SUMMARY:

• 8 years of IT experience in design, development, implementation, troubleshooting and maintenance of complex Network & Security devices, Network Security, Linux Kernel Programming.
• Expertise in network protocols, Firewalls and Communication Network design.
• Experience with Troubleshooting tools for example protocol analyzers, load generators & network traces.
• Working knowledge of frame relay, MPLS services, OSPF, BGP and EIGRP routing protocols, NATing, sub - netting, also including DNS, WINS, LDAP, DHCP, http, HTML, HTTPS, TCP/IP, UDP, SNMP, RIP, IPSEC, PPTP, VLAN, STP (Spanning tree Protocol), RSTP & Multicasting protocols
• Designing, Implementing and Troubleshooting Cisco 3750, 3550, 3560, 2924, (6509, 6513, 6506) 6500 series catalyst switches.
• Knowledge and experience with F5 ADC, Palo Alto, Dell Force10, Brocade, Meriyaki/Aruba WLAN, Splunk, TACACS+.
• Experience with design and implementation of Virtual Switching System (VSS).
• Implementing 3750 Stackable switches using Cisco Stack Wise technology. Experience to review and evaluate current and future design issues as required maintaining network integrity, efficient data flow.
• In-depth knowledge of Linux shell scripting.
• Knowledge on Network security including NAT/PAT, ACL, VPN Concentrator.
• Possess Hands-on experience with TCP/IP, LANs, WANs, and WLANs (WiFi)
• Possess hands-on experience with Cisco VPN Concentrators, F5 Fire pass SSL VPN, 6509 Core Datacenter designs.
• Strong knowledge of Cisco and Juniper software (IOS, IOS-XR, NX-OS and JunOS) and hardware.
• Well Experienced in configuring protocols HSRP, GLBP, VRRP, ICMP, IGMP, PPP, HDLC, PAP, CHAP, and SNMP.
• In-depth Cisco technology experience/knowledge in design, implementation, administration and support.
• Strong hands on experience in installing, configuring, and troubleshooting of Cisco 7600, 7200, 3800, 3600, 2800, 2600, 2500 and 1800 series Routers, Cisco Catalyst 6500, 4500, 3750, 2950 and 3500XL series switches.
• Exhibit superior talents in supervising wireless migration of more than 40 sites with multiple WLAN controllers and APs
• Advanced knowledge of OSI model, TCP/IP, Internet technologies, system security, firewall infrastructure, network architecture and Cisco network routing / switching (Layer 2 and 3) experience, including LAN and WAN, design and implementation which includes Layer 1 to Layer 7 experience
• Designing, Implementing and Troubleshooting Cisco Routers (2800,2900,3900,3800,7600) using Static, RIPv2, OSPF, EIGRP & experience with Checkpoint, Cisco ASA devices
• Well experienced in configuring gateway redundancy protocols like HSRP, GLBP.
• Experience on Juniper: EX-2200,EX-4200, EX-4500; MX-480, 960; M Series, SRX210, SRX240
• Worked on Load Balancer F5 LTM, GTM series like 6400, 6800, 8800 for the corporate applications and their availability.
• Experience on Network Security - Anomaly Detection in Attack Prevention System, Network and Host IPS/IDS, Cisco ASA firewall, Vulnerability scanning, Penetration testing, Buffer Overflows, Cross Site Scripting (CSS),
• Experience in implementing Cisco VoIP using CUCM
• Experience working with Nexus 7K, 5K, 2K devices.

TECHNICAL SKILLS:

Routers: Cisco 1800, 2600, 2800, 3700, 3800, 3900, 7200, 7600 series, ASR 9k, juniper ACX series routers.

Switches: Cisco Catalyst 3550, 3750, 4500, 6500 series & nexus 7k, 5k, 2k, 1000v, juniper Ex4200, Ex9208, ACX 1000

Load Balancer: Cisco CSS, F5 Networks (BIG-IP)

WAN Optimization: Cisco WAAS, PPP Multilink, Riverbed

Routing: OSPF, EIGRP, BGP, PBR, Route Filtering, Redistribution, Summarization, Static Routing

Switching: VLAN, VTP, STP, RPVST+, Inter VLAN routing & Multi-Layer Switching Layer 3 Switches, EtherChannels, Transparent Bridging

LAN: Fast Ethernet & Gigabit Ethernet.

