SUMMARY:

• 7 years of professional experience in Network Designing, Deployment, Configuring, Routing, Switching, Firewall Security and administration of complex inter networking communication systems.
• Strong knowledge in Cisco routing, Switching and security with security hardware/software experience
• Experience with convert checkpoint VPN rules over the cisco ASA solution & Migration with the checkpoint and cisco ASA VPN experience.
• Checkpoint - R60/R65/R70/R75 software version with hardware Checkpoint 11000, 21000 series with VSX environment
• Implementing standard security measures on all the Routers &Switches. Configuring AAA on all network devices with RADIUS, TACACS+ using Cisco ACS.
• Working with Cisco for opening TAC Case and resolving issues to meet project deadlines.
• Extensive knowledge of deploying & troubleshooting the L2/L3, TCP/IP, Multilayer Switching, QoS, IPSec, UDP, Ethernet, Voice & Data Integration & IP Routing Protocols RIP, EIGRP, OSPF & IS-IS
• Experience with designing, deploying and troubleshooting LAN, WAN, Frame-Relay, Ether-channel, IP Routing Protocols like RIPV2, OSPF, EIGRP & BGP, ACL's, NAT, STP, HSRP & GLBP
• Expertise in deployment of Routers, Hubs, Switches, IDS, Firewalls, load balancers, VPN Concentrators. Hand-on experience in installation and maintenance of windows NT/2000/2003, IBM AIX and Red hat Linux operating systems.
• Experience on working, Implementing and configuration Juniper SA 2500/4500/6500 SA devices.
• Excellent in documentation and updating client’s network documentation using VISIO
• VLAN Management with VTP. Monitoring spanning tree functionality to check for any loops and mis-configuration.
• Proficient using the F5 based profiles, VIP’s, monitors, pools, pool members, iRules for virtual IP’s
• 3D Analysis, GAiA, Checkpoint VPN-1/ Firewall-1, Standalone & Distributed setup, Security management, Log server, secure platform (SPLAT), License management. Provider-1 and VSX gateways with cluster and Virtual firewalls models Smart-1, Power-1
• Provided 24x7x365 availability & on-call support as required by the projects
• Excellent working knowledge of TCP/IP protocol suite and OSI layers
• Excellent knowledge in different networking protocols DHCP, DNS, FTP, VOIP (SIP, H.323, MGCP), Quality of service(QOS)
• Experience in physical cabling, IP addressing, configuring and supporting TCP/IP.
• Strong problem solving skills, extremely organized, detailed and deadline oriented
• Support and promote an organizational culture that encourages high performance, dedication, high morale, integrity and collaboration.
• Excellent communication skills with the ability to interface at all levels.

TECHNICAL SKILLS:

Security & VPN: Check Point Firewalls NG, NGX, NG R55, NGX 60, NGX R65, R70, R75, R76 with 4k,11kand 21k appliances, CiscoPIX /ASA Firewall (525/535), ASA 5505, 5510, 5512-X Firewall, Juniper firewall NS50, SSG 550M, SSG520M, ISG 1000, ISG 200, Nokia IP 390, 560, 690, 1280, 2450

Cisco Switches: 2900, 2924, 2950, 3550, 3750, 4000, 5500, 6500, 6509, 6513

Routing Protocols: RIP, IGRP, EIGRP, OSPF, IS-IS, BGP, HSRP, VRRP &GLBP

Switching: MS Office 2007/2003/2000 VLANs, VTP, Trunking, STP, RSTP, Inter Vlan Routing

Circuit switched WAN: T1/E1 - T3/E3/OCX (Channelized, Fractional & full).

Packet Switched WAN: ATM, FRAME RELAY, MPLS VPNs,SD-WAN

Network Security: NAT/PAT, Ingress & Egress Firewall Design, Configuration, Dynamic, Reflexive ACL and authentication AAA (TACACS+&RADIUS)

Network Management: SNMP, Cisco Works, Wireshark

Platforms: Cisco IOS-XR, Cisco Cat OS, Cisco IOS (11.x, 12.x), PIX, IOS (6.x, 7.x), CAT-OS UNIX, LINUX, Windows XP, NT,2000, 2003

Programming languages: C, C++, HTML

PROFESSIONAL EXPERIENCE:

Confidential, Frisco, TX

Sr. Network Engineer

Responsibilities:

• Working with Network Design and implementation teams on different projects across United States.
• Experience in manipulating various BGP attributes like Local P, MED, Extended Communities, Route-maps Route-Reflector clusters and route policy implementation.
• Experience with design and implementation of Data center migration.
• Deploying and decommission of Nexus 7K, 5K, VLANs on core ASR 9K and its downstream devices.
• Performed DHCP Profile, HSRP, BGP, IPV6, OSPF Bundle Ethernet implementation on ASR 9K redundant pair.
• Configured PPP, BGP, CIDR IP RIP, MPLS and OSPF routing.
• Assisted in MPLS migrations, implemented backup for existing WAN connection by using the site-to-site IP sec VPN tunnels.
• Configuring and installing 6500, 4500 in Campus networks.
• Experience with WCS predictive maps & RF Engineering Planning.
• Switches Replace branch hardware with new 2851 routers and 2960 switches.
• Conversions to BGP WAN routing. Which will be to convert WAN routing from OSPF to BGP (OSPF is used for local routing only) which involves in modern wan links.
• Convert Branch WAN links from TDM circuits to MPLS and to convert encryption from IPSec/GRE to GetVPN.
• Configuring routing protocols EIGRP, RIP, LDP, OSPF, MPBGP, and BGPV4.
• Configuring HSRP between VLANs, Configuring Ether-Channels, Port Channel on 6500 catalyst
• Build Logical design and Implementation of Wireless Solutions.
• Worked on F5 LTM, GTM series like 6400, 6800, 8800 for the corporate applications and their availability.
• Involved in the configuration & troubleshooting of routing protocols: MP-BGP, LDP, EIGRP, RIP, OSPF, BGP v4.
• Deploying and decommissioning Cisco switches and their software upgrades.
• Performing the ACL requests change by collecting source and destination information from various clients
• Maintain complex LAN/WAN networks with several VLANS and provided support for routing protocols and also providing secure sessions over internet using IPsec and SSL encryption.
• Worked extensively on Cisco ASA 5500(5510/5540) Series, and have an experience with converted PIX rules over to the Cisco ASA solution.
• Supporting BGP and EIGRP based on the network by resolving problems on level 2 & 3 of external customers of all locations & internal teams as well.
• Performing troubleshooting on slow network connectivity issues, routing issues that involves BGP, OSPF and identifying the root cause for the issues.
• Worked on migration of existing PIX firewall to ASA firewall, Upgrading of PIX OS from 6.3 to 7.0.
• Design and Implementing of DMZ for FTP, Web and Mail Servers with PIX515, CISCO PIX 506
• Building the VPN encryption and VPN tunnel.
• Involved in Configuration of Access lists (ACL) on ASA firewall for proper network routing for B2B network connectivity.
• To Secure configurations of load balancing in F5, SSL/VPN connections, Troubleshooting CISCO ASA firewalls, and related network security measures.
• Provided proactive threat defense with ASA which stops the attacks before they spread over the network.
• Designed and implementing Mail servers, DMZ for Web servers, FTP Servers using Cisco ASA5500 Firewalls.
• Troubleshooting the Network Issues onsite and remotely depending on the severity of the issues.
• Performed Break Fix support through driving to the different buildings, identifying the root cause of the hardware issues with switches, routers.
• Design, implementation & operational support of routing/switching protocols in complex environments including OSPF, BGP, EIGRP, Spanning Tree, 802.1q, etc.
• Worked with creating VIP (virtual servers), nodes, pools, and applying IRules for the virtual servers like cookie persistency & redirection of the URL.
• Created Visio Documentation / Visio Dean to give complete picture of network design for each building.
• Experience in Configuring, upgrading and verifying the NX-OS operation system.

Environment: Cisco 3500 series switches, Cisco Routers 3700/2600 series, Cisco PIX firewall-515/525/535, Windows 2000//NT/XP, Checkpoint Firewall-NG, AIX, VPN, DHCP, DNS, Linux, Cisco IDS 4235, MRTG, NMS- Cisco Works, OSPF, EIGRP.

Confidential, Mooresville, NC

Network Engineer

Responsibilities:

• Designed & implemented Cisco VoIP infrastructure for a large enterprise and multi-unit office environment. Met aggressive schedule to ensure a Multi-office reconfiguration project which was successfully delivered
• Responsible for service request tickets which are generated by the helpdesk in all phases such as troubleshooting, maintenance, upgrades, patches and fixes with all around technical support
• Upgrade Cisco Routers, Switches and Firewall (PIX) IOS using TFTP
• Updated the HP open view map to reflect & changes made to any existing node/object.
• Handled SRST and implemented and configured the Gateways & Voice Gateways.
• Configuring HSRP between the 3845 router pairs for Gateway redundancy for the client desktops.
• Configured the STP for switching loop prevention and VLANs for data and voice along with Configuring port security for users connected to the switches.
• Ensure Network, system and data availability and integrity through preventive maintenance & upgrade.
• Involved in L2/L3 Switching Technology Administration including creating and managing Trunking, VLANs, Inter-VLAN routing, Port security, STP, LAN security.
• Worked on the security levels with RADIUS, TACACS+.
• Completed service requests (i.e., bandwidth upgrades, IP readdressing, IOS/platform upgrades, etc.)
• Identify, design & implement flexible, responsive, and secure technology services.
• Modified internal infrastructure by adding switches which support server farms and added servers to existing DMZ environments to support new and existing application platforms.
• Validated the existing infrastructure and recommend modern network designs.
• Created scripts to monitor CPU/Memory on several low end routers in the network.
• Installed and maintained local printer and network printers.
• Handled installation of Windows NT Server & Windows NT Workstations.
• Handled Tech Support as it relates to LAN & WAN systems.

