SUMMARY

• Over 6+ years of experience as a Network Engineer and worked in designing, implementation, configuration of Cisco Routers, Switches and Firewalls, troubleshooting & fine - tuning of Firewalls, VPN configuration, troubleshooting network related problems in Enterprise& Data Center Networks, F5 Networks.
• Experience in configuring and troubleshooting of routing protocols RIP v1/v2, EIGRP, OSPF, IS-IS BGP and MPLS.
• Understanding the JUNOS platform and worked with IOS upgrade of Juniper devices.
• Worked on network topologies and configurations, TCP/IP, UDP, Frame Relay, bridges, routers, hubs and switches.
• Switching tasks include VTP, ISL/ 802.1Q, IPsec and GRE Tunneling, VLAN, Ether Channel, STP RSTP, PVST+.
• Strong hands on experience in installing, configuring, and troubleshooting of Cisco 7600, 7200, 3800, 3600, 2800, 2600, 2500, and 1800 series routers, Cisco Catalyst 6500, 4500, 3750, 2950, and 3500XL series switches.
• Hands on experience in configuring and supporting site-to-site and remote access Cisco, IPsec, VPN solutions using ASA/PIX firewalls, Cisco, VPN client in addition to providing TACACS+ and RADIUS services.
• Expertise in implementation of IP addressing schemes (includes VLSM) and IP services to meet medium level enterprise level network requirement
• Experience working with Nexus 7K, 5K, 2K devices.
• Experience with configuring Nexus 2000 Fabric Extender (FEX), which acts as a remote line card (module) for the Nexus 5000.
• Well experienced in configuring protocols HSRP, GLBP, VRRP, ICMP, IGMP, PPP, HDLC, PAP, CHAP, and SNMP.
• Implemented traffic filters using Standard and Extended access-lists, Distribute-Lists, and Route Maps.
• Experience in installing and configuring DNS, DHCP server.
• Moderate knowledge in configuring and troubleshooting Cisco Wireless Networks: LWAPP, WLC, WCS, Standalone Aps, Roaming, Wireless Security Basics, IEEE 802.11 a/b/g, RF spectrum characteristics.
• Worked on F5 APM, LTM & GTM series like 3600, 3900, 6400, 6800, 6900, 8400, 8800 for the corporate applications and their availability.
• Good knowledge and experience in installation, configuration, and Administration of Windows 2000/2003, HTTP, FTP, DNS, NTP, DHCP servers under various LAN and WAN environments.
• Proficiency in handling Network Monitoring tools and Packet capture tools.
• Adept in preparing technical documentation and presentations using Microsoft Visio/ Office.
• Provides technical leadership for problem escalation and resolution.
• Highly motivated with the ability to work independently or as an integral part of a team and committed to highest levels of professionalism.

TECHNICAL SKILLS

Routers: Cisco routers (1700, 1800, 2500, 2600, 2800, 2900, 3600, 3700, 3800, 4000, 7600), Juniper Routers like, M320 and MX80

Switches: Layer 2 (2900 series), Layer 3 (3560, 3750, 4500, 6500), Avaya switches, juniper switches like EX2200, EX2500

Network Management Tools: Tufin- Secure Track, Cisco Network Pulse, Net Voyant, HP Service Desk, Service Now, HP Network Automation, IP Plan, CMDB, LMDB, IP Angry Scan, NMTP, IDS & IPS, ACL, Net flow Analyzer, Smokeping, CS-MARS.

VPN: F5 VPN, Checkpoint (NGX (R60), NG AI (R55)), VPN1 pro, Secure Remote/Client, License management, Cisco works 2000

Load Balancer: F5 Networks (Big-IP) APM, LTM & GTM 3600, 3900, 6400, 6800, 6900, 8400, 8800.

Network/ Security Services: DNS, DHCP, WINS.

Protocols/ Services: Routing Protocols (RIP (v1 & v2), IGRP, EIGRP, OSPF, BGP), TCP/IP, PPP, HDLC, Frame Relay, ATM, MPLS

Operating Systems: Windows XP/2000/20003/NT/7, UNIX, OS X, LINUX

Reports: Microsoft (Visio pro.)

Firewall & Security: Checkpoint, Cisco ASA, Juniper SRX.

