SUMMARY

• 8+ years of experience in Routing, Switching and Firewall Security, including hands - on experience in providing network support, installation and analysis for a broad range of LAN / WAN/MAN communication systems.
• Strong noledge in Cisco Routing, Switching and Security wif Cisco hardware/software (heavy Cisco shop) experience.
• Profound noledge on various WAN technologies like E1/T1/E3/T3, HDLC, Frame-Relay and PPP.
• Experience in managing security policies wif CSM, integrated wif ASA 5500 devices.
• Strong Knowledge in WAN technologies including T1,T3, ISDN, HDLC, Point to Point, ATM and Frame Relay.
• Experience in Cisco: Physical cabling, IP addressing, Wide Area Network configurations (Frame-relay & MPLS), Routing protocol configurations (RIP, EIGRP, OSPF, BGP).
• Experience in working wif IPSEC Site to Site, Remote VPN using different encryption methods.
• Experience in Configuring dns and dhcp servers.
• Configured and managed Nexus 2k fabric extender, 5K and 7K switch network at teh client’s location.
• Experienced working on network monitoring and analysis tools like SOLAR WINDS, CISCO works and RIVER BED and Wireshark.
• Expertise in implementing, maintaining and troubleshooting L2 switching tasks such as VLANs, VTP, VLAN Trunking using ISL and 802.1Q, STP, RSTP, PVST+, Ether channel using LACP and PAgP, Inter-Vlan routing.
• Exposure to LAN/WAN setup, installation, configuration and troubleshooting.
• Allocated subnets to vlans as per teh business requirement. Configured vlans and vtp protocols.
• Installation, Configuration and Maintenance of Samba, Apache Tomcat, Web Sphere and Linux environment.
• Experience of routing protocols like EIGRP, OSPF, RIP, and BGP, MPLS.
• Experienced in Troubleshooting for connectivity and hardware problems on Cisco Networks.
• Extensive noledge in implementing and configuring F5 Big-IP LTM-3900, and 6900 Load balancers.
• Designing and implementing F5 BIG-IP load balancer.
• Worked on network topologies and configurations, TCP/IP, UDP, Frame Relay, Token ring, ATM, bridges, routers, hubs and Switches.
• Performed security operations on ASA firewalls.
• Configuration and management of Cisco IDS, Checkpoint firewall,Snort.
• Performed deep packet analysis to troubleshoot application issues using tools like Wire-shark.
• Experience in installing, configuring and troubleshooting of Checkpoint Firewall and Juniper SSG series.
• Experience in L2/L3 3 protocols like VLANS, STP, VTP, MPLS and Trunking protocols.
• Well Experienced in configuring protocols HSRP, GLBP, VRRP, ICMP, IGMP, PPP, PAP, CHAP, and SNMP. Configured RIP, EIGRP, OSPF.
• Experience in installing and configuring DNS, DHCP server.
• Good noledge in WAN Technologies like ACL, NAT and PAT, IPSec and VPNs.
• Worked in OSI model, TCP/IP, UDP, IP addressing and Sub netting.
• Experienced wif Jes2 andMVScommands
• Hands-on experience in teh setup of HSRP, ACL, and tunnel installations.
• Enhanced level of noledge wif IGRP, PPP, ATM, and T1/T3 Frame-Relay.
• Extensive noledge in different networking protocols DHCP, DNS, FTP, VOIP (SIP, H.323, MGCP), Quality of Service (QOS).
• Demonstrated success record in: Managing multiple tasks wif proven ability to meet deadlines and proactively identifying teh problem to solve complex technical issues.
• Highly enthusiastic, creative team player, project implementation, analytical, interpersonal and communication skills.
• Novellnetworkwif 5 NetWare 3\4 Servers, 250 PC & 1 Windows NT4 server.
• Experience in Physical cabling, IP addressing, configuring and supporting TCP/IP.
• Worked on Extensively on Cisco Firewall & ASA 5500(5510/5540) Series. Efficient at use of Microsoft VISIO/Office as technical documentation and presentation tools.

