SUMMARY:

• CCNA and Palo alto ACE Certified Network Engineer having Over 6.5 years of experience in network designing, monitoring and troubleshooting of Networking devices with routing, switching.
• Experience with DNS/DFS/DHCP/WINS Standardizations and Implementations.
• Extensive understanding of networking concepts, (IE. Configuration of networks, router configuration and wireless security, TCP/IP, VPN, Content Filtering, VLANs, and routing in LAN/WAN, Ethernet Port, Patch Panel and wireless networks.
• Strong experience in creating firewall policies as per the requirements on Palo Alto & Checkpoint.
• Install, troubleshooting, configuring for Checkpoint firewall, Cisco ASA. Have performed some checkpoint to Cisco ASA firewall Migrations, Upgrades from R77.30 checkpoint firewall.
• Good working knowledge and experience with F5 Load balancer LTM.
• Experience providing remote site access with IPsec, SSL and GRE, MPLS, Frame Relay and Documenting required information for maintenance, troubleshooting and future reference.
• Experience with troubleshooting network traffic and the diagnosis using tools like ping, traceroute, Cisco Prime PRTG, Wireshark and Solar Winds.
• Expertise in working with Cisco routers and switches implementing protocols such as EIGRP, OSPF, IS - IS, BGP and MPLS on edge routers and so.
• Expertise in implementing, maintaining and troubleshooting L2 switching tasks such as VLANs, VTP, VLAN Trunking using ISL and 802.1Q, STP, RSTP, PVST+, Ether channel using LACP, PAgP & Inter-VLAN routing.
• Expertise in installing, configuring, and maintaining Cisco Switches (2900, 3500, 3700, 6500, 7600 series), Cisco Routers (4800, 3800, 3600, 2800, 2600, 2900, 1800, 1700, 800).
• Experience in working with Juniper routers such as MX-480, MX-960 and switches EX-4200, EX-4300, EX-8200 and Juniper firewalls such as Juniper SRX-610, SRX-3600.
• Implemented multiple Cisco Nexus based Data-Center environments, as well as 6500/4500/3750 series switches, 7200/3900/2900/1900 series router. Multiple data center migrations and transformation projects, with great expertise on Wireshark.
• Experience in working with Nexus 7K, 5K and 2K. Involved in design and configuring Overlay Transport Virtualization (OTV) on Cisco NX-OS devices like Nexus 7000.
• Implementation of DNS and DHCP protocols and Configure Protocols MPLS: TDP, LDP, L2VPN, VPLS, RSVP-TE, and QOS.
• Design, deploy and configured core, distribution, and Access level routers and switches from early planning to implementation.
• Provided level II enterprise LAN/WAN support troubleshooting network problems in a timely fashion and re-engineering the network infrastructure with load balancing and redundancy feature in response to the increasing demand of networks.
• Provided technical support for Palo Alto Networks End User Customers and Partners via phone, e-mail and web.
• Provided technical support and guidance on network design issues and reproducing customer issues and qualify escalations.
• Strong VISIO experience and documentation & diagram skills using VISIO.
• Strong written and communication skills, self-motivated, self-managed, result oriented, practical, always looking to learn and contribute individually and within a team.

TECHNICAL SKILLS:

Routers: Cisco routers (1900, 2600, 2800, 2900, 3600, 3800, 3900, 7200, Cisco L2 & L3, ASR 9000 series routers

Switches: Cisco Cat 2960, 3750, 4500, 6500 7600 and Nexus 2K/3K/5K/7K series

Firewall: ASA (5550/5580-20), Check Point (R77/R76/R75/R60), Palo Alto (PA 500/3k/5k)

Load Balancers: F5 Networks (Big-IP) LTM, Cisco ACE 4710

LAN/ WAN: BGP, MPLS, L3/L2VPN, QOS, Frame Relay, PPP, HDLC, Ethernet, WLAN 802.11, T1/T3

Routing Protocols: ISIS, OSPF, EIGRP, RIP, BGP, Route Filtering, Redistribution, Summarization

Switching Protocols: STP, RSTP, PVST+, RPVST+, 802.1q, VLAN, VTP, ARP, Ether channels