Scripting & Automation: Python and Pearl

PROFESSIONAL EXPERIENCE

Confidential, Atlanta-GA

Network Engineer

Responsibilities:

• Responsible for configuration, maintenance, and troubleshooting of dynamic routing protocols: BGP, OSPF & EIGRP (route redistribution, distribute lists, route-maps, offset-lists, prefix lists, route summarization, route-feedback, BGP attributes) on Cisco Routers 7613, 7201, and 3945E.
• Working knowledge of frame relay, MPLS services, OSPF, BGP and EIGRP routing protocols, NAT’ing, sub-netting, also including DNS, LDAP, DHCP, http, HTML, HTTPS, TCP/IP, UDP, SNMP, OSPF, RIP, IPSEC, PPTP, VLAN, STP (Spanning tree Protocol), RTSP & Multicasting protocols
• Experience with design and implementation of Virtual Switching System (VSS) for both User segment and server segment using 6509-V-E catalyst switches
• Experience with managing the completed end to end site solutions
• Experience with design and implementation of Data center migration
• Designing, Implementing and Troubleshooting Cisco 2900’s,3750, 3550, 3560, 2924, 6509-V-E, 6513, 6504, 6503, 6506, 6500 series switches, GSR, ASR routers with Cisco IOS and IOS-XR
• Installed, configured and managed Cisco routers such as 7200 series, 3800 series, 3700 series, 2800 series and Cisco Catalyst switch series 6500, 4500, 3500, and 2900.
• Upgraded the data center network environment with Cisco ASA 5550. Configured ACL’s on Cisco Switches as well as configured routers as terminal servers.
• Implementing 3750 Stackable switches using Cisco Stack Wise technology. Experience to review and evaluate current and future design issues as required maintaining network integrity, efficient data flow.
• Worked on Layer 2 protocols such as STP, VTP, STP, RSTP, PVSTP+, MST and other VLAN troubleshooting issues and configuring switches from scratch and deployment
• Worked on F5 and CSM load balancers deploying many load balancing techniques with multiple components for efficient performance.
• Involved in designing and implementing QOS and policy map to 2800 series routers for all the branches
• Experience Branch Relocation: Connect workstation, servers, etc. Rack and stack Pre-configured new hardware and connect the circuits. Work with Carrier to test and turn-up circuits.
• Performed IP address planning, designing, installation, configuration, testing, maintenance, and troubleshooting in complete LAN, WAN development.
• Involved in operations and administration of WAN consisting Ethernet Handoffs, T1, DS3, and Optic Fiber Handoffs.
• Supporting EIGRP and BGP based on the network by resolving level 2 & 3 problems of internal teams & external customers of all locations
• Racking, Stacking, configuring, Nexus 5K and 2K and 7K.
• Performing network monitoring, providing analysis using various tools like Wire Shark, Solar winds, Solaris etc.
• Configured ACLs in Cisco 5540 ASA firewall for Internet Access requests for servers, Protocol Handling, Object Grouping and NAT/PAT, ISE, NAC.
• Configured ASA 5540 to ensure high-end security on the network with ACLs and Firewall.
• Configured and deployed BIG-IP LTM 8900 for providing application redundancy and load balancing.
• Implemented Quality of Service (QOS), Policy Maps, Class-maps, Policy Routing in the network infrastructure throughout all the different sites.
• Installed wireless access points (WAP) at various locations in the company.
• Actively involved in switching technology Administration including creating and managing VLANS, Port security - 802.1x, Trunking 802.1Q, RPVST+, Inter-VLAN routing, and LAN security on Cisco Catalyst Switches 4507R+E, 6509-E and Cisco Nexus Switches 2232, 5596, 7009.
• Created dedicated VLANs for Voice & Data with QOS for prioritizing VOICE over DATA.
• Configured Voice ports and Dial peers on the call manager for the VOIP call to reach remote destination.
• Worked on configuration and commissioning of the MPLS circuits for various branch offices.
• Providing Daily network support for national wide area network consisting of MPLS, VPN and point-to-point site.
• Performed Network Security Assessment and implemented security improvements such as network filtering, SSH, AAA, SNMP access lists, VTY access lists, EIGRP MD5 authentication, and HSRP authentication.
• Configured of ACL’s in Cisco 5550 ASA firewall for internet Access requests for servers, Protocol Handling, Object Grouping and NAT
• Responsible for Data Center Migrations and its operations.
• Implemented antivirus and web filtering on Juniper SRX 240 at the web server as well as configuration of F5 Big-IP LTM-6400 load balancers.
• Currently working with F5s Big -IP 6900 Series Platform.
• Worked on F5 LTM, GTM series like 6400, 6800, 8800 and Radware for the corporate applications and their availability.
• Deployment and support of F5 LTM/GTM 1600, 3600, 6900 and Viprion Chassis running OS versions 9.x through 11.x. Work included configuring devices through the CLI (Big Pipe/TMSH) and GUI, upgrading the OS, configuring the appliance, troubleshooting, and configuration updates.
• Configured and deploy LTM for application such as Exchange, 2010, 2013, SharePoint, VMview, using iApp and manually
• Worked on various modules and sub modules ofCSPC2.2 & 3.0 not limiting to customer & satellite management, enhanced main, application settings.
• Worked on Common Services Platform Collector (CSPC).CSPCprovides data collection and serviceability that works in conjunction with one or more instances of Smart Collector(s) to provide centralized data collection of network devices, servers and reporting across multiple customer sites
• Documenting workflow process, managing and implementing standard policy and procedures.