WAN: Leased lines 64k - 155Mb (PPP / HDLC), Fiber Optic Circuits, Frame Relay, MPLS, DMVPN

Voice: Cisco call manager 8.x, 7.x

IP Telephony: VOIP, ISDN, PRI, Unified Call Manager

Wireless: Cisco 4400, 5500 Wireless Controller (WLC) and 3500, 3700 series Access Points

Firewalls: Cisco ASA, Juniper Netscreen & SRX, Palo Alto, Checkpoint FW s

Features & Services: IOS and Features, HSRP, GLBP, NAT, SNMP, SYSLOG, NTP, DHCP, CDP, DNS, FTP and FTP Management

Network Monitor Tool: MRTG, Netbrain & Solarwinds & Cisco Prime Infrastructure

Protocol Analyzer: Wireshark, Netflow

Ticketing tool & Data Center Tool: BMC Remedy 8 & Nlyte

Operating System: Windows ( XP, 7, 10), Cisco IOS/XR/XE, JunOS, Pan-OS

PROFESSIONAL EXPERIENCE:

Confidential, Montvale, NJ

Sr. Network Engineer /F5 Expert

Responsibilities:

• Involved in configuring and implementing of composite Network models consists of Cisco 7600, 7200, 3800 series routers and Cisco 2950, 3500, 5000, 6500 Series switches.
• Configured Nexus 7010 including NX-OS Virtual Port Channels, Nexus port profiles on NX-OS 6.2 and 5.0.2, Nexus VPC peer links.
• Experienced in providing a plan, designing and implementing the services for the enterprise class data center networks with leading technologies such as virtual port channel (VPc), VxLANs, Fabric path and Overlay Transport Virtualization (OTV) in NX-OS
• Strong networking capability and knowledge of different firewall platforms to help in random identification and isolation of issues during outages and incidents.
• Participated in the installation, configuration, post installation daily operational tasks, configuration, and deployment of Cisco Nexus equipment.
• Designed 10 gigabit networks using Cisco Nexus 7000 series switches, and Cisco 3800 series routers
• Maintenance of citrix-Netscalar 9800 load balancer to monitor the traffic at the servers end.
• Managed rules on Checkpoint NGX firewall.
• Managed VPN, IPSec, Endpoint-Security, status policy, Application control, IPS, Monitoring, Anti-Spam, Smart Provisioning, DLP using Checkpoint Firewalls
• Worked with Juno OS on EX Series switches.
• Worked with Cisco ACE GSS 4400 Series global site selector Appliances.
• Configuring and enable netflow on layer 3 ingress ports with defined active timers.
• Good working knowledge of common end user operating systems and internal/external DMARC identification.
• Configured OSPF redistribution and authentication with type 3 LSA filtering to prevent LSA flooding and Configured OSPF over frame relay networks for NBMA and point to multipoint strategies.
• Implemented traffic engineering on top of an existing Multiprotocol Label Switching (MPLS) network using Open Shortest Path First (OSPF).
• Worked on arista 7010-T and 7050-T 52 switches.
• Dealt with Aruba/cisco wireless accespoints 205 series supporting 802.11 ac.
• Setting Aruba Access to link distribution switch system and then to WLAN controller.
• Configured SMTP rules and policies to manage email routing through Iron Port C370.
• Used NetFlow Data statistics from NetFlow engine and export it to a NetFlow Collector for storage.
• Good knowledge on lexicon, regex, and content type filtering on Iron port
• Monitor the RSSI of the Aruba/cisco Access points and manage the Wireless control system.
• Supported a user base of more than 30000+ active accounts across multiple domains.
• Administered Windows server 2012 active directory and like creation and deletion of user accounts, managing access controls and domain structure configurations.
• Deployed, configured and implemented cisco 6800 catalyst switch.
• Dealt with monitoring and documenting the services in compliance to the SLA requirements as a NOC team member.
• Experience in working with Network automation tools and testing for network change and configuration management.
• Worked with HP Network Automation software that automates the complete operational lifecycle of network devices from provisioning to policy-based change management, compliance, security administration and assist with the security Audits.
• Provided redundancy in a multi homed Border Gateway Protocol (BGP) network by tunings AS-path.
• Worked on Juniper SRX 2500 to configure ssl vpn clients
• Experience working with Exchange 2010 SP3 for planning and deployment.
• Worked with Management tools like CSM and Cisco ACS.
• Worked with Cisco IOS, NX-IOS, IOS-XR.
• Worked with MPLS to improve quality of service (QoS) by defining LSPs that can meet specific service level agreements (SLAs) on traffic latency, jitter, packet loss and downtime.
• Worked on GUI and CLI monitoring for UCS data management using xml api
• Worked with Load balancing device like F5 Big-IP local traffic manager (LTM) 1600.
• Hands on experience in F5 LTM, GTM series like 6400, 6800, 8800 for the corporate applications and their availability
• Configuring various advanced features (Profiles, monitors, iRules, Redundancy, SSL Termination, Persistence, SNATs, HA on F5 BIGIP appliances SSL termination and initiation, Persistence, Digital Certificates, Executed various migration/upgrade projects across F5 and hands on with F5 BIGIP LTMs/GTM.
• Experienced in working with BIG-IP Edge Portal and BIG-IP Edge Client.
• Work with Load Balancing team to build connectivity to production and disaster recovery servers through F5 Big IP LTM load balancers
• Implemented Hot Standby Router Protocol (HSRP) by tuning parameters like preemption.
• Implemented various OSPF scenarios on networks consisting of 7600 routers.
• Configured policy based routing for BGP for delay sensitive applications.
• Negotiate VPN tunnels using IPSec encryption standards and configured and implemented site-to-site VPN, Remote VPN.
• Tuned BGP internal and external peers with manipulation of attributes (Weight, Origin and Local preference).
• Worked with Nagios for monitoring of network services (SMTP, POP3, HTTP, NNTP, ICMP, SNMP, FTP, SSH).
• Primary responsibility is to design and deploy various network security & High Availability products like Cisco ASA other security products.
• Installation of vBlock products for the virtualization.
• Provided full visibility and notification of authorized and unauthorized network access with integration of CISCO ASA/FWSM and NAC solution.
• Installed, configured and set security policies on cisco and checkpoint firewalls, VPN.
• Analyzed and tested network protocols (Ethernet, TCP/IP) using Wire shark tool.

