SUMMARY

• Over 6+ Years experienced Certified Network Engineer in design & implementation of Enterprise Networking configuration of Cisco Routers, Switches, Wireless and Firewalls, troubleshooting & fine - tuning of Firewalls, VPN configuration, troubleshooting network related problems in Enterprise & Data Center Networks.
• Proficient in Cisco IOS for configuration & troubleshooting of routing protocols: MP-BGP, LDP, EIGRP, RIP, OSPF, MPLS and BGP v4.
• Excellent knowledge in Routing, Switching, Firewall and Gateway technologies, system design, wireless design, data network design, capacity management and network growth.
• Hands on experience in installing, configuring, maintaining and troubleshooting Cisco Switches, Cisco Routers, and Cisco Nexus Switches.
• Involved in troubleshooting of DNS, DHCP and other IP conflict problems.
• Responsible for Check Point and Cisco ASA firewall administration across global networks.
• Experience in working with Cisco Nexus Switches and Virtual Port Channel configuration.
• Knowledge of implementing and troubleshooting complex layer 2 technologies such as VLAN Trunks, VTP, Ether-channel, Inter Vlan routing, STP, RSTP and MST.
• Implementation of HSRP, VRRP and GLBP for Default Gateway Redundancy.
• Experience in testing cisco routers and switches in laboratory and deploy them on site production.
• Expert level knowledge on OSI model and TCP/IP protocol suite.
• Designed and implementing WAN encryption using GET VPN
• Experience in Deploying Riverbed Stealhead for WAN optimization application over the enterprise network experience in deploying SD-WAN module (CloudGenix) in the production network environment..
• Strong knowledge of TACACS+, RADIUS implementation in Access Control Network.
• Experience in Designing and assisting in deploying enterprise wide Network Security and High Availability Solutions for ASA.
• Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500/PIX security appliance, Failover DMZ zoning & configuring VLANs/Routing/NATing with the firewalls as per design.
• Worked on Extensively on Cisco Firewalls, Cisco PIX (506E/515E/525/) & ASA 5500(5510/5540) Series.
• Responsible for Checkpoint and Cisco ASA firewall administration across our global networks.
• Installation, configuration, and management of WAN optimizer, Riverbed Steelhead.
• Experience with hardware load balancer administration and support, preferably with F5 and Cisco ACE load balancers.
• Good understanding and knowledge on wireless technology .Expert level knowledge on Aruba AP’s, Clearpass, Meraki and site good command on site survey tools.
• Experience with convert Checkpoint VPN rules over to the Cisco ASA solution. Migration with both Checkpoint and Cisco ASA VPN experience.
• Experience with Brocade switch
• Experience in layer-3 Routing and layer-2 Switching.
• Experience with VOIP and QOS implements and support.
• Experience in installing and configuring DNS, DHCP server.
• Good Knowledge in troubleshooting issues on NAT.
• In depth understanding of Ipv4 implementation of subnetting
• Experience with Putty, Exceed, Secure CRT, GNS 3 and Cisco Packet Tracer.
• Adept in preparing Technical Documentation and presentations using Microsoft VISIO/Office.
• Ability to Install, Manage & Troubleshoot Large Networks & Systems Administration on Windows & Linux platforms in Development, Lab & Production Environments.
• Excellent customer management/resolution, problem solving, debugging skills and capable of quickly learning, effectively analyzes results and implement and delivering solutions as an individual and as part of a team.

TECHNICAL SKILLS

Network Configuration: Advanced switch/router configuration (Cisco IOS access list, Route redistribution/propagation).

Routing Protocols: RIPV1, RIPV2, IGRP, EIGRP, OSPF, BGPv4, MP-BGP, Redistribution, Summarization, and Static Routing.

WAN Protocols: HDLC, PPP, MLPPP

Circuit switched WAN: T1/E1 - T3/E3/OCX (Channelized, Fractional & full).

Packet Switched WAN: ATM, FRAME RELAY, MPLS, VPNs

Security Technologies: Cisco FWSM/PIX/ASDM, Nokia Checkpoint NG, PAP, CHAP, Cisco PIX, Blue Coat

Cisco Routers: Cisco GSR 12416, 12418, Cisco 7200vxr, Cisco 3640, Cisco 3600

Cisco Switches: Cisco 2960, Cisco 3560, Cisco 3750, Cisco 6500 series

Cisco Nexus Switches: 9K, 7K, 5K, 2K and 1K

Layer 3 Switching: CEF, MLS, Ether Channel

Layer 2 technology: VLAN, VTP, VMPS, ISL, dot1q, DTP, Spanning-tree, PVST

Physical interfaces: Fast Ethernet, Gigabit Ethernet, Serial, HSSI, Sonet (POS)

Redundancy and management: HSRP, RPR, NSF/NSR

QOS: CBWFQ, LLQ, WRED, Policing/Shaping.