TECHNICAL SKILLS

Network Configuration: Advanced switch/router configuration (Cisco IOS access list, Route redistribution/propagation).

Cisco Routers: Cisco GSR 12416, 12418, Cisco 7200vxr, Cisco 3640, Cisco 3600

Redundancy and management: HSRP, RPR, NSF/NSR

Physical interfaces: Fast Ethernet, Gigabit Ethernet, Serial, HSSI, Sonet (POS)

Layer 2 technology: VLAN, VTP, VMPS, ISL, dot1q, DTP, Spanning-tree, PVST

Layer 3 Switching: CEF, MLS, Ether Channel

QOS: CBWFQ, LLQ, WRED, Policing/Shaping.

Switches: Catalyst 6500, MSFC, MSFC2, 7600, 3700, 3500

Routing Protocols: IGRP, EIGRP, OSPF, BGPv4, MP-BGP,RIP

Network Security: Cisco ASA 5540, ACL, IPSEC,F5 Load Balancer, Checkpoint

Juniper Platforms: SRX, MX, EX Series Routers and Switches

Load Balancer: F5 Networks (Big-IP) LTM 8900 and 6400. Version 10,11,12.

WAN Protocols: HDLC, PPP, MLPPP

Circuit switched WAN: T1/E1 - T3/E3/OCX (Channelized, Fractional & full).

Packet Switched WAN: ATM, FRAME RELAY, MPLS VPNs

Security Technologies: Cisco FWSM/PIX/ASDM, Juniper SRX, Cisco ASA, Checkpoint.

Operating Systems: Microsoft XP/Vista/7, UNIX, Linux (Redhat, Opens use, Fedora), Windows Servers 2003/2008, Windows MS-Office.

PROFESSIONAL EXPERIENCE

Confidential, Charlotte, NC

Sr. Network Engineer

Responsibilities:

• Configured Routing protocols such as RIP, OSPF, EIGRP, static routing and policy based routing.
• Team member of Configuration ofCisco7206 router wif VPN and Configuration of Catalyst switches.
• Configuration 7500, 7200 wif OSPF and catalyst 6505, 4500, 3550 switches wif various VLAN.
• Create and testCisco router and switching operations using OSPF routing protocol, ASA 5500 Firewalls, and MPLS switching for stable VPNs.
• Troubleshooting teh Network Routing protocols (BGP, EIGRP and RIP) during teh Migrations and new client connections.
• Configuration and troubleshooting link state protocols like OSPF in single area and multiple areas.
• Redesign of Internet connectivity infrastructure for meeting bandwidth requirements.
• Configured and managed VLANs, 802.1Q Trunk, RPVST+, Inter-VLAN routing, HSRP and LAN security for Layer-2 and Layer-3 switching domains as per teh organization's requirement plan.
• Optimized performance of teh WANnetworkconsisting of Cisco 3550/4500/6500 switches by configuring VLANs.
• Setup NFS and Samba File sharing on Linux and Windows servers.
• Configured VLANs wif 802.1q tagging. Configured Trunk groups, ether channels, and Spanning tree for creating Access/distribution and core layer switching architecture.
• Configured BPDU Guard, port-fast, uplink fast and other spanning tree features.
• Configuration and troubleshooting of Cisco 2500, 2600, 3000, 6500, 7500, 7200 Series routers.
• Strong working noledge of Nexus 5K/7K /2K.
• Experience working wif Nexus 7010, 5020, 2148, 2248 switches.
• Implementation and configuration of F5 Big-IP LTM-6400 load balancers
• Installation and administration of Checkpoint R 75.40 Firewall.
• Implemented firewall policy change on teh Checkpoint clusters
• Verified and Validated teh Firewall policy on Checkpoint R75 clusters for unused rule and halped consolidating rule
• Deploying Layer 2 security in Server Farms by configuring switch for 802.1x port based autantication.
• Implemented, configured BGP WAN routing, converting OSPF routes to BGP (OSPF in local routing).
• Technical assistance for LAN/WAN management and complex customer issues.
• Provided support for troubleshooting and resolving Customer and user reported issues.
• Worked wif Network Engineer’s in teh installation and configuration of firewalls.
• Performed route redistribution & manipulated route updates using distribute lists, route-maps & administrative distance, offset-lists.
• Involved setting up teh TFTP server for backing up teh IOS images and configuration files of Cisco Routers and Switches and troubleshooting teh file servers.
• Upgrades, installs, configuration and administration security and monitoring tools on Linux.
• Excellent in patches and packages installation on Linux/Unix Environment.
• Responsible for network evaluations, troubleshooting a variety of network problems, and implementing various software and hardware upgrades efficient performance.
• Designed and implemented DMZ for Web servers, Mail servers & FTP Servers using Cisco ASA5500 Firewalls.
• Generating RCA (Root Cause Analysis) for critical issues of layer1/layer2/layer3 problems.
• Provided redundancy to teh network, implemented hot standby routing protocol (HSRP) and Load sharing for effective utilization of routers.
• Configuring, implementing and troubleshooting VLAN’s, VTP, STP, Trunking, Ether channels.
• Involved in monitoringnetworktraffic and its diagnosis using performance tools likeSnort.
• Expertise in maintenance of layer2 switching tasks which advocate VLAN, VTP, STP, RSTP, PVST, RPVST, configuring of ether channel wif LACP and PAGP along wif troubleshooting of inter-VLAN routing.
• Packet capturing, troubleshooting on network problems wif Wireshark, identifying and fixing problems
• Implementing, configuring, and troubleshooting various routing protocols like RIP, EIGRP, OSPF, and BGP etc.
• Performing network monitoring, providing analysis using various tools like Wireshark, Solarwinds etc.
• Cisco ASA/Checkpoint Firewall troubleshooting and policy change requests for new IP segments that either come on line or that may have been altered during various planned network changes on teh network.
• Responsible for Cisco ASA 5500 firewall administration, Rule Analysis, Rule Modification.
• Generating RCA (Root Cause Analysis) for critical issues of layer1/layer2/layer3 problems.