Environment: Checkpoint-R65,R70,NGX,VPN,Solar Winds, IP, IPSEC, AAA-Radius, Tac-acs, ACS, SNMP, Infoblox, DNS, DHCP, OSPF Troubleshooting, BIG-IP F5-LTM-1600, 3600, GTM, Viprion, Active Directory, OSPF, EIGRP, Out-look servers,Nexus-7k,Cisco Routers-7600, 7200, 3800, Cisco Switches-2950, 3500, 5000, 6500,HSRP,GLBP,ACE-GSS-4400,VM-ware-ESXi-6,Vsphere,Vcenter,UCS

Confidential, Boston, MA

Network Engineer

Responsibilities:

• Worked extensively in Configuring, Monitoring and Troubleshooting Cisco ASA's 5585.
• Responsible for Cisco ASA firewall administration, Rule Analysis, Rule Modification.
• Implementation of Access Lists for allowing/blocking desired traffic.
• Packet capturing, troubleshooting on network problems, identifying and fixing problems.
• Experience working in Datacenters environment, configuration changes as per the needs of company.
• Support of Palo Alto for remote and mobile users and for analyzing files for malware in a separate (cloud-based) process.
• Experience in migration of VLANS.
• Performed Configuration on ASR 9K Pairs includes HSRP, Bundle Ethernet Config, Assigning DHCP profiles.
• Extensive Knowledge on the implementation of Cisco ASA 5500 series and checkpoint R 75 firewalls
• Configuring objects such as Load Balancer pools for local traffic management on F5 Load Balancers
• Configuring VLANs/routing/NATing with the firewalls as per the network design.
• Experience in establishing NIC bonding/ teaming, IP aliasing.
• Extensive Knowledge on the implementation of Cisco ASA 5500 series and checkpoint R 75 firewalls
• Deploying and decommission of VLANs on core ASR 9K, Nexus 9K, 7K, 5K and its downstream devices and also configure 2k, 3k,7k series Routers
• Configuring and resolving various OSPF issues in an OSPF multi area environment.
• Implemented, configured BGP WAN routing, converting OSPF routes to BGP (OSPF in local routing).
• Installed and maintained Cisco and F5 Load Balancer and documentation.
• Installing, configuring Cisco Catalyst switches 6500, 3750 & 3550 series and configured routing protocol OSPF, EIGRP, BGP with Access Control lists implemented as per Network Design.
• Implementing, configuring, and troubleshooting various routing protocols like RIPv2, EIGRP, OSPF, and BGP etc.
• Good knowledge in systems integration, software hardware emulation experience.
• Perform setup of test scenarios, both hardware and software components, and perform troubleshooting.
• Created documents for various platforms including Nexus 7k, ASR9k, and ASR1k enabling successful deployment of new devices on the network
• Configuring, implementing and troubleshooting VLAN’s, VTP, STP, Trunking, Ether channels.
• Designing, implementing LAN/WAN configurations on Cisco 5K, catalyst 6500 switches.
• Experience configuring Virtual Device Context in Nexus 7k series switch.
• Strong knowledge on networking concepts like TCP/IP, Routing and Switching.
• Designed, configured, implemented site-site VPN on cisco ASA 5500 firewall.
• Implemented, configured redundancy protocols HSRP, VRRP, GLBP for Default Gateway Redundancy.
• Experience with configuring Load Balancing methods in F5 LTM and also configured the virtual server.
