PROFESSIONAL SUMMARY:

• 8 years of experience in Cisco Networking, Security which includes designing, Deployment and providing network support, installation and analysis for a broad range of LAN / WAN protocols.
• Expertise with Installation, configuration and troubleshooting of Cisco Routers (ASR 9K,1K, Meraki MX 84, MX 400 CISCO ISR 4K,1K 7600, 7200, 3800, 3600, 2800, 2600, 1800 series). and Juniper Routers (MX, PTX, ACX, CTP, T4000 - series).
• Expertise with Installation, configuration and maintenance of Cisco Switches (6500, 4500, 4900, 3400ME, 3750, 3560, 2960, 1900 series); Nexus 2000, 5000 and 7000 series switches while implementing advanced features like VDC, VPC, OTV and Fabric Path and Juniper EX Switches (2200, 2300, 3300, 4200,4300, 4550, 9200), QFX Switches (5100,5200,10000), OCX1100 series.
• Lead the IWAN (Intelligent WAN - Cisco SD-WAN) and VPN (Secure Transport) for enterprise networks working with Cisco ISR 4k,1k routers.
• Strong hands on experience on Cisco Routing, Switching and Security with Cisco hardware/software.
• In-depth knowledge and experience on IP Addressing, Subnetting, VLSM, and ARP, Ping concept. Working knowledge on OSI model, TCP/IP, 802.1q.
• Hands on experience in configuration and troubleshooting of Layer 3 protocols (ISIS, OSPF, EIGRP, BGP and RIP) and Layer 2 features (VLAN, PORT SECURITY 802.1X, STP, RSTP, MST, VTP, ARP, Port Security, HSRP, VRRP, GLBP and IGMP).
• Experience in Design and configuring of OSPF, BGP on Juniper Routers (MX960, MX480).
• Expertise in installing configuring and troubleshooting Juniper Routers (E, J, M and T-series).
• Knowledge of JUNOS platform and worked with JUNOS upgrade of Juniper devices.
• Expertise in network protocols, Firewalls and Communication Network design.
• Advanced knowledge, design, installation, configuration, maintenance and administration of Juniper SRX Firewall, Juniper EX and Juniper MX devices.
• Strong troubleshooting skills using Packet capture in Cisco devices and FW monitor and TCP dump in Checkpoint devices and analyzing them in Wire shark.
• Deploying and decommission of VLANs on core ASR 9K, Nexus 9K, 7K, 5K and its downstream devices and also configure 2k, 3k,7k series Routers.
• Performed OSPF, BGP, HSRP, IPV6, Bundle Ethernet implementation on ASR 9K redundant pair.
• Expertise with Installation of Arista 7250QX series switches on Spine Platform. streamline provisioning and DE provisioning of IP addresses to newly created VMs by using Infoblox. update DNS records, and release IP addresses when the VMs are taken down by using Infoblox.
• Configured DACL on Cisco ISE for new user groups.
• Hands on experience with packet sniffer, TCP DUMP and Wire shark for packet monitoring.
• Analyzing traffic behaviors using Wireshark and Solar winds.
• Experience in monitoring, debugging, and resolving Cisco infrastructure issues like routing, Network Hardware/Software failure, configuration, WAN outages, and performance issues.
• Working experience on WAN technologies like MPLS, Frame Relay, PPP, HDLC, T1, DS3, ADCCP.
• Working experience on Cisco Virtual Office solution.
• Sound knowledge of Multicasting (IGMP, PIM), QOS (Queuing, Marking) and MPLS (LDP, L3VPN) and virtual port channel configuration.
• Experience in implementing site-to-site and remote access VPN Technologies using GRE, IPSEC & MPLS.
• Establishing VPN Tunnels using IPSec encryption standards and also configuring and implementing site-to-site VPN.
• Created detailed network documentation for LAN, WAN and Wireless environments.
• Troubleshot various tickets associated to tier 3 LAN, WAN and Wireless issues with Meraki MR42E.
• Responsible for wireless configuration, implementation of wireless solutions, and remote troubleshooting.
• Hands on Experience with Cisco Wireless Controllers 5500's and 2500's and coming to access points, worked on 3700's, 3500's and 1142 access points.
• Configured High availability, User ID on Palo Alto firewall.
• Configuring rules and Maintaining Palo Alto Firewalls & Analysis of firewall logs using various tools
• Editing and Changing Palo Alto Polices and Monitoring threats on firewalls
• Demonstrated experience in developing, implementing, auditing Checkpoint firewall (R77.30) configurations and analyzing, optimizing rule sets.
• Experience with convert Checkpoint VPN rules over to the Cisco ASA solution. Migration with both Checkpoint and Palo Alto rules.
• Extensive experience with Check Point and CISCO Security Firewall Configurations and network configurations.
• Strong TCP/IP understanding. Knowledge of debugging Check Point Firewall.
• Installed, Configured and currently maintaining Check Point Firewalls (R76 Gaia, R75.40, R75 and R70) in a Distributed Deployment and High Availability Redundancy Scenario.
• Implementation and administration of Check Point Firewalls & network Management.
• Experience in risk analysis, security policy, rules creation and modification of Cisco ASA networks.
• Experience in configuring, deploying and deployment of Cisco Security Manager (CSM) for management of ASA Firewall series.
• Designed, configured, implemented site-site VPN on Cisco ASA 5500 firewall.
• Experience in risk analysis, security policy, rules creation and modification of Cisco ASA networks.
• Worked on riverbed steel head CX/GX models.
• Worked on Deep Packet Inspection (DPI) with riverbed Steelhead platform
• Experience in configuring and Troubleshooting BIG-IP F5 load balancer LTM & GTM.
• Basic and advance F5 load balancer configurations, including migrating configurations from Cisco ACE to F5 and general troubleshooting of the F5 load balancers.
• Complete basic configurations on the F5 Big-IP LTMs and GTM load balancer on existing network to split traffic on web-servers.
• Complete understanding of basic and advance F5 load balancer configurations, including migrating configurations from Cisco ACE to F5 load balancer and general troubleshooting of the F5 load balancers.
• Responsible for general troubleshooting of the F5 load balancers. Extensive knowledge of Load balancing technology including health check options, I Rules implementation and licensing F5 Big-IP load balancer devices.

