SUMMARY

• 8+ of professional experience in network engineering with Cisco CertifiedNetwork Engineer, performing network analysis, design, Implementing, capacity planning with a focus on performance tuning and support of large networks.
• Accomplished certifications in Cisco Certified Network Associate (CCNA) and Cisco Certified Network Professional (CCNP)
• Experienced in configuration and troubleshooting routing protocols including EIGRP, OSPF, BGP, RIP, IS - IS, LDP, MPLS
• Installation, configuration and maintenance of Cisco 7200, 3900, 3800, 2600, 2500, ASR 1000 series routers
• Installation, configuration and maintenance of Cisco 2900, 3300, 3500, 3650, 3750, … 6500 and Nexus 7k, 5k, 2k series switches
• Experienced in Configuring/Troubleshooting WAN Technologies MPLS, Sonet, ATM, Frame-Relay, HDLC, PPP on Cisco Routers Security including NAT configuration, VPN, VLAN, Cisco Firewalls
• Comprehensive expertise in the implementation of analysis, optimization, troubleshooting and documentation of LAN/WAN networking systems.
• Experience in Data Center process of Migration and responsible for smooth transferring of existing configuration to operating environment.
• Configure VRRP & GLBP and VLAN Trunking 802.1Q & ISL, STP, Port Security on Catalyst 6500 switches
• Involved in troubleshooting of DNS, DHCP and other IP conflict problems
• Responsible for Check Point and Cisco ASA firewall administration across global networks
• Experience in working with Cisco Nexus Switches and Virtual Port Channel configuration
• Worked on F5 LTM, GTM series like 6400, 6800, 8800 for the corporate applications and their availability
• Design and configuring of OSPF, BGP on Juniper Routers (MX960, MX480) and SRX Firewalls(SRX240, SRX550)experience working knowledge of IP protocol
• In-depth knowledge and hands-on experience in Tier II ISP Routing Policies,NetworkArchitecture, IP Subnetting, VLSM, TCP/IP, NAT, DHCP, DNS, FT1 / T1 / FT3 / T3 SONET POS OCX / GigE circuits, Firewalls
• Strong knowledge of TACACS+, RADIUS implementation in Access ControlNetwork
• Experience in Designing and assisting in deploying enterprise wideNetworkSecurity and High Availability Solutions for ASA
• Design and implement Cisco wirelessnetwork. Troubleshoot RF WLAN system networks
• Experience with Layer 2 and Layer 3 protocols like LDP, RSVP/ TE, QOS, COS L2 VPWS and VPLS, FRR.
• Experienced in configuring HSRP and redistribution between routing protocols troubleshooting them.
• Designed and Deployed Service Switching layer with 6500 platform for Firewall and Load Balancing Services for WEB and APP server Cloud on the Nexus platform
• Good experience on Virtual PrivateNetwork(VPN) for operatingNetworkand Data Center.
• Strong knowledge of NetworkManagement Tools and sniffers like SNMP, HP-Open view, Wireshark and Cisco works to support 24 x 7NetworkOperation Center.
• Experience with Internet/Intranet Networking Protocols and Services
• Excellent customer management/resolution, problem solving, debugging skills and capable of quickly learning, effectively analyzes results and implement and delivering solutions as an individual and as part of team.

TECHNICAL SKILLS

NETWORKING PROTOCOLS: HTTP, FTP, DHCP, DNS, TCP, SIP, VTP, STP, SNMP, ICMP

ROUTING PROTOCOLS: RIP, IGRP, IGMP, OTV, MPLS, EIGRP, OSPF, IS-IS, BGP.

NETWORK MONITORING: Wireshark, Open stack

LAN TEHCNOLOGIES: Fast -Ethernet, Giga -Ethernet, VLANS

NETWORK SECURITY: NAT/PAT, JunOS, Cisco ASA Firewalls, IPS/IDS, checkpoint SPLAT/ Gaia, juniper EX, SRX, MX, QFX,DMZ Setup, CBAC, Cisco NAC, Checkpoint, ACL, L2VPN, L3 VPN, Net screen.

