Sr. Network Engineer Resume
Palo Alto, CA
SUMMARY
- Around 8 years of experience in Cisco/Juniper Networking, Security which includes designing, Deployment and providing network support, installation and analysis for a broad range of LAN / WAN protocols.
- Hands On experience Cisco IOS/IOS - XR/NX-OS, Juniper JUNOS for configuration & troubleshooting of routing protocols: MP-BGP, OSPF, LDP, EIGRP, RIP, BGP v4, MPLS.
- In-depth knowledge and hands-on experience in Tier II ISP Routing Policies, Network Architecture, IP Subnetting, VLSM, TCP/IP, NAT, DHCP, DNS, FT1 / T1 / FT3 / T3 SONET POS OCX / GigE circuits, Firewalls.
- Strong knowledge of TACACS+, RADIUS implementation in Access Control Network.
- Experience in Designing and assisting in deploying enterprise wide Network Security and High Availability Solutions for ASA.
- Extensive work experience with Cisco Routers, Cisco Switches, Load Balancers and Firewalls.
- Experience with configuring Nexus 2000 Fabric Extender (FEX) which acts as a remote line card (module) for the Nexus 5000.
- Experience working with Cisco Nexus 2148 Fabric Extender and Nexus 7010, 5000 series to provide a Flexible Access Solution for a datacenter access architecture
- Involved in troubleshooting of DNS, DHCP and other IP conflict problems.
- Configuring Virtual Chassis for Juniper switches EX-4200,Firewalls SRX-210
- Responsible for Check Point (Secure Platform R70) and Cisco ASA firewall administration across global networks.
- Experience in working with Cisco Nexus Switches and Virtual Port Channel configuration.
- Knowledge of implementing and troubleshooting complex layer 2 technologies such as VLAN Trunks, VTP, Ether channel, STP, RSTP and MST. Implementation of HSRP, VRRP for Default Gateway Redundancy.
- Experience in testing Cisco routers and switches in laboratory and deploy them on site production.
- Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500/PIX security appliance, Failover DMZ zoning & configuring VLANs/routing/NAT with the firewalls as per the design.
- Worked extensively on Cisco Firewalls, Cisco PIX (506E/515E/525/) & ASA 5500(5510/5540) Series
- Knowledge in preparing Technical Documentation and presentations using Microsoft VISIO/Office.
- Worked on MPLS while ensuring secure networking, improving the network performance by prioritizing network traffic and allocating bandwidth according to usage and service requirements.
- Worked on Multicast to use the bandwidth more effectively while reducing the load on the sender.
- Knowledge of WAN Optimization Technology, Riverbed.
- Configuring Cisco Wireless Controllers and AP’s.
- Configuring Cisco WAAS.
- Configuring the Network Admission Control (NAC).
- Experiences in SDN open flow testing.
- Excellent customer management/resolution, problem solving, debugging skills and capable of quickly learning, effectively analyzes results and implement and delivering solutions as an individual and as part of a team.
- Hands on Experience testing iRules using Browser(IE), HTTP watch
TECHNICAL SKILLS
Networking Technologies: LAN/WAN Architecture, TCP/IP, Frame Relay, VPN, VLAN, VTP, NAT, PAT, STP, RSTP, PVST, MSTP
Networking Hardware: Cisco Switches, Cisco Routers, ASA/Pix firewalls, Vmware, Ironport
Routing Protocols: OSPF, IGRP, EIGRP, RIP, MPLS, IS-IS, BGP, Multicasting
Security Technologies: PAP, CHAP, Cisco PIX, Blue Coat
Network Monitoring: Cisco Works 2000, Wire Shark, HRPing
Operating Systems: Windows 7, Vista, XP, 2000, LINUX, Cisco IOS, IOS XR
Routers: CISCO 2600, 2800,3600,3800,7200, Juniper M & T Series, Cisco CRS-1, CRS -3, GSR
Load Balancers: Cisco CSM, F5 Networks (BIG-IP)
Capacity & performance: IXIA, Spirent, Cisco works, IPerf, IXChariot
Switches: CISCO 2900, 3500,4500,5000,6500, Nexus 7k,5k,2k
Programming Languages: C, C++, Perl, VB Script, Power Shell, Python, SQL
Simulation Tools: Qualnet Developer, OPNET IT GURU, OPNET Modelar, Cadence
Firewalls: juniper net screen(500/5200), Juniper SRX (650/3600), Pix(525/535), ASA (5520/5550/5580 ), McAfee Web Gateway
AAA Architecture: TACACS+, RADIUS, Cisco ACS
Features & Services: IOS and Features, HSRP, GLBP,IPAM IRDP, NAT, SNMP, SYSLOG, NTP, DHCP, CDP, DNS, TFTP and FTP Management, Open Stack, IVR’s, HLD and LLD documents, Dell equal logics
PROFESSIONAL EXPERIENCE
Confidential, Fishers, IN
Sr. Network Engineer
Responsibilities:
- Configuring Static, IGRP, EIGRP, BGP and OSPF Routing Protocols on Cisco1600, 2600, 2800, 3600, 7300 series Routers.