TECHNICAL SKILLS:

Cisco Platforms: Nexus 7K, 5K, 2K & 1K, Cisco routers (ASR( 9K,1K )ISR (4K,1K),7600,7200, 3900, 3600, 2800, 2600, 2500, 1800 series) & Cisco Catalyst switches (6500, 4900, 3750, 3500, 4500, 2900 series), CSR/ASR, IOS-XR

Juniper Platforms: SRX, MX, EX Series Routers and Switches

Networking Concepts: Access-lists, Routing, Switching, Subnetting, Designing, CSU/DSU, IPSec, VLAN, VPN, WEP, WAP, MPLS, VoIP, Bluetooth, Wi-Fi

Firewall: ASA Firewall (5505/5510), Checkpoint, SRX, Paloalto

Network Tools: Solar Winds, SNMP, Cisco Works, Wireshark, tcp dump, netflow, Splunk

Load Balancers: Cisco Ace, F5 Networks (Big-IP)

WAN technologies: Frame Relay, ISDN, Dmvpn, MPLS, leased lines & exposure to PPP, DS1, DS3, OC3, T1 /T3 & SONET

LAN technologies: Ethernet, Fast Ethernet, Gigabit Ethernet, Port- channel, VLANS, VTP, STP, RSTP, 802.1Q

Security Protocols: IKE, IPSEC, SSL-VPN

Networking Protocols: RIP, OSPF, EIGRP, BGP, STP, RSTP, VLANs, VTP, PAGP, LACP, MPLS, HSRP, VRRP, GLBP, TACACS+, Radius, AAA

Languages: Perl, C, C++, Python, SQL, HTML/DHTML, Anisible

Operating System: Windows 7/XP, MAC OS X, Windows Server 2008/2003, Linux, Unix

PROFESSIONAL EXPERIENCE:

Confidential, Foster City, CA

Sr Network Engineer

Responsibilities:

