huawei, Peplink, and ADTRAN.
• Design and configuring of OSPF, BGP on Juniper Routers and SRX Firewalls.
• Conversions to BGP WAN routing. Which will be to convert WAN routing from OSPF to BGP (OSPF is used for local routing only) which involves new wan links.
• Create monitoring template using custom MIBs in Solarwind. data traffic, Telecom, using Dark fiber created fast speed line between two campus, WirelessProvided technical support for full setup, debugged the problems of OSPF, switching and HSRP.
• Experience in Python and shell scripts for data collection, command output parsing, XML code generation.
• Network Segmentation-application migrations for enterprise Private Data Firewall and data behind ASA 5585-Xs.
• Strong knowledge of Cisco and Juniper VPN appliances, Nortel (IOS/XR and JunOS) and hardware.
• Worked on Cisco Routers, Active /Passive Hubs, Switches, Cisco PIX Firewall, NOKIA Firewalls, Nortel VPN Concentrators TCP/IP, NAT and Checkpoint ESX/GSX firewall, Cisco ASA Firewalls
• Troubleshoot tcp/ip issues as necessary using fw monitor, tcpdump, wireshark/ethereal.
• Involved in Configuration of Access lists (ACL) on Juniper and Palo Alto firewall for the proper network routing for the B2Bnetwork connectivity.
• Design/implementation/support engineer for the following services: IPAM:DNS/DHCP/NTP (BIND, NetID and Bluecat Networks), PROXY (Bluecoat Networks)
• Knowledgeable in configuration of Voice VLAN’s (VOIP), prioritizing the voice traffic over the.
• Switching technologies like VLAN, Inter-VLAN Routing, Ether-channel, VTP, MLS, HSRP, VRRP,
• UDLD, Spanning Tree Protocol 802.1d, 802.1s and 802.1w.
• Experience of IP/MPLS/Optical Transmission network for access transport & back haul network to
• Facilitate 2/3/4G Network.

Confidential, New Albany OH

Network Administrator

Responsibilities:

• Experienced in Integration, configuration and maintenance of Cisco 7200, 3900, 2800, 2600, 2500 and 1800 series Router / Cisco Catalyst Cisco 6500 (sup 720), 4500 (SUP 6), 3750, 2950 series Switches.
• Configured of OSPF, BGP on Juniper Routers and SRX Firewalls.
• Involved in L2/L3 Switching Technology Administration including creating and managing VLANs, Port security, Trunking, STP, Inter-Vlan routing, LAN security, arista switches.
• Experience with VOIP, Network Monitoring (Solar Winds) and wireless Networking (WCS)
• Excellent knowledge on CISCO ISE and TACACS authentication servers with Palo Alto.
• Plan Design and assist in deploying enterprise wide Network Security and High Availability Solutions for ASA.
• Understand the JUNOS platform and worked with IOS upgrade of Juniper devices.
• Configured the Cisco router as IP Firewall and for Natting.
• Worked with Security issues related to Cisco ASA/PIX, Checkpoint, IDS/IPS and Juniper Netscreen firewalls, Cisco Jabber.
• Conversions to BGP WAN routing, which converts WAN routing from OSPF to BGP (OSPF is used for local routing only) that involves new wan links.
• Worked with Cisco advance services to implement data center Nexus environment for new Upgraded the NX-OS in nexus 7018,7010 and nexus 5548 and 5596.
• Consolidated multi-tiered environment into a pair of Nexus 7000 switches using VPC and VRF
• Used Solarwind Engineering Tools set and Wireshark to troubleshoot and locate issues on the network.
• Use of Nagios, RANCID, tcpdump, tcptrace, wireshark, iperf, and latency inducers for monitoring, diagnostics and testing.
• Configuration included VLANs & VTP, STP port features, Gateway redundancy using HSRP, enterprise security using Cisco Port Security and Dot1X framework.
• Hands-on experience with WAN (ATM/Frame Relay), Routers, Switches, TCP/IP, Routing Protocols (BGP/OSPF), and IP addressing.
• Worked on Extensively on Cisco ACI, Cisco PIX (506E/515E/525/) & ASA 5500(5510/5540) Series.
• Configuration and maintenance of OSPF protocol which was the enterprise IGP.
• Configuration included deploying of new branch locations or new network devices in the existing infrastructure. Creating Stub Areas & configuring Summarization for effective Routing.
• Troubleshooting and management Cisco, Juniper, Huawei, Redback and Extreme devices.
• Migrated the user access switch environment which is of HP 5406 to Cisco 3750X, 3750G and 3750V2 environment to get gigabit speed.
• Maintained a backup environment build out of HP8212ZL and HP5406ZL with 10G uplinks to the core.
• Troubleshooting complex issues with wireshark at source and destination which can’t be resolved by the basic troubleshooting like ARP, firewall logs, switch logs and tcpdump.
• Responsible for logging/Resolving the severity calls logged in by Incident management.