- Responsible for entire company network infrastructure that includes Cisco Switches, Routers, Firewalls, Access Points, Servers and PBX.
- Responsible for installation, maintenance, and service of various PBX systems and VoIP system
- Configured Site to Site IPsec VPN tunnels to peer with different clients and each of client having different specifications of Phase 1 and Phase 2 policies using Cisco ASA 5500 series firewalls.
- Configured Easy VPN server and SSL VPN to facilitate various employees’ access internal servers and resources with access restrictions.
- Installation & Maintenance of Juniper switches routers &firewalls.
- Building the VPN tunnel and VPN encryption.
- Configuring BGP, MPLS in Cisco IOS XR.
- Enabled STP attack mitigation (BPDU Guard, Root Guard), using MD5 authentication for VTP, disabling all unused ports and putting them in unused VLAN.
- Configured various LAN switches such as CISCO CAT 2900, 3550, 4500, 6509 switches and Access layer switches such as Cisco 4510, 4948, 4507 switches for VLAN, Fast Ether Channel configuration.
- Implemented VPC, VDC on Nexus Switches and also configured FEX.
- Implementation of Access Lists for allowing/blocking desired traffic.
- Design, and configuring of OSPF, BGP on Juniper Routers and SRX Firewalls
- Provided firewall policy configuration and services with Juniper SRX 240 & 650 service gateways.
- Configuration and extension of VLAN from one network segment to their segment between Different vendor switches (Cisco, Juniper)
- Configured inside ACL, outside ACL, inside/outside interfaces.
- Configuring VLANs/routing/NATing with the firewalls as per the network design.
- Configured EBGP load balancing and ensured stability of BGP peering interfaces.
- Worked on Route-Reflectors to troubleshoot BGP issues related to customer route prefixes also route filtering using Route-maps.
- Deploying and decommission of VLANs on core ASR 9K, Nexus 7K, 5K and its downstream devices
- Configuration and troubleshooting of CSM, integration with ASA devices.
- Worked extensively in Configuring, Monitoring and Troubleshooting Cisco ASA 5500.
- Provided proactive threat defense with ASA that stops attacks before they spread through the network.
- Designed and implemented DMZ for Web servers, Mail servers & FTP Servers using Cisco ASA5500 Firewalls, CISCO PIX 506, PIX515.
- Worked extensively on Cisco ASA 5500(5510/5540) Series, experience with convert PIX rules over to the Cisco ASA solution.
- Configuring RIP, OSPF and Static routing on JuniperM and MX series Routers
- Worked on datacenter migration of existing PIX firewall to ASA firewall, PIX OS upgrade from 6.3 to 7.0.
- Worked extensively on Cisco ASA 5500(5510/5540) Series, experience with convert datacenter PIX rules over to the Cisco ASA solution.
- Mapped, Network Diagrams and physical identification in MS Visio.
- Updated documentation as necessary.
- Preformed IOS upgrades on Cisco routers and switches.
- Worked with engineering team to resolve tickets and troubleshoot L3/L2 problems efficiently.
- Server load-balancing utilizing F5 LTM-BigIP, including, AFM, APM and ASM modules.
- Maintaining and load balancing: web server traffic for customers using F5 load balancers.
- Worked as a team with other engineers to design, install, implement, and configure ASR 9K Network for interconnectivity, and egress redundancy.
- Troubleshoot basic BGP routing issues on Cisco 12xxx and Cisco CRS series.
- Propose network redesign based on client hardware guidelines, network policies and individual site’s unique characteristics.
- Implementing, troubleshooting and maintaining AP, WLC, WCS, NCS.
Confidential, Palo Alto, CA
Sr. Network Engineer
Responsibilities:
- Experience with configuring Nexus 2000 Fabric Extender (FEX) which acts as a remote line card (module) for the Nexus 5000.
- Worked on F5 LTM, GTM series like 6400, 6800, 8800 for the corporate applications and their availability
- Primary responsibility is to design and deploy various network security & High Availability products lick Cisco ASA other security products.
- Experience with converting 6500 to Cisco Nexus in the data Center environment.
- Configuring RIP, OSPF and Static routing on JuniperM and MX series Routers.
- Experience configuring Virtual Device Context in Nexus 7010.
- Configured VLANs with tagging. Configured Trunk groups, ether channels, and Spanning tree for creating Access/distribution and core layer switching architecture.