Environment: Net Flow, TACACS, EIGRP, RIP, OSPF, BGP, VPN, MPLS, CSM, SUP720, Ether Channels, Cisco 7200/3845/3600/2800 routers, Cisco 6509/ 3750/ 3550/ 3500/2950 switches, Fluke and Sniffer, Checkpoint firewalls.

Confidential, New York City, NY

Network Engineer

Responsibilities:

• Worked onCiscoLayer 2 switches (spanning tree, VLAN).
• WAN Infrastructure running BGP & OSPF as core routing protocol.
• Configuration & troubleshooting of Cisco 2500,2600,3000,6500,7500,7200 Series routers.
• Tested authentication in both BGP & OSPF
• Configured HSRP & VLAN trucking 802.1Q, VLAN Routing on Catalyst 6500 switches.
• Optimized performance of the WANnetworkconsisting of Cisco 3550/4500/6500 switches by configuring VLANs.
• Design and configuring of BGP & OSPF on Juniper Routers and SRX Firewalls.
• Configuration 7609, 7606 with OSPF and catalyst 6505,4500,3550 switches with various VLAN.
• Configured and troubleshoot EIGRP& OSPF
• Troubleshooting IOS related bugs based on past history and appropriate release notes.
• Work on different connection medium like Fibre and as well as Copper Connectivity.
• In-depth expertise in the implementation of analysis, optimization, troubleshooting and documentation of LAN/WAN network systems.
• Planning and configuring the routing protocols such as RIP, OSPF, and Static Routing on the routers.
• Performed and technically documented various test results on the lab tests conducted.
• Planning and configuring the overall IP addressing plan for the clients'network.
• Assist the team and perform configuration of LAN\WAN technologies such as Ethernet, Fast Ethernet, and Gigabit Ethernet.
• Working knowledge of firewall technologies Palo Alto.
• Experienced in facing the Bluecoat and Palo Alto product lines, up to pre sales type of function.
• Supported networks that are comprised of 2000+Ciscodevices.
• In-depth expertise in the implementation of analysis, optimization, troubleshooting and documentation of LAN/WAN networking systems.
• WAN Infrastructure running OSPF as a core routing protocol.
• Follow process and procedures for change and configuration management.
• Supported nationwide LAN infrastructure which consists ofCisco4510 & catalyst 6513.
• Deployed the switches in high availability configuration with HSRP.
• Support many Series ofCiscoRouters like 7200/7600 series.
• Support Complex 0 Series Switches.
• NetworkMonitoring by using the tools likeCiscoWorks 2000.
• Created Lab demonstrations for new technology deployments with loaner equipment from different vendors and presented the findings to upper management.
• Troubleshootnetworkproblems by using the Packet Analysis tools such as Ethereal.
• Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500
• Configured PPP, RIP, BGP & OSPF routing.
• Worked on ASA (5540/5550) Firewalls. Implemented Security Policies using ACL, IPSEC, SSL, VPN, IPS/IDS, Firewall, AAA (TACACS+ & RADIUS).
• Understanding of JUNOS platform, also worked with IOS upgrade of Juniper devices.
• Efficient in use of Microsoft VISIO/Office as technical documentation and presentation tools.
• Create and testCisco router and switching operations using ASA Firewalls, OSPF routing protocol, and MPLS switching for stable VPNs.
• Experience working with Nexus 2148, 2248,5020, 7010, 7018devices.
• Experience in working with high performance data centre switch like nexus 7000 series.
• Performed load balancing & application level redundancy by deploying F5 BIG-IP LTM 3900.