Confidential, Houston, TX

Network security engineer

Responsibility:

• Firewall Policy Provisioning and troubleshoot connectivity issues through firewall.
• I worked on Check Point Security Gateways and Cisco ASA Firewall.
• Firewall Clustering and High Availability Services using Cluster XL on Check Point.
• Configuring and tweaking Core XL and Secure XL acceleration on Check Point gateways.
• Packet capture on firewalls and analyzing the traffic using Wire shark utilities.
• Implemented Active/ Standby HA configuration on Cisco ASA Firewalls.
• Configuring Cisco ASA firewalls in Single and Multiple Context Mode firewalls.
• Upgrade of Cisco ASA Firewall in Active/Standby mode with no down time.
• Designed perimeter security policy Implemented Firewall ACL’s; allowed access to specified services; Enabled IDS/IPS signatures in Firewall & fine-tuned TCP & UDP.
• Involved in Installing and Configuring a Cisco/Microsoft secure ACS server for AAA authentication (RADIUS/TACACS+).
• Experience working JuniperT-Series, M-Series, MX-Series, J-Series Routers.
• Used load balancers ACE and load balancing technique with multiple components for efficient performance and to increase reliability through redundancy.
• Involved in migration from Frame-Relay/ATM network to MPLS-based VPN for customer’s WAN infrastructure.
• Configured Cisco 7204 routers which were also connected to Cisco ASA Firewall (5505) security appliances providing perimeter based firewall security.
• Configured Client VPN technologies including Cisco’s VPN client via IPSEC.
• Was responsible for designing and implementation of customer’s network infrastructure.
• Supported the telephony specialist in the phased migration from PBX based systems to VOIP. Configured separate VLAN for VOIP to implement QoS and security for VOIP.
• Handled switching related tasks included implementing VLANS, VTP and configuring Fast-Ethernet channel between switches.
• Configuring VPN both B2B and remote access SSL and centralized policy administration using FortiManager,building FortiGate High Availability using FortiGate Clustering Protocol (FGCP)
• Firewall Compliance and Rule remediation for compliance such as SAS 70 Audit.
• LAN/WAN level 3 support (diagnose and troubleshoot layer 1, 2, 3 problems)
• Vlan design and implementation, Spanning Tree Implementation and support using PVST, R-PVST and MSTP to avoid loops in the network. Trunking and port channels creation.
• Working with OSPF as internal routing protocol and BGP as exterior gateway routing protocol.
• Configuring static NAT, dynamic NAT, inside Global Address Overloading, TCP overload distribution, Overlapping Address Translation on Cisco ASA Firewalls.
• Physical cabling, IP addressing, Wide Area Network configurations (Frame-relay)
• Deployed a Syslog server to allow proactive network monitoring.
• Implemented VLANS between different departments and connected them using trunk by keeping one Vlan under server mode and rest falling under client modes.
• Configured Firewall logging, DMZs and related security policies and monitoring.
• Switching related tasks included implementing VLANS and configuring ISL trunk on Fast-Ethernet channel between switches.
• Documentation and Project Management along with drawing network diagrams using MSVISIO.
• Environment: CISCO routers and switches, Access Control Server, VLAN, Trunk Protocols, CISCO ASA, DHCP, DNS, Spanning tree.

Confidential, El Segundo, CA

Network Engineer

Responsibilities:

• Experience with Firewall Administration, Rule Analysis, Rule Modification
• Installed different software on the systems. Install and managing network devices including Hubs, Switches.
• Deployed 7613 as PE and CE router and Configured and troubleshoot the Edge Routers.
• Excellent troubleshooting knowledge on T1, T3, OC-3 and OC-12.
• Created and delivered internal trainings for BGP.
• Configured egress and ingress queues for ISP facing routers using CBWFQ.
• Generating RCA (Root Cause Analysis) for critical issues of layer1/layer2/layer3 problems.
• Ability to analyze, configure and troubleshoot networks
• Design, implementation and operational support of routing/switching protocols in complex environments including BGP, OSPF, EIGRP, Spanning Tree, 802.1q, etc.
• Estimated Project costs and created documentation for project funding approvals.
• Planned resources and presented project status to higher management.
• Configured CIDR IP RIP, PPP, BGP and OSPF routing.
• Configuration and troubleshooting of Cisco catalyst 6509, 7613 with supervisor cards.
• Experience with implementing and maintaining network monitoring systems (Cisco works and HP Open view) and experience with developing complex network design documentation and presentations using VISIO
• Worked with telecom vendors in regards to network fault isolation.
• Hands-on experience with WAN (ATM/Frame Relay), Routers, Switches, TCP/IP, Routing Protocols (BGP/OSPF), and IP addressing.
• Modified internal infrastructure by adding switches to support server farms and added servers to existing DMZ environments to support new and existing application platforms.
• Analyzed customer application and bandwidth requirements, ordered hardware and circuits, and built cost effective network solutions to accommodate customer requirements and project scope
• Identify, design and implement flexible, responsive, and secure technology services
• Involved in the configuration & troubleshooting of routing protocols: MP-BGP, OSPF, LDP, EIGRP, RIP, BGP v4. Configured IP access filter policies.
• Layer 2 switching technology architecture, implementation and operations including L2 and L3 switching and related functionality.
• This includes the use of VLANS, STP, VTP and their functions as they relate to networking infrastructure requirements including internal and external treatment, configuration and security.
• Troubleshoot traffic passing managed firewalls via logs and packet captures
• Configured and resolved various OSPF issues in an OSPF multi area environment.
• Managed fast Layer 3 switched/routed LAN/WAN infrastructure as a part of Network team.
• The LAN consisted of Cisco campus model of Cisco 3550 at access layer, Cisco 6513 at distribution/core layer.