SUMMARY

• Professional with 8 years of experience in routing, switching, firewall technologies, system design, implementation and troubleshooting of complex network systems.
• Experience in site - to-site and remote access VPN solutions.
• Experience working with Nexus 7010, 5020, 2148, 2248 devices.
• Experience with F5 load balancers - LTM, GTM series like 6400, 6800, 8800 for the corporate applications and their availability.
• Worked extensively on Cisco Firewalls, Cisco PIX (506E/515E/525) and ASA 10/5540) series.
• Experience working with OTV & FCOE on the nexus between the datacenters.
• Experience working with Cisco Nexus 2148 Fabric Extender and Nexus 5000 series to provide a Flexible Access Solution for Datacenter access architecture.
• Understanding of JUNOS platform and worked with IOS upgrade of Juniper devices.
• Good knowledge in configuration of Voice VLAN’s (VOIP), prioritizing the voice traffic over the data traffic.
• In depth understanding of IPV4 and IPV6 and implementation of Subnetting.
• Configured security policies including NAT, PAT, and VPN, Route-maps, Prefix lists and Access Control Lists.
• Extensive experience in WAN Technologies, Switching Technologies along with Failover Mechanisms and Inter VlAN Routing types.
• Switching tasks include VTP, ISL/802.1q, IPSec and GRE Tunneling, VLANs, Ether Channel, Trunking, Port Security, STP and RSTP.
• Experience in adding rules and monitoring checkpoint Firewall Traffic through Smart view tracker Application.
• Experience in configuring and working on Juniper (SSG&, ISG), SRX, Checkpoint, Palo Alto Firewalls (NAT policies, VPN Configuration) in Standalone and High Availability mode.
• Successfully completed various projects in upgrading Checkpoint firewalls from R65 to 75.40, R75.47, R77 and implemented IPS policies.
• Configuring NAT policies on ASA andPaloAlto.
• Troubleshoot and Worked with Security issues related to Cisco ASA/PIX, Checkpoint, IDS/IPS, Palo Alto and Juniper Netscreen firewalls.
• Worked with Bluecoat proxy Servers, IDS/IPS and Authentication controls(RADIUS,TACAACS+)
• Good knowledge with the technologies VPN, WLAN and Multicast.
• Involved in designing and deploying various network security and High availability products like Cisco ASA and other security products.
• Strong hands on experience in installing, configuring and troubleshooting of Cisco 7600, 7200, 3900, 3600, 2900, 2600, 2500 and 1800 series routers, Cisco Catalyst 6500, 4500, 3750, 2950 and 3500XL series switches.
• Extensive experience in configuring and troubleshooting of protocols RIP v1/v2, EIGRP, OSPF, BGP and MPLS.
• Worked on network topologies and configurations, TCP/IP, UDP, Frame Relay, Token Ring, ATM, bridges, routers, hubs and switches.
• Well experienced in configuring HSRP, GLBP, ICMP, PPP, PAP, CHAP and SNMP.
• Experience in installing and configuring DNS, DHCP server.
• Excellent communication skills, enthusiastic, motivated and a team player.
• A highly organized individual who adopts a systematic approach to problem solving, effectively analyzes results and implements solutions.
• Highly motivated with the ability to work independently or as an integral part of a team and committed to highest levels of professional.
• Experience working on network monitoring tools like, SOLAR WINDS, CISCO works, Wireshark and splunk.
• Experience with Change management process and Project documentation tools like Excel and VISIO.

TECHNICAL SKILLS

Security/Firewalls: Cisco ASA, Checkpoint, Palo Alto, Juniper SSG and SRX, IPSEC and SSL VPNs, IPS/IDS, DMZ Setup, CBAC, Cisco NAC, ACL, NAT, PAT, RSA Secure IDIOS Firewall features, IOS Setup and Security features.

Features and Services: IOS and Features, NAT, SNMP, NTP, DHCP, CDP, DNS, TFTP and FTP Management.

Protocols: OSPF, BGP, EIGRP, RIP-2, HSRP, VRRP, GLBP, LACP, PAGP, DNS, SMTP, SNMP, FTP, TFTP, LPD/TDP, WLAN, 802.11/802.11 e. Route Filtering, Redistribution, Summarization, Static Routing.