Switches: Catalyst 6500, MSFC, MSFC2, 7600, 3700, 3500

LAN Technologies: Ethernet, Fast Ethernet, Gigabit Ethernet, & 10 Gigabit Ethernet, Port- channel, VLANS, VTP, STP, RSTP, 802.1Q

WAN Technologies: Frame Relay,, SD-WAN,ISDN, ATM, MPLS, leased lines & exposure to PPP, HDLC, and CSU/DSU Security Server

Protocols: TACACS+, RADIUS.

Gateway Load Balancing: HSRP, VRRP, GLBP, EBGP

Network Management Tools: Wireshark, Netflow Analyzer, Cisco Works, Ethereal, SNMP, HP open view, SM, SM9, Traverse, Infoblox, Infoblox net MRI,Infoblox Grid Manger, Cisco NCS, Cisco prime infrastructure, Cisco ACS, BMC Track -ItFacilities DS0, DS1, DS3, OCX, T1/T3

Firewall & Security: ASA Firewall (5505/5510),Checkpoint, Cisco ASA,, Pix(525/53, Checkpoint (R62, R65, R70, NGX), Palo Alto, Cisco ASA 5500-X (Fire power), Pulse secure SSL-VPN, Any connect

Load Balancers: Cisco CSM, F5(LTM, GTM and APM) Networks (Big-IP)

WAN Optimizer: Riverbed Steelhead Appliance

Wireless Technology: Prime Infrastructure, Ekahau,Air Magnet, Air watch &WLC’s(8510,5508,5706),CiscoAirnetAP’s(2600,3600,3700),ISE,MSE, Aruba 215,IAp-215, 225, Aruba 3000 controller & Airwave, Cisco Meraki.

IPSEC/VPN Configuration: PIX to Router, Router to Router, PIX to VPN wildcard client, Router to VPN wildcard client, PIX to PIX, fully meshed configurations

Cabling: CAT 5, CAT 5e, CAT 6, CAT 6a

Programming Languages: C, C++,Verilog, Matlab

Operating Systems: Microsoft XP/Vista/7, UNIX, Linux (Redhat, OpenSuse, Fedora), Windows Servers 2003/2008, Windows MS-Office

PROFESSIONAL EXPERIENCE

Network Engineer

Confidential

Responsibilities:

• Working in high availability Nexus Environment and provide Level 3 Network Support and configuration, upgrading and verifying the NX-OS .Experience configuring VDC,VPC in Nexus 7010
• Basic and advanced F5 load balancer configurations, general troubleshooting of the F5 load balancers.
• Modified internal infrastructure by adding switches to support server farms and added servers to existing DMZ environments to support new and existing application platforms.
• Cisco ASA/Checkpoint Firewall troubleshooting and policy change requests for new IP segments that either come on line or that may have been altered during various planned network changes on the network. Configuration and management of NEXUS network in the existing network infrastructure.
• Created LAB setup with 7k and 5K NEXUS switches for application testing.
• Involved in the deployment of Cisco Nexus 7k, 5k and 2K along with ASR 9K, 6509s (Sup 720), Cisco 4900, 3750, 2960 switches.
• Troubleshoot and Worked with Security issues related to Cisco ASA, and IDS/IPS firewalls
• Perform Wireless Administration and troubleshooting for the corporate Wireless infrastructure.
• Build Logical design and Implementation of Wireless Solution
• ACI VMM integration, Policy-Based Routing, Managed/Non-Managed Service Graph configuration
• Gathers requirements and collaborates directly with Clients and internal business units to ensure successful project delivery
• Responsible for Checkpoint and Cisco ASA firewall administration across global networks
• Configured routers and coordinated with LD Carriers and LECs to turn-up new WAN circuits.
• Providing Level 3 Engineering and Support to other internal network engineers and contractors by attending the conference calls.
• Performed OSPF, BGP, DHCP Profile, HSRP, IPV6, and Bundle Ethernet implementation on ASR 9K redundant pair.
• Worked extensively on policy design and implementation for ISE solution various Network infrastructures for successful wireless, extranet and VPN Connectivity.
• Configuration & Maintenance of Cisco ISE for Certificate based authentication for BYOD and Corporate Mobile Device Authentication using Xenmobile MDM.
• Configured 6500, 3750 and 4500 for Network Access Solution integration with Cisco Identity Service Engine on ESX 4.0 VMware and physically with Cisco ISEappliances.
• Actively participated in upgrading fast Ethernet, Layer 3 switched/routed LAN infrastructure from Cisco 3640 to Cisco 2811 ISR routers and switches at access level to 2950, 3550.
• Configuring and troubleshooting CISCO catalyst 6509, 7609, 7613 with Supervisor cards, Cisco 3640, Cisco GSR 12416,21418(with PRP and RPR processors)
• Excellent Troubleshooting Skills and Customer Centric approach.
• Providing daily network support for national wide area network consisting of MPLS, VPN and point-to-point site.
• Managed, operated and analyzed results from Sourcefire (Cisco Firepower) Deep understanding of IDS/IPS such as Sourcefire and Foresight.
• Configuring GLBP, VLAN Trunking 802.1Q, STP, Port security on Catalyst 6500 switches.
• Configuring BGP, MPLS in Cisco IOS XR.
• Configuring Virtual Device Context in Nexus 7010.
• Worked on extensive on Cisco ASA fire power 5500-X(5525-X,5555-X,5585-x)
• Involved in Configuration of Access lists (ACL) on ASA firewall for the proper network routing for the B2Bnetwork connectivity.
• To secure configurations of load balancing in F5, SSL/VPN connections, Troubleshooting CISCO ASA firewalls, and related network security measures.
• Designed and implemented DMZ for Web servers, Mail servers & FTP Servers using Cisco ASA5500 Firewalls.