• On Catalyst 6500 switches configured VLAN Routing
• Working with Checkpoints, ASA’s (Other Remote sites), Palo Alto’s FW’s
• Worked in projects converting P2P circuits into MPLS circuits, commissioning and decommissioning of the MPLS circuits.
• Performing network monitoring, providing analysis using various tools like Wire shark, Solar winds etc.
• QRF for transformed sites as per the client requirement.
• Provided proactive threat defense with ASA that stops attacks before they spread through the network.
• Replace branch hardware with new 2851 routers and 2960 switches.
• Designed, Validated and implemented LAN, WLAN & WAN solution to suite client’s needs.
• Configured and designed LAN networks with Access layer switches such as Cisco 4510, 4948, 4507 switches.
• Experience with Project documentation tools & implementing and monitoring systems. Experience with developing network design documentation and presentations using VISIO.

Environment: Cisco 2948/3560/4500/3560/3750/3550/3500/2960 6500 switches and Cisco 3640/1200/7200/3845/3600/2800 routers, Cisco Nexus 7K/5K/2K, Cisco ASA 500, Checkpoint, windows server 2003/2008: F5 BIGIP LTM, RIP, OSPF, BGP, EIGRP, LAN, WAN, VPN, HSRP

Confidential, CA

Network Engineer

Responsibilities:

• Management and D&I of a Vblock 540,340.
• Configuring Vdc, fex pinning, fex port-channel, port-channel, peer keep alive, peer link.
• Configuration of VPC, according to the costomer requiremnet as part of the logical build and Infrastructure services.
• Perform day to day admin level on VBLOCK.
• Providing KT on VBLOCK.
• Provide advance technical support on Confidential 's VBlock series systems.
• Implement VBLOCK into production
• Administration of vBlock Networking gear (Cisco UCS, Nexus 1KV, 2K, 5K and 7K), AMP Management switches (3560).
• Installing license according to the Customer requirements.
• Providing Knowledge Transfer of various components including Compute, Network and Database.
• Advanced Management to the clients of Vblocks.
• Investigate, evaluate and recommend new network products and architecture, maintain knowledge of emerging technologies for application to enterprise.
• Projects include Confidential Vblock System and Solution, Data Center Interconnect using OTV, LISP technology.
• Evaluation of Cisco Nexus Series of switches (Nexus 7K, 5k, 1k).
• Working on Multi vendor switches evaluation such-as Force 10, Juniper, Brocade.
• Cabling and verifing the vblock infastructure.
• Testing and verfing all the vblock hardware components and troubleshoot accordingly.
• Configuration of UCS and VMware Infrastructure part of the logical build and infrastructure services.
• Rack and stack Pre-configured new hardware and connect the circuits. Work with Carrier to test and turn-up circuits.
• Experience on working/troubleshooting with UCS.
• Knowledge on Amp servers and Hands on experience with MDS switches.
• Experience with migration of services from one data center to another data center.
• Hands on Experience with N2k, N3k, N5k, N7k.
• Troubleshooting issues related to VMware & UCS in deploying stage and install according to the client requirements.