CISCO EQUIPMENTS: Cisco routers (7600, 7200, 3900, 3600, 2900, 2800, series) Cisco Catalyst switches (6500, 4900, 3750, 4500, 2900 series), PIX Firewall (506/515/525/535 ), Cisco ASA, Firewall (5500/5510).

SCRIPTING TOOLS: Python, Perl, HTML. SQL

PROFESSIONAL EXPERIENCE

Confidential - New Brunswick, NJ

Sr. Network Engineer

Responsibilities:

• Responsible for the Global design, engineering, and level 2/3 support of existing network technology services and the integration of newnetworktechnologies / services
• Key contributions include troubleshooting of complex LAN /WAN infrastructure that include routing protocols EIGRP, OSPF & BGP.
• Involved in complete LAN, WAN development (including IP address planning, designing, installation, configuration, testing, maintenance, troubleshooting etc.)
• Configured network using routing protocols such as BGP, EIGRP, OSPF and troubleshooting L2/L3 issues. Configuring Switches with: VLANs, Trunking, VTP, TCP/IP, SNMP, FTP, TFTP
• Provided dailynetworksupport for national wide areanetworkconsisting of MPLS, VPN and point-to point site.
• Worked with Cisco Nexus 2148 Fabric Extender and Nexus 5000 series to provide a Flexible Access Solution for data center access architecture.
• Configured VRRP & GLBP and VLAN Trunking 802.1Q & ISL, STP, Port Security on Catalyst 6500 switches.
• Configured STP for switching loop prevention and VLANs for data and voice along with Configuring port security for users connecting to the switches.
• Involved in L2/L3 Switching Technology Administration including creating and managing VLANs, Port security, Trunking, STP, Inter-Vlan routing, LAN security.
• Worked on the security levels with RADIUS, TACACS+.
• Built the VPN tunnel and VPN encryption.
• Enabled STP attack mitigation (BPDU Guard, Root Guard), using MD5 authentication for VTP, disabling all unused ports and putting them in unused VLAN.
• Managed the F5 BigIP GTM/LTM appliances to include writing iRules, SSL offload and everyday task of creating WIP and VIPs.
• Upgraded load balancers from Radware to F5 BigIPv9 which improved functionality and scalability in the enterprise.
• Design, monitor and troubleshoot Aruba APs, wireless controllers and s3500 switches using the Airwave management systems. Also remote maintenance of all Avaya Systems
• Maintained core Nortel switches, creating VLAN’s and configuring VTP
• Implemented various software and hardware upgrades efficient performance.
• Designed and implemented DMZ for Web servers, Mail servers & FTP Servers using Cisco ASA5500 Firewalls.
• Generated RCA (Root Cause Analysis) for critical issues of layer1/layer2/layer3 problems
• Configured, maintained, and troubleshot routers and switches ranging from the 1720 series through the 7200 series routers and the 2900 series through the 6500 series switches in a highly redundant dual-homed environment.
• Monitored the NMS system for differentnetworkAlerts.
• Configuration of Access List ACL (Std, Ext, Named) to allow users all over the company to access different applications and blocking others.
• Responsible for Cisco ASA firewall administration across our global networks.