Gateway Redundancy: HSRP, VRRP, GLBP

AAA Architecture: RADIUS, TACACS+, Cisco ACS

Miscellaneous: NAT, SNMP, Syslog, SMTP, HTTP, FTP, DNS, DHCP, IGMP, ICMP

Network Tools: Wireshark, Solar winds, Cisco Works, GNS3, TCP dump, OPNET, Packet Tracer

Languages: Python, SQL, Bash Scripting

Operating Systems: Windows (Server 2003/08), OSX, NX-OS, IOS-XR, Linux (Ubuntu, RHEL, CentOS)

PROFESSIONAL EXPERIENCE:

Network Engineer

Confidential, Rochester, NY

Environment: Cisco ISR router 2900 series, Cisco catalyst series switches 7600/6500/2900, Cisco Nexus 5k/7k series switches, ASA firewall, SolarWinds, Remedy, GNS3, Wireshark

Responsibilities:

• Configuring, Maintaining the Routers and Switches and Implementation of Static, EIGRP, OSPF, BGP routing protocols and troubleshooting Remote infrastructure management of offices in different locations nationwide.
• Responsible for Cisco ASA firewall administration across our global networks.
• Migration of existing IPSEC VPN tunnels from one Data Center to another Data Center, due to decommissioning of existing Data Center, which involved working with Partner Companies.
• Worked with High performance data center switch like Nexus 7000 series.
• Worked extensively with Nexus 7000, 5000, 2000, Cisco 6500 series multilayer switches, Cisco 2960s series switches and Cisco 3560/3750s switches.
• Worked with migration from 6500 series devices to 4500 Series switches in Campus deployments at Core, Distribution and Access Layers.
• Configure various BGP attributes such as Local Preference, as prepend, Next-hop, Community, Extended community using route-map.
• Generating RCA (Root Cause Analysis) for critical issues of layer1/layer2/layer3 problems.
• Deploying Layer 2 security in Server Farms by configuring switch for 802.1x port based authentication.
• Actively involved in switching technology Administration including creating and managing VLANS, Port security.
• Responsible for designing and configuring Intrusion Prevention Signatures.
• Prepared proposal documentation and information to meet customer requirements when required.
• A strong, deep understanding of the dynamic and evolving threat landscape is required to diagnose and solve complex technical issues related to threat mitigation and response.
• Technical resource for all threat related products and features of the Palo Alto Networks product line.
• Initialize familiarization with the management of Palo Alto Next Generation Firewalls as well as F5 load balancers.
• Knowledge on complex Checkpoint, Cisco ASA & Palo Alto Firewalls Environment.
• Installed, configured, troubleshoot, supported Palo Alto (Web Application and URL filtering, Threat Prevention, Data Filtering).
• Installation of Palo Alto (Application and URL filtering, Threat Prevention, Data Filtering
• Implemented Positive Enforcement Model with the help of Palo Alto Networks
• Administered security and NAT policies, fulfilling project requirements on Palo Alto 3050 & 5050 next-generation firewalls using PAN-OS 6.1. Set up VLANs and access ports connecting virtual machines using the NX-OS CLI on a Cisco Nexus 1000v virtual machine and VMWare vSphere Client networking.
• Collaborate with engineering and product management to resolve product defect issues in a timely manner.
• Configure HSRP & GLBP and VLAN Trunking 802.1Q, STP, Port Security on Catalyst 6500 switches.
• Regularly updating support cases to record progress of calls in call tracking system and documenting technical solutions and product information in the knowledge base.
• Provided configurations, troubleshooting and best practices to customers.
• Managed support cases to ensure issues are recorded, tracked, resolved, and follow ups are done in a timely manner.
• Supported clients with establishing high availability applications with load distribution by F5 Big- IP LTM/GTM.
• Upgraded the software images of all Cisco network devices to include routers, switches and ASA firewalls.
• Adhered to weekly and monthly maintenance schedules to service network devices and associated equipment.
• Published Technical Support Bulletins and other technical documentation in the Knowledge Base.
• Job included travel to customer sites in the event of a critical situation to expedite resolution.
• Provide on-call support 24x7 on an as needed basis.
• Prepared and maintained SOP's and technical documentation and network diagrams.