Environment: Cisco 2600, 2800, 3600, 3800,7600 and 7200 game plan routers, Cisco 2950, 3550, 3560, 6509 Catalyst Switches, Routing Protocols, Wire Shark, Solar winds, Solaris Nexus, ASA, F5, Wireless.

Confidential, OK

Network Security Engineer

Responsibilities:

• Responsible for designing and implementation of network and Security infrastructure.
• Reviewing, analyzing, approving and executing all changes in the network. All Configurations of Cisco Routers and Switches. Participated in a rotating 24x7 support schedule for the Network Operation Center.
• Responsible for the global design, engineering, and level 2/3 support of existing of network technologies and the integration of new network technologies/services.
• Worked on ACL’s configuring and monitoring on Cisco ASA and ASDM.
• Configured Cisco 7200 routers which were also connected to Cisco ASA security appliances providing perimeter based firewall security.
• Configuration, Testing, Planning, Design of Cisco routers, Cisco Catalyst 2900,3570 and 6500 switches and Configured Client VPN technologies including Cisco's VPN client via IPSEC.
• Troubleshoot TCP/IP problems; troubleshoot connectivity issues in multi-protocol Ethernet, Environment.
• Experienced in Routing and Switching, protocols including TCP/IP, OSPF, EIGRP, IGRP, RIP, static routing and worked on configuring with BGP, MPLS and OSPF.
• Performed switching technology administration including Vlan’s, inter-Vlan routing, trucking, port aggregation and link negotiation.
• Experienced in working with Load Balancing using F5 Networks Big IP along with Network Assessment and Documentation (including technical, operational, and economic assessment).
• Performed Security operations in terms of pushing new policies and deploying new rules. Performing security troubleshooting in terms of checking ACLs, ACEs, and traffic flow analysis using packet capture features.
• Experience working and deployment of MPLS Layer 3 VPN cloud, involving VRF, Route Distinguisher (RD), Route Target (RT), Label Distribution Protocol (LDP) & MP-BGP.
• Configured Client VPN technologies including Cisco's VPN client via IPSEC.
• Handling security operational and support incidents of all severities (P1, P2, P3 and P4) related to Checkpoint Fortinet and Cisco ASA firewalls.
• Performed various configurations using the CISCO SDM like configuring VPN, Security Audits, Firewalls, VLANS.
• Worked on Checkpoint Fortinet firewalls (R77.30, R75.46, R75.47 and R77.20), CLI and Cisco ASA.
• Providing requested permission by adding/ modifying the firewall rule base on Checkpoint Fortinet firewalls through central management server.
• Build and configure solutions in the development, test and production environment including documenting the security infrastructure and design.
• Facilitated device refresh of network security devices with a focus of capacity, manageability, and security of new and existing security infrastructure.
• Management of Active Directory and domain controllers for daily Network Operations and Security Operations.
• Created an Identity/Query server to redirect user identities from Active Directory to the server, thus reducing load and CPU usage while increasing efficiency on the network firewalls.
• Advanced knowledge, management and configuration of Checkpoint firewalls, routing protocols, and VPNs.
• Duties included release management, configuration management, incident management, change management, service level management, and security management of Checkpoint firewalls in an enterprise multi-site environment.
• Responsible for maintaining and updating VPN Gateways for ensuring force of latest Security policy to deny all input requests from all non-compliant devices.
• Responsible for Checkpoint and Cisco ASA firewall administration across our global networks. Also responsible for managing and administering IPS and IDS on all Checkpoint Fortinet firewalls in the Environment.