Confidential - New York

Sr. Network Engineer

Responsibilities:

• Established networking environment by designing system configuration, directing system installation, defining, documenting and enforcing system standards.
• Responsible for maintaining and ensuring the proper functioning of all network devices (i.e. Juniper routers/switches, Cisco Routers/Switches, Juniper Netscreen firewalls, Cisco ASA firewalls, and load balancers (LTM)).
• Installed and configured LAN/WAN Networks, Hardware, Software, and Telecommunication services- Cisco Routers and Switches. Implemented IPv4 and IPv6 on PTX platforms.
• Undertook data network fault investigations in local and wide area environments, using information from multiple sources.
• Configured OSPF and BGP on Juniper M and MX series Routers
• Secured network systems by establishing and enforcing policies, and defining and monitoring access.
• Responsible for turning up BGP peering and customer sessions, as well as debugging BGP routing problems.
• Experienced on working with Palo Alto Next Generation firewall with security, networking, and management features such as URL filtering, Anti-virus, IPsec VPN, SSL VPN, IPS, Log Management.
• Experience working with Juniper devices like EX-2200, EX-4200, EX-4500, MX-480, M Series, SRX650, SRX240 and Juniper J series j230, M 320 and MX960 routers.
• Resolved Customers request to create firewall policies for Cisco ASA, juniper SRX, FortiGate and NX-OS.
• Riverbed Steelhead 550H WAN optimization installation and configuration
• Installed, configured and maintained Cisco 5500 ASA firewall.
• Worked with Checkpoint Firewall (Gaia) for management (Smart Dashboard, Smart Monitor), Logging (Smart Log, Smart ViewTracker).
• Managed and configured AAA server like RADIUS and TACACS+ using Cisco ACS v4.2.
• Provided Cisco Router Configuration Support along with installation, Configured EIGRP.
• Administrated a network using ACL’s to enhance security of the LAN network.
• Applied test expertise and experience to craft & execute test plans, conduct negative/exception tests, verification, performance and regression testing of RIA, HTML, AJAX, Mobile Web client, integration services, enablers & platforms
• Created standard access lists to allow SNMP, NTP and logging servers.
• Configured VRRP and VLAN Trunking 802.1Q & ISL, STP, Port Security on Catalyst 6509 switches.
• Configured VLANs with 802.1q tagging. Configured Trunk groups, ether channels, and Spanning tree for creating Access/distribution and core layer switching architecture.
• Configured BPDU Guard, port-fast, uplink fast and other spanning tree features.
• Negotiated VPN tunnels using IPSec encryption standards and also configured and implemented site-to-site VPN, Remote VPN.
• Generated RCA (Root Cause Analysis) for critical issues of layer1/layer2/layer3 problems.
• Involved in the removal of EIGRP from all devices and making OSPF the primary routing protocol.
• Involved in the modification and removal (wherever necessary) of BGP from the MPLS routers.
• Configured IPSEC VPN (Site-Site to Remote Access) on SRX series firewalls.
• Documented all the work done by using Visio, Excel & MS word
• Logs and triages defects and test multiple mobile devices across multiple applications.
• Oversaw the installation of INC 100MS Client & Server Software for NMS and RNMS.
• Rendered first line support for the entire NLD NECnetwork of VSNL from NNMS.
• Involved in carrying out BER test for SDH Nodes with SDH Analyzer ANT 20 and 2 Mb / STM-1 / STM-4 / STM-16 / STM-64 Links.
• Write test cases from a variety of documentation types; business requirements, system requirements & design documentation.

Confidential - lake success, NY

Network Engineer

Responsibilities:

• Security infrastructure engineering experience as well as a Microsoft Windows, UNIX, Juniper firewalls, Palo Alto firewalls, Bluecoat Proxies, Juniper Intrusion Prevention devices, and wireless switch security management.
• Installed SolarWindsNetwork Performance Monitor with emphasis on traffic analysis, application and virtualization management.
• Added, removed and updated custom properties within SolarWinds Orion in line with applicable Configuration Management processes & procedures.
• Experience working with Cisco IOS-XR on the ASR9000 devices for MPLS deployments
• Involved in the troubleshooting aspects of complexnetworkinfrastructure using the routing protocols like EIGRP, OSPF & BGP.
• Installing, configuring Cisco Catalyst switches 6500, 3750 & 3550 series and configured routing protocol OSPF, EIGRP, BGP with Access Control lists implemented as perNetworkDesign.
• Management of SolarWinds Orion Suite networkperformance monitor, network configuration manager.
• Worked on configuring and troubleshooting of routing protocols such as OSPF and BGP for effective communication. Maintain LAN communication between Servers/Workstations.
• Remediation of firewall rules from checkpoint firewalls to Cisco ASA firewalls, installing and configuring new juniper EX, MX, SRX series firewalls to meet day to day work
• Worked on load balancers like F5 10050s, 10250v to troubleshoot and monitor DNS issues and traffic related to DNS and avoid DDoS
• Deployment of Palo Alto firewall into the network. Configured and wrote Access-list policies on protocol based services.
• Configured and implemented an enterprise SD-WAN for smooth traffic management and security purpose.
• Designed, install and configuration. Involved in large-scale wireless integrations into existing networks. Technologies included Cisco Wireless, Meraki,
• Designed WAN solution using the AutoVPN technology with Cisco Meraki MX security appliances including DC to DC failover and SD-WAN capabilities.
• Conducted online product demonstrations using the Cisco Meraki Cloud Controller web interface via WebEx, answer technical questions, contribute to proposals, analyze clients' needs, and develop technical solutions
• Aruba, Air Magnet, and multi-vendor RADIUS solutions.
• Provided second/third level technical support for ACI (Application Centric Infrastructure) technologies.
• Migrated the entire testing environment to Virtual MX supported testing.
• Automated operational tasks using Ansible, BladeLogic Provided technical support on Nexus 2000/5000 switches and operating system (NX-OS)
• Assisted with installing, upgrading, and configuring BladeLogic agents. Use BladeLogic Client to create and Deploy maintenance jobs.
• Managed successful delivery of massive security response portfolio including Splunk and Cisco ISE

Confidential - Bowie, Maryland

Network Engineer

Responsibilities:

• Implemented new/changing existing data networks for various projects as per the requirement.
• Troubleshooted complex networks layer 1, 2to layer 3 (routing with MPLS, BGP, EIGRP, OSPF protocols) technical issues.
• Provided support to networks containing more than 2000 Cisco devices.
• Performed troubleshooting for Cisco IOS related bugs by analyzing past history and related notes.
• Installed and Upgraded Antivirus software's like AVAST, NORTON, MCAFEE, Fore scout etc.
• Carried out documentation for trackingnetwork issue symptoms and large scale technical escalations.
• Ensurednetwork, system and data availability and integrity through preventive maintenance and upgrade.
• Involved in L2/L3 Switching Technology Administration including creating and managing VLANs, Port security, Trunking, STP, Inter-VLAN routing, LAN security.
• Worked on the security levels with RADIUS, TACACS+.
• Completed service requests (i.e. - IP readdressing, bandwidth upgrades, IOS/platform upgrades, etc.)
• Managed the service request tickets within the phases of troubleshooting, maintenance, upgrades, fixes, patches and providing all-round technical support.
• Installed, configured and maintained several Cisco DMVPN routers servicing smaller sites, several Edge router running BGP and MPLS to Internet service providers.
• Commissioned and Decommissioned of the MPLS circuits for various field offices.
• Prepared feasibility report for various upgrades and installations
• Identified, design and implement flexible, responsive, and secure technology services
• Modified internal infrastructure by adding switches to support server farms and added servers to existing DMZ environments to support new and existing application platforms.
• Configured switches with port security and 802.1 xs for enhancing customer's security.
• Monitorednetworkfor optimum traffic distribution and load balancing using Solar winds.
• Validated existing infrastructure and recommend new network designs.
• Performed switching technology administration including VLANs, inter-VLAN routing, Trucking, STP, RSTP, port aggregation & link negotiation.
• Configured EBGP/IBGP policies also tested BGP attributes such as Local preference, MED, AS-PATH, Community and Weight.
• Configured EIBGP load balancing and ensured stability of BGP peering interfaces