Switching: VLANs, VTP, STP, RSTP Inter VLAN routing and Multi-Layer Switching, Layer3 Switches, and Ether channels, Dot1Q, HSRP, GLBP, CEF, DCEF and Port Security.

Network Security: Check Point Nokia Firewalls IP350, IP550 & IP750, Juniper Netscreen, Firewalls ISG 1000/2000, Cisco PIX 505/515E/525 & ASA 5500 Series.

Network Products: CISCO Routers 1700, 1800, 2500, 2600, 2800. CISCO High End Router 3600, 3800, 7200, 12010. CISCO Switches 1900, 2950, 2960. CISCO Campus Switches 3550XL, 4984 Core Catalyst 4503, 4507 RE, Catalyst 6500/6503/6507.

LAN: Ethernet, Fast Ethernet, Gigabit Ethernet, Ten Gigabit Ethernet, LAN emulation.

WAN: Leased lines (PPP/HDLC), channelized links (E1/T1/E3/T3/DS1/DS3), Fiber Optic circuits (OS3), Frame relay, ISDN.

AAA Architecture: TACACS+, RADIUS, Cisco ACS.

Monitoring: Wire shark, Solar Winds, TCP Dump.

Programming Language: Java, MATLAB, C/C++

PROFESSIONAL EXPERIENCE:

Confidential, Chicago, IL

Sr Data Center Engineer

Responsibilities:

• Design, deployment and maintenance of enterprise networks and datacenters.
• Worked extensively in configuring, Monitoring and Troubleshooting Cisco's ASA 5500/PIX security appliance, Failover DMZ zoning & configuring VLANs/routing/NATing with the firewalls as per the design.
• Configured, maintained, and troubleshot routers and switches ranging from the 1720 series through the 7200 series routers and the 2900 series through the 6500 series switches in a highly redundant dual-homed environment.
• Monitoring the NMS system for different Network Alerts.
• Worked on multiple projects related to Branch networks, Campus networks, extranet clients and Data Center Environments involving in data center migrations from one data center to another.
• Configuration of Cisco 6500 (sup 720), 4500 (SUP 6) & 3750 Catalyst Switches for network access. Worked extensively on Cisco Firewalls, Cisco PIX (506E/515E/525/) & ASA 5500(5510/5540) Series, experience with convert PIX rules over to the Cisco ASA solution.
• Configuring RIP, OSPF and Static routing.
• Configuration of F5 LTM 8950, 6900, VIPRION 2400 models.
• Provide Tier III Level Load Balancer expertise onF5 BigIPLocal Traffic Managers (LTM). Designing F5 solutions/support for migration work of applications and websites from Cisco CSS Load Balancers to the F5 BigIPLoad Balancers.
• Provided load balancing towards access layer towards core layer using F5 load balancers and used SPOC for troubleshooting.
• Hands on experience with F5 GTM/LTM installation/support and used HA proxy for Layer4 load balancing.
• Configuring VLAN, Spanning tree, VSTP, SNMP on EX series switches.
• Once trouble ticket has been created keep customer informed of status of ticket and estimated time to repair.
• Coordinating with service providers for WAN link outages.
• Checking and configuring Cisco 7600 and 7200 routers at data center for remote sites’ issues.
• Configuring RIP, OSPF and Static routing on JuniperM and MX series Routers
• Working on Cisco 6509 and 4507 series switches for LAN requirements that include managing VLANs, Port Security and troubleshooting LAN issues.
• Experience working with OTV & FCOE on the nexus between the datacenters.
• Experience working with Cisco Nexus2148 Fabric Extender and Nexus5000 series to provide a Flexible Access Solution for Datacenter access architecture.
• Supporting EIGRP and BGP based network by resolving level 2 &3 problems of internal teams & external customers of all locations.
• Upgrading WAN link using PPP Multilink and by implementing Cisco WAAS.
• Performed switching technology administration including VLANs, inter-VLAN routing, Trunking, STP, RSTP, port aggregation & link negotiation.
• Experience with converting campus WAN links from point to point to MPLS and to convert encryption from IPsec/GRE to another data center
• Configuration of Access List ACL (Std, Ext, Named) to allow users all over the company to access different applications and blocking others.
• Worked on Bluecoat proxy server, Tipping Point Intrusion Protection System management, and reporting tool Algosec
• Responsible for Cisco ASA firewall administration across our global networks.
• Providing daily network support for national wide area network consisting of MPLS, VPN and point-to point site.
• Worked extensively in configuring, Monitoring and Troubleshooting Cisco's ASA 5500/PIX security appliance, Failover DMZ zoning & configuring VLANs/routing/NATing with the firewalls as per the design.
• Experience configuring Virtual Device Context in Nexus 7010.
• Designed QoS policies for critical applications based on business requirements and traffic patterns.
• Responsibilities also include technical documentation of all upgrades done. Attending meetings and technical discussions related to current project.
• Created VDC’s and vPC’S and ensure that those vPC’s are formed between those VPC’s.
• Upgrading WAN link using PPP Multilink and by implementing Cisco WAAS.
• Configuring HSRP between the 3845 router pairs for Gateway redundancy for the client desktops.
• ConfigureVRRP & GLBP andVLANTrunking802.1Q, STP, Port Security on Catalyst 6500 switches.
• Negotiate VPN tunnels using IPSec encryption standards and also configured and implemented site-to-site VPN, Remote VPN.
• Network Cabling, dressing, labeling and troubleshooting various network drops onsite.

