SUMMARY

• Over 9+ years of experience in Networking, which includes expertise in teh areas of Routing, Switching, security and physical layer deploying and troubleshooting.
• Expert Level Knowledge about TCP/IP and OSI models.
• Experience in layer - 3 Routing and layer-2 Switching. Dealt wif Nexus models like 7K, 5K, 2Kseries, Cisco router models like 7200, 3800, 3600, 2800, 2600, 2500, 1800 series and Cisco catalyst 6500, 4500, 3750, 3500, 2900 series switches.
• Proficient wifTCP/IP and relative OSI models.
• Expertise inTCP/IP, DNS, DHCP, Content Load Balancing.
• Expertise in Migration ofFirewallsfrom Nortel Contivity to ASA, ASA to Checkpoint, Checkpoint to PaloAltoand Vice Versa
• Configure allPaloAltoNetworksFirewallmodels (PA-2k, PA-3k, PA-5k etc.) as well as a centralized management system (Panorama) to manage large scalefirewalldeployments.
• Experienced wif Cisco CRS-X, CRS-3, CRS-1,ASR9K,ASR1K, 12K, 10K, 7500, 7200, 3900, and 3800 routers
• Hands on experience in Configuration, Troubleshooting and Maintenance ofPaloAltoFirewalls(160+firewalls) - PA200, PA2000 series, PA3000 series, PA4000 series and PA5000 series.
• Highly advanced noledge on 802.11x, WLAN design, deployment, encryption types WEP, WPA2-AES-PSK/EAP, 802.1X/RADIUStied into Active Directory.
• Configuring, Administering and troubleshooting teh Checkpoint and ASA firewall.
• In-depth expertise in teh analysis, implementation, troubleshooting & documentation of LAN/WAN technologies and good experience on IP services.
• Implementation experience on IP Addressing, Sub netting, VLSM and ARP, reverse & proxy ARP, Ping Concepts.
• Configured MPLS L3 and L2 VPNs for customers.
• Migration from a SonicWall firewall to a HP firewall, including policies, NATs, andVPNtunnels
• Implementation traffic filters on Cisco routes using Standard, extended Access list.
• Network security including NAT/PAT, ACL, VPN Concentrator.
• Experience wifF5load balancers - LTM, GTM series like 6400, 6800.
• Responsible for Cisco ASA firewall administration across our global networks.
• Worked on Extensively on Cisco Firewalls, ASA 5500(5510/5540) & Cisco PIX (506E/515E/525/) Series.
• Worked on VDC, VPC, OTV, and fabric path on of Nexus 7K and 5K.
• Hands on experience on Amazon Web Services (AWS) in implementing and maintain security groups per VPC.

TECHNICAL SKILLS

Routers and Switches: Cisco Switches (2900, 2924, 2950, 3550, 5500, 6500, 6509, 6513), Cisco routers (2600, 2800, 3640, 3700, 3825, 7200, 7204, 7206)

Protocols: RIP, RIP2, PPP, OSPF, EIGRP, IS-IS, BGP, SNMP, HTTP, FTP, TFTP, HTTP, DHCP, SMTP, ICMP

WAN Technologies: Frame Relay, ISDN, PPP, ATM, MPLS, Channel & Leased lines

LAN Technologies: Ethernet, TCP/IP, CDP, STP, RSTP, VTP, VLAN, Trunks, Ethernet channel, MPLS.

AAA Architecture: TACACS+, RADIUS, Cisco ACS.

Firewalls: ASA, PIX, SRX, Watch guard, ASDM, CSM, Checkpoint

Operating Systems: Windows 2000/2003/2008, windows XP/7, LINUX, Redhat, UNIX, Macintosh

Servers: Domain servers, DNS servers, WINS servers, Mail Servers, Proxy Servers, Print Servers, Application servers, FTP Servers

Load balancer: F5 Load Balancer, ACE, LTM & GTM series.