Environment: Cisco 2948/3560/4500/3560/3750/3550/3500/2960/6500 switches and Cisco 3640/12000 /7200/3845/3600/2800 routers, Cisco Nexus 7K/5K/2K, Cisco ASA5510,Cisco ASA 5500-X fire power Checkpoint, windows server 2003/2008: F5 BIGIP, LTM, OSPF, EIGRP, RIP, BGP, VLAN, VPN, Checkpoint.

Network Engineer

Confidential

Responsibilities:

• Understanding project requirements and implementing the projects by gathering requirements from customers.
• Network design and architecture like device planning and capacity planning.
• Configuring Cisco 7600, 7200 series routers with dynamic routing protocols like BGP, OSPF and EIGRP
• ISP links monitoring and performing changes in the network devices.
• Configuring Cisco 4506, nexus 2K and brocade switch based on customer requirement
• Deployment and troubleshooting with Brocade fabric vision technology
• Configuring ACL s to provide internet access and to advertise in ISP AS numbers.
• Configuring HSRP and VRRP to provide redundancy in the network level.
• Securing network by implementing firewalls and allowing access based on customer request.
• Configuring the Fortigate, Cisco and Sonicwall firewall models.
• Configuring VPN s like SSL, IPSEC vpn s for access servers through secure channel.
• Natting and patting the IP s to access servers from internet.
• Experience working with Cisco ASA 5585-X firewalls with Firewall rules, IPSEC VPN, NAT, Active-Standby Failover, OSPF and Any Connect VPN technologies
• Experience working with Nexus 7k, 5K, 2K with VPC, VDC, ISSU Software upgrades
• Working with Juniper JUNOS operating system and working on M/ MX/ series routers. And SRX devices
• Designing, Installation and configuration on Checkpoint, ASA, Net Screen and Juniper Firewalls
• Providing security by configuring three layer setups in network devices.
• Providing LB servers on application layer on shared devices boarding number of customers.
• Worked on Radware and F5 devices.
• Providing WAF services to provide application level security by adding WAF services.
• Closing the tickets with in the SLA timelines.

Environment: Cisco 2600 / 2800 / 3600 Cisco 2950 / 2960 series switches, Cisco Routers 7000, 5300, 4000, 2500, 3000, 2600, NAT, PAT, DHCP, DNS, OSPF, EIGRP, ASR, TCP/IP, LAN, WAN, Fort iGATE, CISCO and Dell SonicWALL Firewalls.

Network Engineer

Confidential, Moorestown, NJ

Responsibilities:

• Created scripts to monitor CPU/Memory on various low end routers in the network.
• Installed and maintained local printer as well as network printers.
• Completed service requests (i.e. - IP readdressing, bandwidth upgrades, IOS/platform upgrades, etc.)
• Identify, design and implement flexible, responsive, and secure technology services
• Modified internal infrastructure by adding switches to support server farms and added servers to existing DMZ environments to support new and existing application platforms.
• Providing support to networks containing more than 2000 Cisco devices.
• Performing troubleshooting for IOS related bugs by analyzing past history and related notes.
• Carrying out documentation for tracking network issue symptoms and large scale technical escalations.
• Ensure Network, system and data availability and integrity through preventive maintenance and upgrade.
• Involved in L2/L3 Switching Technology Administration including creating and managing VLANs, Port security, Trunking, STP, Inter-Vlan routing, LAN security.
• Worked on the security levels with RADIUS, TACACS+.
• Managing the service request tickets within the phases of troubleshooting, maintenance, upgrades, fixes, patches and providing all-round technical support.
• Preparing feasibility report for various upgrades and installations.
• Configured switches with port security and 802.1 xs for enhancing customer’s security.
• Monitored network for optimum traffic distribution and load balancing using Solar winds.
• Validate existing infrastructure and recommend new network designs.
• Configuring and troubleshooting multi-customer network environment.
• Involved in network monitoring, alarm notification and acknowledgement.
• Implementing new/changing existing data networks for various projects as per the requirement.
• Troubleshooting complex networks layer 1, 2to layer 3 (routing with MPLS, BGP, EIGRP, OSPF protocols) technical issues.
• Handled installation of Windows NT Server and Windows NT Workstations.
• Handled Tech Support as it relates to LAN & WAN systems

Environment: Cisco 7609S series routers, Cisco 2900 routers, 6513E switches, Check point firewall, RadwareAppdirector.