Environment: Cisco Routers series 1720, 2900, 3750, 3845, 4500, 4507, 6500, 6509, 7200, 7600, F5BigIP Load Balancer Traffic Managers (LTM), EX series switches, Cisco Nexus 2148 Fabric Extender Nexus 5000 series, VLAN, PPP Multilink, Cisco WAAS, Catalyst 6500 Switches, VRRP & GLBP, STPRSTP, ACL. Cisco ASA Firewall, 5500/PIX, JuniperM and MX.

Confidential, Reston, VA

Sr. Firewall Engineer

Responsibilities:

• Designated, validated and implemented LAN, WLAN&WAN solution to suite client's needs.
• Negotiate VPN tunnels using IPSec encryption standards and also configured and implemented site-to-site VPN, Remote VPN.
• Configuring STP for switching loop prevention and VLANs for data and voice along with configuring port security for users connecting to the switches.
• Working on Network design and support, implementation related internal projects for establishing connectivity between the various field offices and data centers.
• Good experience with using ASA 1600V firewall with Cisco virtual switches and provide security to the data centre and with Cisco CSM.
• Ensure Network, system and data availability and integrity through preventive maintenance and upgrade.
• Experience working with design and deployment of MPLS Layer 3 VPN cloud, involving VRF, Route Distinguisher(RD), Route Target(RT), Label Distribution Protocol (LDP) & MP-BGP
• Configured Client-to-Site VPN using SSL Client on Cisco ASA 5520 ver8.2
• Configuring virtual servers, configure nodes and configuring the load balancing pools and also worked with configuring load balancing algorithms.
• Worked on configuration and upgradation of Checkpoint Firewalls on regular basis.
• Successfully completed various projects in upgrading Checkpoint firewalls from R65 to 75.40, R75.47, R77 and implemented IPS policies.
• Configured Checkpoint Firewall as Standard and Distribution deployment to have the network secure and also maintaining Site to Site VPN Connection through the Firewalls. Handling 8 to 10 gateways using a Smart Center Server as a management Station
• Responsible for service request tickets generated by the helpdesk in all phases such as troubleshooting, maintenance, upgrades, patches and fixes with all around technical support
• Experience with converting WAN routing from EIGRP/OSPF to BGP (OSPF is used for local routing only) which also involved converting from Point to point circuits to MPLS circuits.
• Designed and implemented Cisco VoIP infrastructure for a large enterprise and multi-unit office environment. Met aggressive schedule to ensure a Multi-office reconfiguration project which was successfully delivered
• Worked on Data, VoIP, security as well as wireless installations and technologies
• Installing and configuring F5 load balancers and firewall using F5 load balancers with LAN/WAN/WLAN configuration.
• Troubleshoot and Worked with Security issues related to Cisco ASA/PIX, Checkpoint, IDS/IPS, and Palo Alto firewalls.
• Involved in L2/L3 Switching Technology Administration including creating and managing VLANs, Port security, Trunking, STP, Inter-Vlan routing, LAN security.
• Worked on the security levels with RADIUS, TACACS+ and could establish secure identity management using Net IQ identity manager.
• Worked on commissioning and decommissioning of MPLS circuits for various field offices.
• Completed service requests (i.e. - IP readdressing, bandwidth upgrades, IOS/platform upgrades, etc)
• Supporting EIGRP and BGP based PwC network by resolving level 2 &3 problems of internal teams & external customers of all locations.
• Providing daily network support for national wide area network consisting of MPLS, VPN and point-to point site.
• Configuring HSRP between the 3845 router pairs for Gateway redundancy for the client desktops.
• ConfigureVRRP & GLBP andVLANTrunking802.1Q & ISL, STP, Port Security on Catalyst 6500 and 6800 switches.
• Implemented an IP telephone network with 100+ IP phones and 4 Alcatel 7000 L3 switch. Configured data network to support voice including VoIP VLAN, interVLAN routing and QoS tagging. Included 4 PCX system, voice mail server, my teamwork server and a management server. This project included 7 wireless AP and LAN bridging through a wireless link.
• Create vPC domain, design double-sided vPC, design vPC peer-keep alive, vPC peer- link, and vPC member port, and configure single and dual home FEX.
• Updated the HP open view map to reflect and changes made to any existing node/object
• Use of Microsoft Excel Spread Sheets for analyzing the Netflow and its type especially to monitor according to the requirements.
• Handled SRST and implemented and configured the Gateways, Voice Gateways.
• Manage Cisco Routers and troubleshoot layer1, layer2 and layer3 technologies for customer escalations
• Worked on a broad range of topics such as routing and switching, dedicated voice access, planning and implementation, large-scale high-visibility outages, change management coordination, proactive monitoring and maintenance, disaster recovery exercises, and core network repairs.
• Network Cabling, dressing, labeling and troubleshooting various network drops onsite.