Monitoring Tools: Wireshark, Fiddler, Microsoft Network Monitor, solar winds and some sniffers

Cloud Technologies: Amazon Web Services (AWS)

PROFESSIONAL EXPERIENCE

Network Engineer

Confidential, St Paul, MN

Responsibilities:

• Handling day to day activities and requests related to network issues obtained by Cherwell ticketing system and Email alerts generated by solar winds for teh network outage.
• Maintaining teh Cisco appliances and virtual Checkpoint firewall appliances installed across 169 stores across United States and teh data centers connecting them.
• Managing and changing Checkpoint rules according to teh customers’ requests and issues.
• Make changes and code upgrades to Cisco 2921 routers and Cisco 2960S switches according to teh environment changes in teh stores.
• Monitoring all teh network activities using Solar winds monitoring tool and resolving issues according to teh alerts generated by solar winds.
• Making changes to teh Checkpoint and Cisco ASA, firewall rules according to teh ongoing business transitions and upgrades.
• Monitoring, handling and upgrading Cisco WAPS (wireless access points) according to their range, coverage and issues across each and every store.
• Managing, installing, troubleshooting and replacing Cisco WAPS (wireless access points) such as AIR-AP37021, AIR-AP1142N, across teh stores located in United States.
• Provisioning teh universal Cisco WAPS (Access Points) before being configured and dispatch to teh installation sites.
• Supporting 24/7 round teh clock wif any network issues and down time and fixing teh issue as soon as possible.
• Communicating wif teh internet service provider and teh store dispatch team for each location, when they have a network outage and fixing teh issue as soon as possible.
• Maintaining and documenting teh changes and updating teh VISIO diagrams in teh network shared folder for further references.

Network Engineer

Confidential, Austin, TX

Responsibilities:

• Design an available and secure firewall solution for teh Cloud program
• Design, implementation and operational support of routing/switching protocols in complex environments including IS-IS, BGP, OSPF, EIGRP, Spanning Tree
• Migration on physical environment to cloud environment, Amazon web services (AWS) environment.
• Technical support to operations team for resolving complex technical issues, on daily Ticket and network issues.
• Implementing and maintainingthe developing complexnetworkdesign documentation and presentations using VISIO.
• Monitoring ofnetworkto ensure secure and smooth operations.
• Configuring and troubleshooting EIGRP, RIP, OSPF, BGP and static routing.
• Configured Multi-layer Switches wif VLAN’s, STP, VTP and Port Security
• Configure DHCP Scopes for Cisco Endpoints and Troubleshoot issues related to it
• Configured and troubleshoot link-state protocols such as OSPF in single and multiple areas
• Configuring BIG-IP-F5 LTM and GTM Load Balancers and troubleshooting Issues in F5 and upgrading and modifying teh Virtual Pool, Nodes and Virtual Servers
• Configured BIG-IP GTM to provide disaster recovery and routing based on service and business plan.
• Configure teh Cisco router wif teh Dynamic routing protocols (BGP & EIGRP).
• Configure IP Multicast related configurations on teh routers
• Configured and administrated various Cisco and Nexus Routers and Switches.
• Install, Upgrade teh Nexus OS and Nexus Series Switches
• Install and Configure GRE Tunnels and Extended teh Data Center access to remote sites to access teh Data Center
• Install and Configure Cisco routers wif dynamic routing protocols like OSPF and BGP as part of teh Data Center build out
• Troubleshooting of DNS, DHCP and other IP conflict problems
• Configured ASA 5500 to ensure high-end security on thenetworkwif ACLs and Firewall
• Experience wif Firewall Administration, Rule Analysis, Rule Modification.
• Introduced new procedures to improveNetworkSecurity
• Responsibilities includedNetworkSecurity for Internal and ExternalNetworks.
• Implementing and maintaining security groups creations, processes and documentation in AWS to increase network security and to also provide a streamlined standardization.
• Performing security group remediation from teh old security groups to teh new security groups to ease of audit and increase security in AWS.
• Technologies used include Cisco routers, switches, DNS, DHCP, Security Devices, Cisco UCS, VMWare, and EMC Storage
• Oversee network and equipment upgrades to include IOS image upgrades, and configuration changes.
• Troubleshooting of LAN/WAN infrastructure including routing protocols OSPF & BGP
• Engaged in office moves, halped in identifying network requirements of new building, installed new networking hardware, and coordinated wif vendors for cabling/wiring
• Engineered in day-to-day network troubleshooting, image upgrades for routers and switch and hybrid to native conversion of Cisco multilayer switches