- Design, implementation and operational support of routing/switching protocols in complex environments including BGP, OSPF, EIGRP, Spanning Tree, 802.1q, etc.
- Developed Visio Documentation to give complete picture of network design for each building.
- Experience in Configuring, upgrading and verifying the NX-OS operation system
- Experience with configuring OTV between the data centers as a layer 2 extension.
- Communicating with engineers on operational issues, making recommendations to engineers about network architectures, performing complex problem solving during critical network outages.
- Experience with upgrading NX-OS to version 6.1 on the cisco Nexus 7010
- Configuration & troubleshooting of routing protocols: MP-BGP, OSPF, LDP, EIGRP, RIP, BGP v4.
- Deploying and decommissioning of Cisco Routers, Cisco switches and their respective software upgrades
- Performing the Firewall ACL requests change for various clients by collecting source and destination details
- Working with Network Design and implementation teams on various projects across North America.
- Experience with manipulating various BGP attributes such as Local Preference, MED, Extended Communities, Route-Reflector clusters, Route-maps and route policy implementation.
- Identify, design and implement flexible, responsive, and secure technology services.
- Experience innetworksecurity in a telecommunications environment.
- Performed OSPF, BGP, DHCP Profile, HSRP, IPV6, Bundle Ethernet implementation on ASR 9K redundant pair.
- Configuring rules and Maintaining Palo Alto Firewalls & Analysis of firewall logs using various tools.
- Replaced aging Checkpoint firewall architecture with new next generation Palo Alto appliances serving as firewalls and URL and application inspection.
- Configured CIDR IP RIP, PPP, BGP, MPLS and OSPF routing.
- Performing troubleshooting on slow network connectivity issues, routing issues that involves OSPF, BGP and identifying the root cause of the issues.
- Configure Corporate, Wireless and Lab Devices which includes Bandwidth Upgrade, Adding New Devices, Decom the Devices, Testing( Pilot ) .
- Converting CatOS to Cisco IOS Config Conversion on Access, distribution & Core layer switches
- Planned for the implementation of a new architecture at legacy Web Hosting Data Centers
- Experience with converting Cisco 6500 to Cisco Nexus in the data center environment.
- Experience working with Nexus 7010, 5020, 2148, 2248 devices.
- Deploying and decommission of VLANs on core ASR 9K, Nexus 7K, 5K and its downstream devices.
- Implemented DHCP, DNS, IPAM configuration on the servers to allocate, resolute the ip addresses from Subnet.
Environment: Cisco 4400/7200/3900/7600 Routers, Cisco3650, 6800/6500/3560 Switches, Nexus 7k/5k RIP, OSPF, BGP, EIGRP, LAN, WAN, CISCO ASA 5500, HSRP, VRRP, GLBP, VLAN, QoS, Wireshark, Solarwinds.
Confidential, San Ramon, CA
Network Analyst
Responsibilities:
- Installing, Configuring and troubleshooting Cisco Routers (ASR1002X, 3945, 3845, 2800, 3600) and Switches to perform functions at the Access, Distribution, and Core layers.
- Configuring, upgrading and deployment of Nexus 7010, 5596 and 2248.
- Installation and deployment of new class 9X and class 10 Server farms in multiple silos.
- Designing and installing new branch network systems. Resolving network issues, running test scripts and preparing network documentation.
- Working with Cisco Nexus 2248 Fabric Extender and Nexus 5500 series to provide a Flexible Access Solution for datacenter access architecture.
- Ensuring problems are satisfactorily resolved in a timely manner with focus in providing high level of support for all customers.
- Working with wireless technologies troubleshooting and configuration.
- Working with BGP, OSPF protocols in MPLS Cloud.
- Establishing VPN Tunnels using IPSec encryption standards and also configuring and implementing site-to-site VPN, Remote VPN.
- Work with Engineering on Server Farm refresh project on consolidation and increasing the bandwidth on Server Access silos.
- Modified internal infrastructure by adding switches to support server farms and added servers to existing DMZ environments to support new and existing application platforms.
- Configure BGP features such as as-override, Local pre, EBGP load sharing on client connections
- Configured and resolved various OSPF issues in an OSPF multi area environment between multiple branch routers.
- Working with Juniper JUNOS on M and MX series routers.
- Providing daily network support for national wide area network consisting of MPLS, VPN and point-to-point site.
- Designed & implemented virtualization hardware & software standards.
- Developed operations & maintenance routines for all VMware environments
- Configuring HSRP between the 3845 router pairs of Gateway redundancy for the client desktops.
- Configuring GLBP, VLAN Trunking 802.1Q, STP, Port security on Catalyst 6500 switches.
- Responsible for service request tickets generated by the helpdesk in all phases such as troubleshooting, maintenance, upgrades, patches and fixes with all around technical support.