Environment: STP, VLAN, MPLS, SRST, EIGRP,OSPF,BGP,MPLS,VPN,HSRP,RADIUS, TACACS+, Port Security, Firewall(Checkpoint,PIX),Trunking, Cisco 6500 Switches, EIGRP, OSPF, F5 BigIPv9 .

Confidential, Atlanta, GA

Data Center Engineer

Responsibilities:

• Worked on Network Operations using Ticketing system using SIFY TAC.
• Monitoring the NMS system for different Network Alerts.
• Deployment of datacenter LAN using Cisco Nexus 7k, 5k, 2k switches.
• Set up of distributed core LAN using Cisco 6500 series switches.
• Experience working with OTV & FCOE on the nexus between the datacenters.
• Experience working with Cisco Nexus2148 Fabric Extender and Nexus5000 series to provide a Flexible Access Solution for Datacenter access architecture.
• Coordinating with service providers for WAN link outages.
• Troubleshooting VPC and VPC peer-link on N7K’s and N5K’s.
• Troubleshooting FEX while upgrading code on N5K’s.
• Performed switching technology administration including VLANs, inter-VLAN routing, Trunking, STP, RSTP, port aggregation & link negotiation.
• Responsibilities also include technical documentation of all upgrades done.
• Attending meetings and technical discussions related to NOC changes.
• Network Cabling, dressing, labeling and troubleshooting various network drops onsite.
• Troubleshoot of Leased Lines like STM4, DS3, E1 Links, Metro, NLD ILD Services and RF links.
• Design, execution of installation and configuration of VPN/IVPN, LAN/WAN as per organizational requirements.
• Experienced in Planning and Organizing Change Managements.
• Maintenance/updating of Network diagrams.
• Maintenance & Monitoring Base station infrastructure.
• Commissioning of New Links By coordinating with BSO.
• Configuration and maintenance of routing protocols like OSPF and BGP.
• Ensure standard Router and Switch Configurations are maintained.
• Responsible for Capacity planning, Contingency planning & disaster recovery.
• LAN Segments monitoring/Trouble shooting LAN related issues.
• Carryout periodic backup of Router/Switch configurations.
• Planning and Implementing New Infrastructure in the Datacenter.
• Analyzing the Bandwidth Utilization of the Links.
• Timely Escalations within SIFY and to Service providers.
• Troubleshooting on the devices by remote login to determine the RFO (Reason for outage) and RCA (Root cause analysis) to minimize the consequences of malfunctions.
• Equipment Installation /Removal in the NOC.