Network Engineer

Confidential, Indianapolis, IN

Responsibilities:

• Migration from a SonicWall firewall to a HP firewall, including policies, NATs, andVPNtunnels
• Exposure to wild fire feature ofPaloAlto.
• Good noledge on security protocols, TACACS+ and RADIUS.
• Expertise inTCP/IP, DNS, DHCP, Content Load Balancing.
• Configuring and maintaining F5 SSLVPNandnetworkaccess and Single Sign-On (SSO) for SAML resources.
• Configure allPaloAltoNetworksFirewallmodels (PA-2k, PA-3k, PA-5k etc.) as well as a centralized
• Configured and managednetworkdevices wif TACACS+ for access control wif Cisco ACS.
• Configuring, Administering and troubleshooting teh Checkpoint andASAfirewall.
• Configure LTM system/F5 Load balancers
• Configuration changes to F5 GTM devices
• Configure and troubleshoot Remote access and site to site-in Checkpoint &ASAfirewalls
• Configured monitor tools on BIG IP load balancers and monitored teh packet flow using teh monitor tool.
• Trouble shootingVPNand Firewalls, Support SSL, wireless, Meraki Guest Wi-Fi, Cisco ISE, Lan-to-Lans, virtual.
• Troubleshot VLANs, VDCs, Ports Virtual port channel (vPC) and configuration on Nexus 7k
• Implementing APM on F5 for best security and securing teh data center.
• IP address management, IP Sub netting, VLSM,TCP/IP, NAT, DHCP, DNS, racking, stacking and Data Centre concepts.
• Experienced wif Cisco CRS-X, CRS-3, CRS-1,ASR9K,ASR1K, 12K, 10K, 7500, 7200, 3900, and 3800 routers
• Management system (Panorama) to manage large scalefirewalldeployments.
• PaloAltodesign and installation (Application and URL filtering, Threat Prevention, Data Filtering)
• Successfully installedPaloAltoPA 3060firewallsto protects Data Center and provided L3 support for routers/switches/firewalls
• Highly advanced noledge on 802.11x, WLAN design, deployment, encryption types WEP, WPA2-AES-PSK/EAP, 802.1X/RADIUStied into Active Directory.
• Proficient in design, implementation, management and troubleshooting of Check Pointfirewalls, Cisco PIX, NetScreenFirewalls, Check Point Provider-1 / VSX, Nokia VPN,PaloAltoIDS, Foundry / F5 Load Balancers, and Blue Coat Packet Shaper systems.
• Experience wif converting 6500 to Cisco Nexus in teh data center environment.
• Maintain and troubleshoot switch applications andNetworkconnectivity including DNS, DHCP, LAN andTCP/IP issues.

Network Engineer

Confidential, Fairfield CT

Responsibilities:

• Migration of existing IPSEC VPN tunnels from Pre-Shared key to Certificate Authority for purpose of scaling
• Configuration and extension of VLAN from one network segment to other segment between Different
• Configuring/Troubleshoot issues wif teh following types of routers Cisco (1700, 2600 and 3500 series), to
• Configuration of EIGRP and OSPF as interior gateway protocol wif route filtering and route
• Redistribution, Installed and Maintained Cisco 3600, 2600 and 7200 backbone routes wif HSRP
• Configuring and troubleshooting perimeter security devices such as Checkpoint NGX R77 Gaia, Provider-
• 1/MDM, Secure Platform,PaloAltoand ASAFirewalls.
• Managednetworksecurity processes usingASAfirewalls
• Monitoring Traffic and Connections in Checkpoint andASAFirewall
• Supported core network consisting of Cisco 7200 series routers running multi area OSPF
• Extensive experience in configuring and implementing OSPF, BGP and MP-BGP
• Hand on experience on configuration and implementation of various Cisco Routers & L2/L3 Switches.
• Worked on Infrastructure Oriented project migrations
• Securednetworkaccess wif Cisco Secure (RADIUS/ TACACS+)
• Setting up VLANS and configuring ISL trunk on Fast-Ethernetchannel betweenSwitches.
• Working Troubleshooting wif theTCPdumps and wire shark.
• PaloAltodesign and installation (Application and URL filtering, Threat Prevention, Data Filtering)
• Implemented Positive Enforcement Model wif teh halp ofPaloAltoNetworks.
• Build IT security infrastructure including Checkpoint, Juniper andPaloAltofirewalls
• Worked on High availabilitynetworkslikeASR9K, Cisco Nexus devices such as 2k, 5k.7k, 9k.
• Senior Engineer in charge of data center migration upgrading End of Life Cisco IOS routers to Cisco ASRIOS-XE/XR.
• Replaced aging Checkpointfirewallarchitecture wif next generationPaloAltoappliances serving as firewallsand URL and application inspection
• Expert in usage ofPaloAltoNetworksfor implementation of Positive Enforcement Model
• Comprehensive understanding of OSI Model,TCP/IP protocol suite (IP, ARP, ICMP,TCP, UDP, SNMP, FTP, TFTP).
• Substantial lab testing & validation prior to implementation of Nexus 7K, 5K & 2K connecting to blade servers
• Involved in teh modification and removal of BGP from teh MPLS routers.
• Also prepared documentation for various Vlans and Voice subnetworks and worked on Visio for teh same. vendor switches (Cisco, Juniper)
• Replace branch hardware wif new 2851 routers and 2960 switches.

Network Engineer

Confidential, Township, NJ

Responsibilities:

• Migration ofFirewallsfrom Nortel Contivity to ASA, ASA to Checkpoint, Checkpoint to PaloAltoand Vice Versa
• Designed and installedEthernet, Coax, and HDMI cables.
• Configuration and troubleshooting of Cisco 2500, 2600, 3000, 6500, 7500, 7200 Series routers.
• Configured IP access filter policies.
• Configured Multicasting protocol for IPTV and Multicast over GRE tunnels.
• Configured and maintained ISDN and persistent dial IPVPNconnections.
• Configuration, Troubleshooting and Maintenance ofPaloAltoFirewalls(160+firewalls) - PA200, PA2000 series, PA3000 series, PA4000 series and PA5000 series.
• ConfigureVPNtunnels between various vendor's hardware and software firewalls
• Configuration 7609, 7606 wif OSPF and catalyst 6505, 4500, 3550 switches wif various VLAN.
• Configured Routing protocols such as OSPF and policy based routing.
• Configuring Cisco IOS AAA wif TACACS+ andRADIUSand Local privilege authorization fallback
• Configuration and troubleshooting link state protocols like OSPF in multiple areas.
• Implemented security policies using ACL, Firewall,IPSEC, SSL, and VPN.
• Implemented Positive Enforcement Model wif teh halp ofPaloAltoNetworks
• Manage project task to migrate from CiscoASAfirewallsto Check Pointfirewalls
• Team member of Configuration ofCisco7206 router and Configuration of Catalyst switches.
• Supported on CiscoNexus 5000and Nexus7000 SeriesSwitch fabric links.
• Managed TACACS+, SevOne and Cisco Works for Xerox Infrastructure.
• Expert in usage ofPaloAltoNetworksfor implementation of Positive Enforcement Model
• Securednetworkaccess using Cisco Secure (RADIUS/TACACS+)
• Create and testCisco router and switching operations using OSPF routing protocol.
• Installing and Powering F5,Palo-AltoFirewall, Juniper SSL VPN, and Isilon server equipments
• Innovated wif support of Palo Alto for remote and mobile users and for analyzing files for malware in a separate (cloud-based) process dat does not impact stream processing.
• To secure configurations of load balancing in F5, SSL/VPN connections, Troubleshooting CISCO ASA firewalls, and related network security measures.
• Worked on troubleshooting and resolving issues escalated by teh NOC and internal systems, including developing, implementing and deploying emergency hot fixes wifin a global network