Environment: Nexus 2K/5K/7K,F5 Big-IP LTM-6400 load balancer, Checkpoint R75,Cisco ASA 5500 LAN,WAN,HSRP,RIP,OSPF,BGP,EIGRP,VLAN,MPLS,STP,RSTP.

Confidential, Phoenix, AZ

Sr. Network Design Engineer

Responsibilities:

• Working wif Network Design and implementation teams on various projects across North America and South America.
• Experience wif manipulating various BGP attributes such as Local Preference, MED, Extended Communities, Route-Reflector clusters, Route-maps and route policy implementation.
• Experience wif design and implementation of Data center migration
• Deploying and decommission of VLANs on core ASR 9K, Nexus 7K, 5K and its downstream devices.
• Performed OSPF, BGP, DHCP Profile, HSRP, IPV6, IPV4 Bundle Ethernet implementation on ASR 9K redundant pair.
• Configured CIDR IP RIP, PPP, BGP, MPLS and OSPF routing.
• Assisted in MPLS migrations, implemented a backup for teh existing WAN connection using site-to-site IP sec VPN tunnels.
• Configuring and installing 6500, 4500 in Campus networks.
• Experience wif WCS predictive maps and RF Engineering Planning.
• Switches Replace branch hardware wif new 2851 routers and 2960 switches.
• Conversions to BGP WAN routing. Which will be to convert WAN routing from OSPF to BGP (OSPF is used for local routing only) which involves new wan links.
• Convert Branch WAN links from TDM circuits to MPLS and to convert encryption from IPSec/GRE to GetVPN.
• Lead Engineer for Network refresh project for Multinational insurance company. Providing remote assistance for replacing exiting switches wif new Cisco switches.
• Configuring routing protocols OSPF, EIGRP,RIP, MPBGP, LDP and BGPV4
• Configuring HSRP between VLANs, Configuring Ether-Channels, Port Channel on 6500 catalyst
• Build Logical design and Implementation of Wireless Solution
• Worked on F5 LTM, GTM series like 6400, 6800, 8800 for teh corporate applications and their availability
• Involved in teh configuration & troubleshooting of routing protocols: MP-BGP, OSPF, LDP, EIGRP, RIP, BGP v4. Configured IP access filter policies.
• Deploying and decommissioning Cisco switches and their respective software upgrades.
• Performing teh ACL requests change for various clients by collecting source and destination information from them.
• Maintained complex LAN/WAN networks wif several VLANS and provided support for routing protocols and also providing secure sessions over internet using IPSec and SSL encryption.
• Worked extensively on Cisco ASA 5500(5510/5540) Series, experience wif convert PIX rules over to teh Cisco ASA solution.
• Supporting EIGRP and BGP based on teh network by resolving level 2 & 3 problems of internal teams & external customers of all locations
• Performing troubleshooting on slow network connectivity issues, routing issues that involves OSPF, BGP and identifying teh root cause of teh issues.
• Worked on migration of existing PIX firewall to ASA firewall, PIX OS upgrade from 6.3 to 7.0.
• Design and Implement DMZ for FTP, Web and Mail Servers wif CISCO PIX 506, PIX515
• Building teh VPN tunnel and VPN encryption.
• Involved in Configuration of Access lists (ACL) on ASA firewall for teh proper network routing for teh B2Bnetwork connectivity.
• To secure configurations of load balancing in F5, SSL/VPN connections, Troubleshooting CISCO ASA firewalls, and related network security measures.
• Provided proactive threat defense wif ASA that stops attacks before they spread through teh network.
• Designed and implemented DMZ for Web servers, Mail servers & FTP Servers using Cisco ASA5500 Firewalls.
• Troubleshoot teh Network Issues onsite and remotely depending on teh severity of teh issues.
• Performed Break Fix support through driving to different buildings, identifying teh root cause of teh hardware issues wif switches, routers.
• Design, implementation and operational support of routing/switching protocols in complex environments including BGP, OSPF, EIGRP, Spanning Tree, 802.1q, etc.
• Worked wif creating VIP (virtual servers), pools, nodes and applying iRules for teh virtual servers like cookie persistency, redirection of teh URL.
• Created Visio Dean / Visio Documentation to give complete picture of network design for each building.
• Experience in Configuring, upgrading and verifying teh NX-OS operation system.

Environment: Cisco 2948/3560/4500/3560/3750/3550/3500/ switches and Cisco 3640/12000 7200/3845/3600/2800/ ASR 9001/ASR 1006 routers,Cisco Nexus 7K/5K, Cisco ASA 500, Checkpoint, windows server 2003/2008: F5 BIGIP LTM, RIP,OSPF,BGP,EIGRP,LAN,WAN,VPN,HSRP

Confidential, Atlanta, GA

Network Security Engineer

Responsibilities:

• Migrated Firewall infrastructure from Check Point R65 to Netscreen ISG2000.
• Configured Policies In Juniper Netscreen 500/SRX 650 to allow customer traffic
• Configured and implemented MPLS, MP-BGP and Multicasting networks.
• Configured Routing protocols EIGRP, static routes and LAN Protocols VLANs, VTP, STP, VRRP, HSRP.
• Configuring and troubleshooting Juniper Netscreen Firewalls using NSM.
• Lab Implementation of multiple security contexts in ASA firewalls and Checkpoints configures redundancy (Active-Active failover and active-standby failover) among them.
• Configuring IPSEC VPN on SRX series firewalls.Configuring Virtual Chassis for Juniper switches EX-4200, Firewalls SRX-210.
• Configured STP for switching loop prevention, and VLANs for data and voice along wif configuring port security for users connecting to teh switches.
• Experience wif configuring Nexus 2000 Fabric Extender (FEX) which acts as a remote line card(module) for teh Nexus 5000
• Implementing and troubleshooting (on-call) IPsec VPNs for various business lines and making sure everything is in place.
• Managed PIX/ASA andFWSM3.X using both Cisco Adaptive Security Device Manager (ASDM), Cisco Security Manager (CSM) and CLI.
• Network Operations and support by providing Tier-2 and Tier-3 support to WAN and LAN related issues including HSRP, VLANs, VTP, STP, RSTP, TRUNKING, SPAN and RSPAN, EIGRP, RIP, OSPF, BGP.
• Configure and support NATs, access-lists, and routing on Cisco routers (1700, 2600, 2800, 7200 series), Cisco Nexus (7000, 5000, 2000 series) Switches, Cisco Catalyst (2960, 3560, 3750 and 6500 series) Switches, Cisco ASA/PIX firewalls.
• Setup, configuration, troubleshooting and testing of IPSEC site-to-site VPNs and SSL VPN on Cisco ASAs, and Checkpoint
• Stacked, configured 2960 series switches and connected wif Nexus 7000 series switches creating Vpc, spanning tree, Trunk and redundancy for failover.
• Design, configured and implemented centralized Syslog server on both production and corporate network and enable SNMP traps for monitoring traffic and check teh health of servers and network devices.
• Supported core network consisting of Cisco 7200 series routers running multi area OSPF. Implemented stub/Totally stub areas as per requirements.
• Configured Access lists on teh boundaries of teh network either inbound or outbound and providing network support consisting of VPN and point-to point site.
• Responsible for service request tickets generated by teh halpdesk in all phases such as troubleshooting, maintenance, upgrades, patches, fixes and all around technical support.
• Performed Structured Cabling, Dressing and Labeling.
• Develop, plan and maintain documentation necessary for operation in support of LAN to WAN connectivity.

Confidential

Network Deployment Engineer

Responsibilities:

• Configured Routing protocols such as RIP, OSPF, EIGRP, static routing and policy based routing.
• Team member of Configuration ofCisco7206 router wif VPN and Configuration of Catalyst switches.
• Configuration 7500, 7200 wif OSPF and catalyst 6505, 4500, 3550 switches wif various VLAN.
• Create and testCisco router and switching operations using OSPF routing protocol, ASA 5500 Firewalls, and MPLS switching for stable VPNs.
• Troubleshooting teh Network Routing protocols (BGP, EIGRP and RIP) during teh Migrations and new client connections.
• Configuration and troubleshooting link state protocols like OSPF in single area and multiple areas.
• Redesign of Internet connectivity infrastructure for meeting bandwidth requirements.