Environment: Cisco Nexus 7k, 5k, 2k series switches, vPC, FEX, Microsoft Visio, OSPF, BGP,BIG-IP, MPLS, HSRP, Data Center Management, Putty, Cisco 6500 chassis Switches, QIP, LAN& WAN Administration, Cisco WAC, AP’S, HP Open View, splunk.

Confidential, Hoffman Estates, IL

Network Engineer

Responsibilities:

• Dynamic routing protocol configuration (RIP, RIP V2).
• Troubleshooting network problems.
• Managed network connectivity and network security, between Head offices and Branch office
• Responsible for Internal and external accounts and, managing LAN/WAN and checking for Security Settings of the networking devices (Cisco Router, switches) co-coordinating with the system/Network administrator during any major changes and implementation
• Installation & configuration of Cisco VPN concentrator 3060 for VPN tunnel with Cisco VPN hardware & software client and PIX firewall
• Configured BGP for CE to PE route advertisement inside the lab environment
• Spearheaded meetings & discussions with team members regarding network optimization and
• Regarding BGP issues
• Implemented the concept of Route Redistribution between different routing protocols
• Switching related tasks included implementing VLANS, VTP, STP and configuring on Fast Ethernet
• Channel between switches
• Administration of Cisco 11.x and 12.1 versions and higher
• Implementing and maintaining backup schedules as per the company policy

Confidential

Network Engineer

Responsibilities:

• Involved in implementation of Trunking using Dot1Q, and ISL on Cisco Catalyst Switches.
• Involved in Local Area Network (LAN) design, troubleshooting, and maintenance as per company’s requirements.
• Worked with snipping tools like Ethereal to analyze the network problems.
• Maintenance and troubleshooting of network connectivity problems using PING, Trace Route.
• Performed replacements of failed hardware and upgraded software.
• Configured VLANS to isolate different departments.
• Troubleshoot issues related to VLAN, VLAN Trunking, HSRP failovers, related issues.
• Configured IPSEC VPN on SRX series firewalls.
• Used TFTP server to backup Cisco configuration files.
• Network layer tasks included configuration of IP Addressing using FLSM, VLSM for all applications and servers throughout the company.
• Performed scheduled Virus Checks & Updates on all Servers & Desktops.
• Implementing Routing and Switching using the following protocols; IS-ISOSPG, BGP on Juniper M series routers.
• Design, installation and troubleshooting networks with hand-on experience with OSPF, ISIS, BGP, VPLS, Multicast, VPN, MPLS, & Traffic engineering.
• Configured STP for loop prevention on Cisco Catalyst Switches.
• Configured VTP to manage VLAN database throughout the network for Inter-VLAN Routing.
• Worked in setting up Inter-VLAN routing, redistribution, access-lists and dynamic routing.
• Involved in configuring and implementing of Composite Network models consists of Cisco 3750, 2620 and, 1900 series routers and Cisco 2950, 3500 Series switches.
• Implemented various Switch Port Security features as per the company’s policy
• Configured RIP, and EIGRP on 2901 and 3925 Cisco routers.
• Provided technical support for expansion of the existing network architecture to in corporate new users.

Confidential

Network Engineer

Responsibilities:

• Troubleshot Cisco hardware: Inspected devices, Read device LEDs, loose connections, interior IOS upgrade, switch port configuration, port monitoring, watch over Flooding Control/Network port.
• Worked on configuration and installation of new desktops for users using GHOST, EZ copy and Disk-to-Disk copy Installed and configured DHCP, DNS Server.
• Identifying technical problems and debugged hardware and software related to LANs/ WANs.
• Switching related tasks included implementing VLANS, VTP and configuring ISL trunk on Fast - Ethernet channel between switches.
• Develop and implement strategies to support the current and future needs of the company.
• Configured Cisco Routers 2600 series using RIP, OSPF, and EIGRP.
• Strategies include operating systems, virus protection, mail systems and Internet services.
• Updated the anti-virus, spam blockers, and other security software so that the systems are always secured
• Resolved all computer related problems, monitored and maintained system functionality and reliability by identifying ways to prevent system failures
• Settings of the networking devices (Cisco Router, switches) co-coordinating with the system/Network administrator during any major changes and implementation.
• Prompt support for Remote Access Users.
• Upgrades and backups of Cisco router configuration files to a TFTP server
• Involved in troubleshooting of DNS, DHCP and other IP conflict problems. Implementation of name resolution using WINS & DNS in TCP/IP environment.