Environment: Cisco Routers 7600, 2600 and 3800, Cisco Nexus 7k,5k and 2k, Cisco Switches 6500, 5000, 3500 and 2950, BIG IP F5 LTM, Checkpoint and Palo Alto Firewalls, IT Security Policies, OSPF, EIGRP, HSRP, BGP, Resolving tickets, LAN and WAN networks.

Confidential

Network Engineer/Admin

Responsibilities:

• Working closely with Data center management to analyze the data center sites for cabling requirements of various network equipment
• 24x7 on-call escalation support as part of the security operations team
• Working configuration of new VLANs and extension of existing VLANs on/to the necessary equipment to have connectivity between two different data centers
• Responsible for entire LAN and WAN/WLAN maintenance and troubleshooting of the company network. Involved in the Team of Data Center Operations to perform duties like administration and deployment of Cisco Routers and Switches according to the organization requirements.
• Performed network administration tasks such as creation and management of VLANS, Port security, Trunking, RPVST+, Inter-VLAN routing, and LAN security.
• Configured Hyper-V LAN which decouples virtual networks from the physical network infrastructure, removing the constraints of VLAN and hierarchical IP address assignment from virtual machine provisioning.
• Worked with ASA Firewall configuration and Participated in Migration of PIX to ASA for hardware devices.
• Configured FWSM on cisco 7600 router to reduce costs and operational complexity while enabling organization to manage multiple firewalls from the same management platform.
• Knowledge in implementing and configuring F5 Big-IP LTM-6400 load balancers.
• Configured ASA 5520/5500to ensure high-end security on the network with ACLs and Firewall.
• Worked with Cisco Catalyst 4500, 4900 switches and Cisco 2800, 3600, 3800, 7200 & 7600 series Routers.
• Deployed Nexus 2000, 5000 and 7000 series switches.
• Involved in Network Designing, Routing, DNS, IP Subnetting, TCP/IP protocol.
• Worked with Routing Protocols of EIGRP and BGP.
• Installed Cisco WAAS device 4451-X for acceleration of TCP-based applications, and Cisco's Wide Area File Services (WAFS) in a single appliance and to preserve and strengthening branch security
• Configured PVSTP+ for loop prevention and VTP for Inter-VLAN Routing.
• Worked on commissioning and decommissioning of the MPLS circuits for various field offices & POPs.
• GRE tunneling & Site-to Site VPN configuration between other two sites in USA.
• Implemented redundancy for Routers, Switches and Firewalls.
• Manage Cisco Routers and troubleshoot layer1, layer2 and layer3 technologies for customer escalations
• Creating automated scripts using Python language and also manual testing to enhance hardware performance.
• IP Allocation & Maintenance for users and other needs throughout company.
• Configured and managed OSPF redistribution and authentication with type 3 LSA filtering and to prevent LSA flooding and also configured OSPF over frame relay networks for NBMA and point to multipoint strategies.
• Designing, configuring, implementing and troubleshooting (LAN) VLAN’s, VTP, Spanning Tree (STP), Trunking (dot1q and ISL) and Ether channel.
• Implementing and managing traffic engineering on top of an existing Multiprotocol Label Switching (MPLS) network using Frame Relay and Open Shortest Path First (OSPF).
• Configuring and implementing F5 BIG-IP, LTM, GTM load balancers to maintain global and local traffic.
• Implementing and troubleshooting (on-call) IPsec VPNs for various business lines and making sure everything is in place
• Implementing the necessary changes such as adding, moving and changing as per the requirements of business lines in a data center environment
• Implementation and configuration of F5 Big-IP LTM-6400 load balancers
• Worked in projects converting P2P circuits into MPLS circuits, commissioning and decommissioning of the MPLS circuits for branch offices.
• Configuring and resolving various OSPF issues in an OSPF multi area environment,
• Implemented, configured BGP WAN routing, converting OSPF routes to BGP (OSPF in local routing).
• Expertise in maintenance of layer2 switching tasks which advocate VLAN, VTP, STP, RSTP, PVST, RPVST, configuring of ether channel with LACP and PAGP along with troubleshooting of inter-VLAN routing.
• Member of a team in planning, design, capacity management, and budget approvals for switching, Ethernet over SONET, Ethernet over DWDM, fiber network including spur closures, and other infrastructures.
• Assisted in EPL, EVPL, ELINE And ELAN design and provisioning based on MPLS (LDP, RSVP) and TLDP
• Work on prioritized system incident tickets received through Hewlett Packard's system monitoring software tool. (HPSM)
• Managed multi-domain/multi-platform networks comprised of 33 multi-platform server (Solaris 11, Windows Server 2003, 2008), and 75 Windows-based clients (XP, 7)
• Experience with convert Checkpoint VPN rules over to the Cisco ASA solution. Migration with Cisco ASA VPN experience
• Configure and support software such as Web metrics and Citrix Netscaler
• Developed the solutions approach (SA), network management technical plan (NMTP), and network validation test (NMVT) documents. Coordinated with development, test, and operations organizations resulting in a robust non-service impacting upgrade. Led the network management validation testing to ensure NM functionalities.
• Cisco ASA/Checkpoint Firewall troubleshooting and policy change requests for new IP segments that either come on line or that may have been altered during various planned network changes on the network.