Environment: Palo Alto, Cisco ASA5540/5500, Rip, EIGRP, OSPF, BGP, PPP, VPN VLAN, LAN, WAN, HARP, MPLS, F5 BIG - IP LTM 3900, Nexus 2K/5K/7K, MS Visio

Confidential

Network Engineer

Responsibilities:

• Installation and Configuration of Cisco Catalyst switches 3550, 3750 & 6500 series and configured routing protocol OSPF, EIGRP, BGP with Access Control lists implemented as per Network Design Document & followed the change process as per IT policy It also includes the configuration of port channel in between core switches and server distribution switches
• Router/ Microsoft VPN Server to access certain limited network resources from customer locations
• Responsible for turning up BGP peering & customer sessions, as well as debugging BGP routing problems.
• Designing and Implementation of (LAN) VLANs, VTP, Spanning Tree (STP), Trunking (dot1q and ISL) and Ether channel.
• Installed and configured four PIX 525 and two ASA 5505 in customer locations. In addition to that, two PIX firewall configured for the Guest access
• Key contributions include troubleshooting of complex LAN/WAN infrastructure that include routing protocols EIGRP, OSPF & BGP
• Involved in the redistribution into OSPF on the core ASA firewall.
• Involved in the removal of EIGRP from all devices and making OSPF the primary routing protocol.
• Involved in the modification and removal (wherever necessary) of BGP from the MPLS routers.
• Involved in designing L2VPN services and VPN-IPSEC authentication & encryption system.
• Tuned BGP internal and external peers with manipulation of attributes such as metric, origin and local P.
• Cisco Secure Access Control Server (ACS) for Windows to authenticate users that connects to a VPN 3000 Concentrator.
• Troubleshoot and Worked with Security issues related to Cisco ASA/PIX, Checkpoint, IDS/IPS and Juniper Net screen firewalls.
• Configured networks using routing protocols such as RIP, OSPF, BGP and manipulated routing updates using route-map, distribute list and administrative distance for on-demand Infrastructure.
• Responsible for day to day management of Cisco Devices, Traffic management and monitoring.
• Managing health check of Network devices this is involves upgrading IOS on every quarter after checking the vulnerability of IOS and reviewing the configuration
• Experience in HSRP standby troubleshooting & Experience in configuring & upgrading of Cisco IOS
• Installation, Configuration and troubleshooting Cisco switches and Firewall on multi-mode context based environments
• Implemented various OSPF scenarios on networks consisting of 7600 routers.
• Configured policy based routing for BGP for complex network systems.
• Configured Multiprotocol Label Switching (MPLS) VPN with Routing Information Protocol (RIP) on the customer’s Site.

Environment: In Corporate office architecture with highly reliable & secured network including Cisco routers (7200,3800,2800), Cisco switches (4900,2900), Cisco ASA Firewall (5510), Routing Protocols (EIGRP, RIP, BGP), Switching protocols (VTP, STP, GLBP)

Confidential

Jr. Network Engineer

Responsibilities:

• Upgrade Cisco 7200, 3600 Router IOS Software, backup Routers and Catalyst 3560, 4500 switch configurations
• Support 24x7 operations and answer calls from the customers on network emergencies and resolve issues
• Install and manage Cisco Catalyst 3500XL, &2960 series Switches and Cisco 1800, 3900 series routers.
• Plans, coordinates, implements and supports the LAN / WAN hardware, software and Internet /Intranet integration network connectivity, diagnose network failures and resolve any problems.
• Responsible for implementation and day to day operations of all associated hubs, routers, bridges, gateways and related equipment
• Monitoring the network, troubleshooting network problems, implementing changes, communicating and working closely with vendors, customers, system administrators
• Troubleshoot Frame Relay; T1, T3, IP and OSPF related router and circuit issues.
• Responsible for LAN and internet connection file and print server.
• Maintained and installed new internet connections for customers.
• Handled installation of Windows NT Server and Windows NT Workstations.
• Handled Tech Support as it relates to LAN & WAN systems
• Hands on Experience in INTER-VLAN routing, redistribution, access-lists and dynamic Nating
• Log messages using Syslog server and analyse the issues related to high CPU utilization and parameters that candegrade performance of the network
• Involved in all technical aspects of LAN and WAN projects including, short and long term planning, implementation, project management and operations support as required
• Conduct through analysis, problem solving, and infrastructure planning
• Provide assistance to Network Manager and serve as Secondary Network support.
• Troubleshoot and fix any backup and monitoring systems related issues in conjunction with Systems team and external vendors
• Active participation on operational support for routing/switching protocols in complex environments including BGP, OSPF, EIGRP, Spanning Tree, 802.1q, etc.
• Managed various teams involved in site surveys, cabling specifications, Network equipment installation and configuration.
• Design OSPF areas for reliable Access Distribution and for Core IP Routing.
• Used various scanning and sniffing tools like Wire-shark.
• Network Migration from RIP to OSPF and EIGRP.