• Configured and managed VLANs, 802.1Q Trunk, RPVST+, Inter-VLAN routing, HSRP and LAN security for Layer-2 and Layer-3 switching domains as per teh organization's requirement plan.
• Optimized performance of teh WANnetworkconsisting of Cisco 3550/4500/6500 switches by configuring VLANs.
• Setup NFS and Samba File sharing on Linux and Windows servers.
• Configured VLANs wif 802.1q tagging. Configured Trunk groups, ether channels, and Spanning tree for creating Access/distribution and core layer switching architecture.
• Configured BPDU Guard, port-fast, uplink fast and other spanning tree features.
• Configuration and troubleshooting of Cisco 2500, 2600, 3000, 6500, 7500, 7200 Series routers.
• Strong working noledge of Nexus 5K/7K /2K.
• Experience working wif Nexus 7010, 5020, 2148, 2248 switches.
• Implementation and configuration of F5 Big-IP LTM-6400 load balancers
• Installation and administration of Checkpoint R 75.40 Firewall.
• Implemented firewall policy change on teh Checkpoint clusters
• Verified and Validated teh Firewall policy on Checkpoint R75 clusters for unused rule and halped consolidating rule
• Deploying Layer 2 security in Server Farms by configuring switch for 802.1x port based autantication.
• Implemented, configured BGP WAN routing, converting OSPF routes to BGP (OSPF in local routing).
• Technical assistance for LAN/WAN management and complex customer issues.
• Provided support for troubleshooting and resolving Customer and user reported issues.
• Worked wif Network Engineer’s in teh installation and configuration of firewalls.
• Performed route redistribution & manipulated route updates using distribute lists, route-maps & administrative distance, offset-lists.
• Involved setting up teh TFTP server for backing up teh IOS images and configuration files of Cisco Routers and Switches and troubleshooting teh file servers.
• Upgrades, installs, configuration and administration security and monitoring tools on Linux.
• Excellent in patches and packages installation on Linux/Unix Environment.
• Responsible for network evaluations, troubleshooting a variety of network problems, and implementing various software and hardware upgrades efficient performance.
• Designed and implemented DMZ for Web servers, Mail servers & FTP Servers using Cisco ASA5500 Firewalls.
• Generating RCA (Root Cause Analysis) for critical issues of layer1/layer2/layer3 problems.
• Provided redundancy to teh network, implemented hot standby routing protocol (HSRP) and Load sharing for effective utilization of routers.
• Configuring, implementing and troubleshooting VLAN’s, VTP, STP, Trunking, Ether channels.
• Expertise in maintenance of layer2 switching tasks which advocate VLAN, VTP, STP, RSTP, PVST, RPVST, configuring of ether channel wif LACP and PAGP along wif troubleshooting of inter-VLAN routing.
• Packet capturing, troubleshooting on network problems wif Wireshark, identifying and fixing problems
• Implementing, configuring, and troubleshooting various routing protocols like RIP, EIGRP, OSPF, and BGP etc.
• Performing network monitoring, providing analysis using various tools like Wireshark, Solarwinds etc.
• Cisco ASA/Checkpoint Firewall troubleshooting and policy change requests for new IP segments that either come on line or that may have been altered during various planned network changes on teh network.
• Responsible for Cisco ASA 5500 firewall administration, Rule Analysis, Rule Modification.
• Generating RCA (Root Cause Analysis) for critical issues of layer1/layer2/layer3 problems.