Environment: Cisco ASA 5520, 5505, BIG-IP LTM 6400, Nexus, STP, RSTP, VTP, HSRP, Port-Channel, Ethernet over SONET, Ethernet over DWDM BGP, OSPF, EIGRP, PPP, HDLC. SNMP, DNS, DHCP, Hyper-V Networking, Checkpoint, RIP, Nexus 2K, 5K, 7K.s, EPL, EVPL, ELAN, NMTP, NMVT.

Confidential

Network Engineer

Responsibilities:

• Configured RIP and EIGRP on 2600, 2900 and 3600 series Cisco routers
• Implemented VTP and trunking protocols (802.1q and ISL) on 3560, 3750 and 4500 series Cisco Catalyst switches
• Performed on-call support for installation and troubleshooting of the configuration issues.
• Worked on installation, maintenance, and troubleshooting of LAN/WAN (ISDN, Frame relay, NAT/PAT, DHCP, TCP/IP,Radius)
• Configured Access List (Standard, Extended, and Named) to allow users all over the company to access different applications and blocking others
• Configured STP for loop prevention and VTP for Inter-VLAN Routing
• Performed maintenance and troubleshooting of connectivity problems using PING, and Trace route
• Provided Network and Security Architecture and Operations support services for Windows 2008 based web, application and database servers
• Provided Technical support for improvement, up gradation, and expansion of the existing network architecture
• Done troubleshooting of TCP/IP problems and connectivity issues in multi-protocol Ethernet environment
• Developed test scripts using Python and assorted proprietary software tools.
• Worked on FCOE protocol to encapsulate the Fiber Channel frames over Ethernet networks.
• Configuring and troubleshooting multi-customer ISP network environment
• Involved in network monitoring, alarm notification and acknowledgement
• Install and/or Migrate Checkpoint Security Hardware systems while upgrading to the latest Checkpoint Security Software version
• Utilized Solar wind tools to proactively troubleshoot Client issues
• Managing and maintaining Solaris. Troubleshoot and resolve technical uses issues.
• Implementing new/changing existing data networks for various projects as per the requirement
• Troubleshooting complex networks layer 1, 2(frame relay, ATM, Point to Point, ISDN) to layer 3 (routing with MPLS, BGP, EIGRP, OSPF and RIP protocols) technical issues

Environment: RIP, EIGRP, TCP/IP, FCOE, MPLS, BGP, ACL, VTP, VLAN, Checkpoint