- Configuring, Monitoring and Troubleshooting Cisco’s ASA 5500 security appliance, Failover DMZ zoning and configuring VLANs/routing/NATing with the firewalls as per the design.
- Providing Level 3 support to customers, resolving issues by attending to conference calls.
- Configuring BGP, MPLS in Cisco IOS XR.
- Configuring multiple route reflectors within a cluster.
- Working on Confidential open view map for Network Management System and Ticketing.
- Working on a broad range of topics such as routing and switching, planning and implementation, large-scale high-visibility outages, change management coordination, proactive monitoring and maintenance, disaster recovery exercise and core network repairs.
- Involved in L2/L3 Switching technology administration including creating and maintaining VLANs, Port security, Trunking, STP, Inter Vlan Routing, LAN security.
- Working on security levels with RADIUS, TACACS+.
Environment: Cisco 2948/3560/4500/3560/3750/3550/3500/ switches and Cisco 3640/ 00/3845/3600/2800 routers, Cisco Nexus 7K/5K, Cisco ASA5510, Checkpoint, Aruba Controllers 6000, 3600, 3400,650: windows server 2003/2008: F5 BIGIP LTM.
Confidential, San Jose, CA
Network Engineer
Responsibilities:
- Troubleshoot traffic passing managed firewalls via logs and packet captures
- Configured and resolved various OSPF issues in an OSPF multi area environment.
- Managed fast Layer 3 switched/routed LAN/WAN infrastructure as a part of Network team. The LAN consisted of Cisco campus model of Cisco 3550 at access layer, Cisco 6513 at distribution/core layer.
- Worked with telecom vendors in regards to network fault isolation.
- Hands-on experience with WAN (ATM/Frame Relay), Routers, Switches, TCP/IP, Routing Protocols (BGP/OSPF), and IP addressing.
- Configured CIDR IP RIP, PPP, BGP and OSPF routing.
- Involved in the configuration & troubleshooting of routing protocols: MP-BGP, OSPF, MPLS, LDP, EIGRP, RIP, BGP v4. Configured IP access filter policies.
- Management and Deployment on Checkpoint Firewall.
- Use Checkpoint to establish Point-to-Point tunnels.
- Ability to use NAT and Firewall security policies in Checkpoint.
- Experience In working on Configuring Multicast.
- Identify, design and implement flexible, responsive, and secure technology services
- Experience with Firewall Administration, Rule Analysis, Rule Modification
- Modified internal infrastructure by adding switches to support server farms and added servers to existing DMZ environments to support new and existing application platforms.
- Deployed 7613 as PE and CE router and Configured and troubleshoot the Edge Routers.
- Excellent troubleshooting knowledge on T1, T3, OC-3 and OC-12.
- Configured egress and ingress queues for ISP facing routers using CBWFQ.
- Generating RCA (Root Cause Analysis) for critical issues of layer1/layer2/layer3 problems.
- Configuration and troubleshooting of Cisco catalyst 6509, 7613 with supervisor cards.
- Experience with implementing and maintaining network monitoring systems (Cisco works and Confidential Open view) and experience with developing complex network design documentation and presentations using VISIO
- Estimated Project costs and created documentation for project funding approvals.
Environment: Net Flow,TACACS,EIGRP,RIP,OSPF,BGP,VPN,MPLS,CSM,SUP720, Ether Channels, Cisco 7200/3845/3600/2800 routers, Fluke and Sniffer, Cisco 6509/ 3750/3550/3500/2950 switches, Checkpoint firewalls (SPLAT).
Confidential
System/Network Administrator
Responsibilities:
- Configured and supported TCP/IP networks.
- Monitored the network with Cisco Works 2000.
- Documented the design, implementation and troubleshooting procedures.
- Configured and troubleshoot VLAN, VTP, STP and Trunks.
- Responsible for procurement and installation of H/W, network drives and other IT infrastructure.
- Network Administrator responsible for the full Planning, designing, installation and administration of the Corporate WAN (wide area network).
- Worked on the datacenter environment, with routers and switches.
- Configuration, Management, Troubleshooting of Network devices (Routers, Switches, Firewalls, Servers, DSL Modems etc.). Maintained the Telecommunication Connectivity using DSL and T1 Lines.
- Maintained complex LAN/WAN networks with several VLANS and provided support for routing protocols.
- Managed IP addressing and implemented IP Access Lists.
- Evaluate and recommend inter-connectivity hardware, software, and services to fulfill various businesses needs as requirements develop.
- Worked on Routers Cisco 2620, 3750 and 2950 Switches & Link sys wireless access points.
Environment: TCP/IP networks, Cisco Works 2000, VLAN, VTP, STP, Trunks H/W, network drives, DSL, T1 Lines LAN, WAN, VLANs, IP Access List, Cisco 2620, 3750, 2950 and Link sys