Confidential, Meadows, IL

Network Engineer

Responsibilities:

• Involved in configuring IP Quality of service (QoS)
• Experienced in WAN environments, installing and troubleshooting data circuit problems (MPLS, T1)
• Involved in designing and applying QOS and policy map to 2800 series routers for all the branches
• Involved in designing GRE tunnels for encryption of data flow from source to destination
• Implementing VoIP solutions using SIP & H.323, also have sound knowledge of Avaya VoIP product
• Hands on experience with Cisco 3500, 3750, 4500, 6500 series equipment and configuring and deploying and fixing them with various modules like Gig card, VPN SPA card, WIC card.
• Hands-on experience on Checkpoint Firewall R70, Palo Alto and Cisco ASA 5500 firewalls.
• Experience on Check Point Firewalls NG, NGX R65, R70 and VDs (VMware Network).
• Experience in creating multiple policies and pushing them in to Checkpoint Firewall (Gateways) and hands on experience in managing the Checkpoint Management Server.
• Configuring BGP/OSPF routing policies and designs, worked on implementation strategies for the expansion of the MPLS VPN networks.
• Applying crypto maps and security keys for the branches, ISAKMP (Internet security association key management protocol) for establishing Security associations (SA) cryptographic keys.
• Experience with Project documentation tools & implementing and maintaining network monitoring systems (Cisco works & Solar winds) and experience with developing network design documentation and presentations using VISIO.
• Understanding & Implementation of IPSEC & GRE tunnels in VPN technology.
• Involved in designing L2VPN services, VPN-IPSEC authentication & encryption system.
• Experience in HSRP standby troubleshooting & Experience in configuring & upgrading of Cisco IOS.
• Implementing & Troubleshooting of T1 and CSU/DSU and data circuits.
• Have experience with Cisco Works LAN Management Solution.
• Experience in migration of Frame-relay based branches to MPLS based technology using multi-layer stackable switch like 6500 series and 2800 series router.
• Involved in design and implementation of Data Center Migration, worked on implementation strategies for the expansion of the MPLS VPN networks.

Confidential

Network Engineer

Responsibilities:

• Worked on Cisco 2500, 2600, 2800 series routers and 1900, 2900 series switches
• Replaced outdated Cisco switches and routers in existing Data center and installed new Cisco switches and routers.
• Designed the IP addressing scheme using VLSM and configured IP addressing Performed activities such as initial user account creation, established LAN connectivity, file and resource sharing management, internet connectivity, FAX and email service setup
• Expanded LAN to accommodate 200 plus users. Coordinated installation and repair work. Diagnosed and corrected clients network related issues
• Installed and configured LAN/WAN as per organizational / client requirements, governed by communication protocols
• Performed tasks that include Configuring and constant administration of Static routing, Default Routing & dynamic Routing Protocols like RIPv2, OSPF & EIGRP.
• Implemented dedicated VLAN ID for all trunk ports, set user ports to non-trunking, and deployed port security when possible for user ports for layer 2 security
• Worked to set up the TFTP server for backing up the IOS images and configuration files of Cisco Routers and Switches and troubleshooting the file servers.
• Performed network evaluations, troubleshooting a variety of network problems, and implementing various software and hardware upgrades efficient performance.
• Troubleshoot Cisco hardware: Inspected devices, Read device LEDs, loose connections, cards, IOS upgrade, switch configuration usage of Visual Switch Manager, Switch port configuration, Port monitoring.