Network Engineer

Confidential

Responsibilities:

• Researched, designed, and replaced aging Checkpointfirewallarchitecture wif new next generation PaloAltoappliances serving asfirewallsand URL and application inspection.
• Migration of RIP V2 to OSPF, BGP routing protocols.
• Configuring rules and maintainingPaloAltofirewallsand analysis offirewalllogs using various tools
• Configured and troubleshoot OSPF and EIGRP.
• ConfigureVPNtunnels between customer sites.
• Configured MPLS L3 and L2 VPNs for customers.
• Configuring rules and MaintainingPaloAltoFirewalls& Analysis offirewalllogs
• Implemented ISL and 802.1Q for communicating through VTP.
• Deploying and decommission of VLANs on coreASR9K, Nexus 7K, 5K and its downstream devices.
• ConfiguredRADIUSserver.
• Implemented Zone Based Firewalling and Security Rules on thePaloAltoFirewall
• Worked onCiscoLayer 2 switches (spanning tree, VLAN).
• WAN Infrastructure running OSPF & BGP as core routing protocol.
• Support various Routers like 2600/3600/7200 series routers.
• Setting up VLANS and configuring ISL trunk on Fast-Ethernetchannel betweenswitches
• Worked wif TACACS+ and RADIUS servers for managing user authentication.
• Tested authentication in OSPF and BGP.
• NetworkMonitoring using tools likeCiscoWorks 2000.
• Worked on configuration and maintenance of Webtops and Portal Access, and F5 SSLVPNand networkaccess.
• Planning and configuring teh routing protocols such as OSPF, RIP, and Static Routing on teh routers.
• Performed and technically documented various test results on teh lab tests conducted.
• Planning and configuring teh entire IP addressing plan for teh clients'network.
• Assist teh certification team and perform configuration of LAN\WAN technologies such as Ethernet, Fast Ethernet, and Gigabit Ethernet.
• In-depth expertise in teh implementation of analysis, optimization, troubleshooting and documentation of LAN/WAN networking systems.
• WAN Infrastructure running OSPF as a core routing protocol.
• Support various Series ofCiscoRouters like 7200/7600 series.
• Support Complex 0 Series Switches.

Jr. Network Engineer

Confidential

Responsibilities:

• Designing solutions for frozen requirements using Cisco Routers and Switches
• Configured EIGRP for Lab Environment.
• Configured Cisco Catalyst 6500, 4500, 3850, 3750, 2960 switches and Cisco 3600, 7200 &ASR1K & 9k Routers for an enterprisenetwork
• Experienced in handling and installingPaloAltoFirewalls.
• Negotiate VPN tunnels using IPSec encryption standards and also configured and implemented site-to-site VPN, Remote VPN
• PaloAltodesign and installation for Application and URL filtering
• Configured and troubleshotPaloAltofirewallusing CLI.
• Installation ofPaloAlto(Application and URL filtering, Threat Prevention, Data Filtering)
• Working wif Client teams to find out requirements for their Network Requirements.
• Working noledge of Firewall, LDAP, AAA, TACACS/RADIUS, and IPSEC.
• Deploying teh network infrastructure to meet teh requirements
• Successfully installedPaloAltoPA-3060firewallsto protects Data Center
• Create and test Cisco router and switching operations using OSPF routing protocol,ASAFirewalls, and MPLS switching for stable VPNs.
• Support customer wif teh configuration and maintenance of PIX andASAfirewallsystems
• Created VLAN and Inter-Vlan routing wif Multilayer Switching.
• Completed service requests (me.e. - IP readdressing, bandwidth upgrades, IOS/platform upgrades.)
• Providing technical consultancy for better application response using QoS.
• Monitor performance of network and servers to identify potential problems and bottleneck.
• Performed RIP, OSPF, BGP EIGRP routing protocol administration.
• Installed wireless access points (WAP) at various locations in teh company.
• Build and maintain Visio documentations for Clients.