Network Engineer

Confidential, Rochester, NY

Environment: Cisco 2948/3560/4500/3560/3750/3550/3500/2960/6500 switches and Cisco 3640/1200/7200/3845/ 3600/2800 routers, Cisco Nexus 7K/5K/2K, Cisco ASA 500, Checkpoint, windows server 2003/2008: F5 BIGIP LTM, RIP, OSPF, BGP, EIGRP, LAN, WAN, VPN, HSRP

Responsibilities:

• Installed and maintained Cisco and F5 Load Balancer and documentation.
• Installing, configuring Cisco Catalyst switches 6500, 3750 & 3550 series and configured routing protocol OSPF, EIGRP, BGP with Access Control lists implemented as per Network Design.
• Created documents for various platforms including Nexus 7k, ASR9k, and ASR1k enabling successful deployment of new devices on the network
• Configuring, implementing and troubleshooting VLAN’s, VTP, STP, Trunking, Ether channels.
• Designing, implementing LAN/WAN configurations on Cisco 5K, catalyst 6500 switches. Worked extensively in Configuring, Monitoring and Troubleshooting Cisco ASA's 5585.
• Responsible for Cisco ASA firewall administration, Rule Analysis, Rule Modification.
• Packet capturing, troubleshooting on network problems, identifying and fixing problems.
• Worked in Datacenters environment, configuration changes as per the needs of company.
• Innovated with support of Palo Alto for remote and mobile users and for analyzing files for malware in a separate (cloud-based) process that does not impact stream processing.
• Responsible for managing activities, Upgrading IOS - Upgrading hardware and installing new devices, tuning (Configuration), make standardization for the topology Configured, installed, & managed DHCP, DNS, & WINS servers
• Implemented Cisco ASA 5500 series and checkpoint R 75 firewalls.
• Configuring objects such as Load Balancer pools for local traffic management on F5 Load Balancers.
• Experience in establishing NIC bonding/ teaming, IP aliasing.
• Worked on Transformation project.
• Deploying and decommission of VLANs on core ASR 9K, Nexus 9K, 7K, 5K and its downstream devices and configure 2k, 3k,7k series Routers.
• Configuring and resolving various OSPF issues in an OSPF multi area environment.
• Worked on F5 LTM, GTM series like 6400, 6800, 8800 for the corporate applications and their availability.
• IOS upgrade in Nexus 7010 through ISSU (In service software upgrade).
• Implementing, configuring, and troubleshooting various routing protocols like RIP, EIGRP, OSPF, and BGP etc.
• Prepare proposed network diagram using Visio and co-ordinate with customer and other technical groups to get approval.
• Configured Virtual Device Context in Nexus 7k series switch.
• Implemented, configured redundancy protocols HSRP, VRRP, GLBP for Default Gateway Redundancy.
• Configured Load Balancing methods in F5 LTM and configured the virtual server.
• Worked with Checkpoints, ASA’s (Other Remote sites), Palo Alto’s
• Performed network monitoring, providing analysis using various tools like Wire shark, Solar winds etc.
• Provided proactive threat defense with ASA that stops attacks before they spread through the network.

Network Engineer

Confidential, Atlanta, GA

Environment: Cisco2948/3560/4500/3560/3750/3550/3500/2960 6500 switches and Cisco 3640/12000 /7200/3845 /3600/2800 routers, Cisco Nexus 7K/5K, Cisco ASA 500, F5 BIGIP LTM, RIP, OSPF, BGP, EIGRP, LAN, WAN, VPN, HSRP

Responsibilities:

• Providing technical assistance and support to Cisco customers on 2950, 3600, 3745 and GSR routers.
• Monitoring. Used the Cisco Configuration Professional GUI to configure interfaces, passwords, hostnames, DHCP, EIGRP, and SNMP on a Cisco router.
• Implemented traffic filters using Standard and Extended Access-lists. Handled Route-map, Re-distribution list & access-list.
• Installation, maintenance, administration, and monitoring of RedHat Enterprise Linux Systems.
• Worked on DNS server's setup and configured DNS for Linux machines
• Responsible for Check Point and Cisco ASA firewall administration across global networks.
• Configurations, Implementing IP Routing protocols EIGRP, OSPF, RIPv1 and RIPv2.
• Performed IOS Software upgrades on switches 6500, 3750 and 4500s.
• Troubleshoot wireless network issues at the Wireless Controller, using Debug commands and Wireshark.
• Handled all orders as per the company needs, Add, Change, Terminate, Relocate etc. Coordinated with engineering team and onsite technician for remote configuration of Cisco routers and Switches.
• Providing End-user support for configuration and troubleshooting of hardware, software and Windows operating systems related issues, Network connectivity issues, Remote access setup and VPN connection issues.
• Participating in disaster recovery testing, maintaining system documentation logs and assisting in troubleshooting and diagnosis of system problems.
• Experience in implementing VLAN's and preventing loops using Spanning tree protocol
• Involved in design, implementation and configuration of HSRP for load balancing on L3 switches on different location of office on the switched network
• In depth knowledge of implementing and configuring static and default routes
• Performing and monitoring network maintenance activities to ensure network availability to all system users.
• Preformed IOS upgrades and reconfigured devices afterwards.

System and Network administrator

Confidential, Parsippany, NJ

Environment: Cisco Routers - 2900, 3800, 3900, 7200, Cisco Series Catalyst Switches - 2960, 2975, 3750-E, 4500, 6500, Nexus 3k/5k, Cisco Pix Firewall, ASA Firewall, MPLS, Frame-Relay, VOIP, OSPF, BGP, VLANS, STP, PAGP, VRRP, Port Security, VPN, Load balancers, Access list, Wire shark

Responsibilities:

• Configuration and installation of Cisco Routers 2900 series, 3800 series, 3900 series, 7200 series, 7600 series.
• Maintenance and installation of Cisco 2960, 2975, 3750-E, 4500, 6500 Series Catalyst Switches, Nexus 3k/5k.
• Performed switching technology administration including VLANs, Inter-VLAN routing, Trunking, port aggregation in the LAN environment.
• Implemented redundancy using VRRP Protocol on Core and distribution router
• MPLS Configuration in Cisco 3845 Series Router for Layer 3 circuits.
• Implementation and configuration of Load balancer BIG-IP F5.
• Configuring and troubleshooting of Layer 3 routing protocols such as OSPF and BGP.
• Coordinated with Network Administrator regarding BGP/OSPF routing policies and designs, worked on implementation strategies for the expansion of MPLS VPN networks.
• Creating dedicated VLANs for Voice and Data with QOS for prioritizing VOICE over DATA.
• Designed QOS policies for critical applications based on business requirements and traffic patterns.
• Worked with Wireless Network Engineer in deploying and configuring Cisco 1300 Series access point for network connections.
• Installation of Windows 2003 & 2008 on Servers using VMware Virtualization software.
• Prepare the technical documentation using Microsoft Visio/Microsoft Office.

Senior Systems Engineer

Confidential

Environment: Cisco 2960/3550/3750 switches and Cisco 1200/7200/3845/2800 routers, LAN, WAN, Wireshark, VPN

Responsibilities:

• Responsible for implementation and day to day operations of all associated hubs, routers, bridges, gateways and related equipment
• Managed fast Layer 3 switched/routed LAN/WAN infrastructure as a part of Network team. The LAN consisted of Cisco campus model of Cisco 3550 at access layer, Cisco 6513 at distribution/core layer.
• Troubleshoot and recover traffic outages within average recovery timeframe.
• Collect crash info files from routers and execute system engineer command to analyze logs for root cause analysis (RCA), traffic affecting outages and trouble causing nodes.
• Implemented the security architecture for highly complex transport and application architectures addressing well known vulnerabilities and using access control lists that would serve as their primary security on their core & failover firewalls
• Build customer wireless network backhaul for root cause analysis of network using knowledge management solution.
• Test production and database in lab by rebuilding production network scenario to determine bug from router system.
• Used Wire-shark as scanning and sniffing tools.
• Delivered hand in Creating load balancing policies using BGP attributes like Local Preference, AS-Path, MED, Community etc.
• Maintained LAN and gave support on Layer 1 and Layer 2.
• Configured VLANs with 802.1q tagging. Configured Trunk groups, ether channels, and Spanning tree for creating Access/distribution and core layer switching architecture.