Environment: Nexus 2K/5K/7K,F5 Big-IP LTM-6400 load balancer, Checkpoint R75,Cisco ASA 5500 LAN,WAN,HSRP,RIP,OSPF,BGP,EIGRP,VLAN,MPLS,STP,RSTP.

Confidential

Network Operations Engineer/Network Incident Analyst

Responsibilities:

• Migration of RIP V2 to OSPF, BGP routing protocols.
• Configured EIGRP for Lab Environment.
• Working wif Client teams to find out requirements for their Network Requirements.
• Designing solutions for frozen requirements using Cisco Routers and Switches.
• Deploying teh network infrastructure to meet teh requirements
• Created VLAN and Inter-Vlan routing wif Multilayer Switching.
• Providing technical consultancy for better application response using QoS
• Monitor performance of network and servers to identify potential problems and bottleneck.
• Performed RIP, OSPF, BGP EIGRP routing protocol administration.
• Installed wireless access points (WAP) at various locations in teh company.
• Maintained redundancy on Cisco 2600, 2800 and 3600 router wif HSRP.
• Real time monitoring and network management using Cisco Works LMS.
• Provided technical support on hardware and software related issues to remote production sites
• Configuration of Access List ACL (Std., Ext, Named) to allow users all over teh company to access different applications and blocking others.
• Configuring of IP Allocation and sub netting for all applications and servers and other needs throughout company using FLSM, VLSM addressing.
• Working on trouble tickets and monitoring consoles to gather information about network issues and work towards their resolution.
• Proactive Network Remediation and break fix.
• Break-fix activities including device or component replacements, traffic offloading and load balancing, working wif multiple vendors to analyze unexpected behavior of network devices, and to resolve complex cases.
• Troubleshooting multiple types of high capacity WAN links involving MPLS LSPs, MPLS VPNs and IPsec VPNs.
• Working on network investigation tickets involving network issues that are not captured by monitoring consoles that require detailed investigation and troubleshooting.
• Analyzing packet capture to drill down and to find teh root cause of latency related and other strange application behavior.
• Created TSG’s and SOP for Other operational teams.
• Perform routine network maintenance checks as well as configure and manage printers, copiers, and other miscellaneous network equipment.

Environment: Cisco 2600/2800/3600 routers, Juniper MX960 series, F5 BIG-IP LTM, GTM