Confidential - Minneapolis, MN

Network Engineer

Responsibilities:

• Configured routing policy for BGP. Switching related tasks included implementing VLANs and configuring ISL trunk and 802.1Q on Fast-Ethernet channel between switches
• Implemented Cisco IOS Firewall IDS using 2600 series router.
• Troubleshooting of networkproblems done with Wire shark, identify problem and fix.
• Experience with configuring Nexus 2000 Fabric Extender (FEX) which acts as a remote line card (module) for Redistribution of routing protocols and Frame-Relay configurations.
• Configured and troubleshooting type of routing to route traffic flow per customer requirement as primary, backup/load balanced and load splitting.
• Performed the maintenance of Active Directory and replication scheme, DNS/DHCP services and time services; wrote step-by-step procedures for implementing upgrades.
• Configured VLANs on a switch for inter-VLAN communication.
• Configured VLAN Trunking Protocol (VTP) on Core Switches.
• Configured various LAN switches such as CISCO CAT 2900, 3550, 4500, 6509 switches for STP, VTP Domain, VLAN, Trunking, Fast Ether Channel configuration
• Configured firewall logging, DMZs, related security policies and monitoring.
• Creating private VLANs & preventing VLAN hopping attacks and mitigating spoofing with snooping & IP source guard
• Provided Cisco Router Configuration Support along with installation, Configured EIGRP.
• Administered a network using ACL’s to enhance security of the LAN network.
• Basic networking concepts such as TCP/IP.
• Implemented networking products like servers, web servers, antivirus servers, hubs, repeaters, switches, bridges, firewalls.
• Thorough understanding of network and security knowledge (TCP/IP, DNS, DHCP, Firewalls, Routers, IDS, VPN).
• Managed Daily & Weekly Backup & restoration of Critical Data.
• Involved in Troubleshooting of DHCP and other IP conflict problems.
• Performed Switching Technology Administration including VLANs, inter-VLAN Routing, Trunking, STP, RSTP and Port Aggregation & Link Negotiation.
• Deployed a large-scale HSRP solution to improve the uptime of collocation customers, in the event a core router became unreachable.
• Configured RSTP, LACP and VTP on Nexus devices.
• Performed RIP & OSPF Routing Protocol Administration.

Confidential

Jr. Network Engineer

Responsibilities:

• Configured site to site VPN for connecting student lab to training and development centers.
• Worked on IP control for management and optimal allocation of IP addresses.
• Configured and deployed Cisco ASA and Juniper SRX firewalls for various Motorola Solutions.
• Implementation and Support of Nexus 7000, Nexus 5000, 6500, virtualization, ACE and Data Center Project implementation.
• Experienced in Cisco switches and routers, Physical cabling, IP addressing, WAN configurations.
• Involved in configuration & troubleshooting of routing protocols: MP-BGP, OSPF, EIGRP, RIP, BGP v4.
• Provided port binding, port security and router redundancy through HSRP
• Involved in troubleshooting of DHCP and other IP conflict problems.
• Performed switching technology administration including VLANs, inter-VLAN routing, Trucking, STP, RSTP, port aggregation & link negotiation.
• Configured EBGP/IBGP policies also tested BGP attributes such as Local preference, MED, AS-PATH, Community and Weight.
• Configured EIBGP load balancing and ensured stability of BGP peering interfaces.
• Resolvednetworkissues, ran test scripts and preparednetworkdocumentation.
• Worked on Cisco IOS, IOS XE 6509 and 4507 series switches for LAN requirements, that includes managing VLANs, Port Security and troubleshooting LAN issues.
• Configuration of Access List ACL (Std, Ext, Named) to allow users all over the company to access different applications and blocking others.
• Dealt with NAT configuration and its troubleshooting issues related access lists and DNS/DHCP issues within the LANnetwork.
• Responsible for technical documentation and Visio Drawings for the implemented projects.
• Involved in Attending meetings and technical discussions related to project