• Installing and configuration and troubleshooting of various Cisco switches like 2900 series, 2950 series, 3550 series, Nexus 5000, 7000 & 9000 series.
• Worked as a team with other engineers to design, install, implement, and configure ASR 9K Network for interconnectivity, and egress redundancy.
• Worked on the Cisco ASR 9010 and Cisco ASR 9912 Routers at CORE level.
• Deploying and decommission of VLANs on core ASR 9K, Nexus 9K, 7K, 5K and its downstream devices and also configure 2k, 3k,7k series Routers.
• Design and implementation engineer for data center with 365 customers and performing tech refresh on all End of Cycle and End of Support devices
• Migrated 7609 chassis with ASR 9010 chassis at core level and catalyst 6503 with Nexus 7k, 5k and 2k as fex extender in distribution level in data center.
• Configured and monitored network and enforce business policies through Cisco Intelligent WAN (IWAN). Using GUI.
• Worked on the Cisco IWan routers like Meraki MX (84,400).
• Configuration of cisco meraki wireless security MX (64H,84).
• Configured LACP, OSPF protocols on Arista 7250qx-64 switches.
• Monitored and Created Traffic Pattern on Arista 7250 switches using Open flow.
• Performed OSPF, BGP, HSRP, IPV6, Bundle Ethernet implementation on ASR 9K redundant pair.
• Routing related tasks included providing Cisco router configuration and change management, providing technical support for Cisco Router configurations and installation for Customer.
• Configuring IP RIP, EIGRP, OSPF and BGP. Configuring routing policy for BGP.
• Performed Configuration on ASR 9K Pairs includes HSRP, Bundle Ethernet.
• Switching related tasks included implementing VLANS and configuring ISL trunk on Fast-Ethernet channel between switches.
• Working with BGP, OSPF protocols in DMVPN, MPLS Cloud.
• Providing daily network support for national wide area network consisting of DMVPN, MPLS, VPN and point-to-point site.
• Involved in L2/L3 Switching technology administration including creating and maintaining VLANs, Port security, TRUNKING, STP, Inter VLAN Routing, LAN security.
• Multi-vendor Hybrid clouds management Using infoblox management tools.
• Improved the Datacenter efficiency by Infoblox IP address management in seconds. integrated network services include WAN and application optimization, unified communications, and software-defined WAN.
• Deployed Cisco ISE integration with LDAP for domain user authentication.
• Responsible for wireless configuration, implementation of wireless solutions, and remote troubleshooting.
• Configuring static NAT, dynamic NAT, inside Global Address Overloading, TCP overload distribution, Overlapping Address Translation.
• Worked closely with development teams and performance test engineers for EC2 size optimization and Docker build containers.
• Used Docker to create and manage containers to simplify the creation of highly distributed systems by allowing multiple applications, worker tasks and other processes to run autonomously on a single physical machine or across multiple virtual machines.
• Used VMware to manage Linux, UNIX, Windows VMs on various hosts.
• Configuration, Troubleshooting and Maintenance of Palo Alto Firewalls (160+ firewalls) - PA200, PA2000 series, PA3000 series, PA4000 series and PA5000 series.
• Worked on User-ID to collect user-mapping information.
• Used App-ID to determine that encryption (SSL or SSH) is in use.
• Worked on App-ID to match Traffic against policy to check whether it is allowed on the network.
• Configuring rules and Maintaining Palo Alto Firewalls & Analysis of firewall logs using various tools.
• Configured the Firepower chassis in clustered and then after HA mode to meet the clients ever changing design requirements.
• Review the client's Palo Alto configuration and map it to Cisco Fire power 9300 features.
• Use configuration text files and screen shots with eventual access into the Palo Alto firewall to map objects, firewall rules, and NAT configuration to the Cisco world.
• Migrate 40 NAT statements from Palo Alto NAT logic to Cisco NAT logic and documentation in spreadsheet including Static and Dynamic NAT with customer MAC addresses on some interfaces.
• Editing and Changing Palo Alto Polices and Monitoring threats on firewalls.
• Analyzed traffic pattern and implemented URL filtering using the Palo Alto Firewall.
• Maintaining and Configuring Palo Alto Firewall Platform Panorama with Dual Authentication and User Authentication and User.
• Performed centralized control of next-generation firewalls at internet edge, in the data center, and in the private and public cloud deployments using Panorama 8.1.
• Experience with deployment of Palo Alto firewalls for different NAT, video conferencing traffic.
• Troubleshooting and configuring Palo Alto FW's 3060,3020 & 5060. secured all traffic flow between riverbed Steelheads over private MPLS and performed optimization for demanding security protocols such as SSL/TLS and HTTPS.
• Performed data streamlining, transport stream lining, application stream lining on riverbed steel head.
• Experience in configuring and Troubleshooting BIG-IP F5 load balancer LTM & GTM.
• Basic and advance F5 load balancer configurations, including migrating configurations from Cisco ACE to F5 and general troubleshooting of the F5 load balancers.
• Complete basic configurations on the F5 Big-IP LTMs and GTM load balancer on existing network to split traffic on web-servers.
• Complete understanding of basic and advance F5 load balancer configurations, including migrating configurations from Cisco ACE to F5 load balancer and general troubleshooting of the F5 load balancers in data center environment
• Responsible for general troubleshooting of the F5 load balancers. Extensive knowledge of Load balancing technology including health check options, I Rules implementation and licensing F5 Big-IP load balancer devices.
• Created detailed network documentation for LAN, WAN and Wireless environments
• Troubleshot various tickets associated to tier 3 LAN, WAN and Wireless issues

Environment: Router series (ASR 9k,1k,Isr 4k, 2800, 3800, 7200) and switch series (Nexus 9k,7k,5k,2k,3750, 3550, 4509E, 6509E), Palo Alto (PA-4000/PA-2000/PA-3020), Routing Protocols (EIGRP, OSPF, BGP), Switching protocols (VTP, STP), Site to Site VPN, Remote Access VPN, SDN, VMware, Cisco ISE, Linux, Docker.

Confidential, Milwaukee, WI

Sr Network Engineer

Responsibilities:

• Design and implement complete network and device required to connect different networks.
• Design, configure, and administer Juniper MX routers, SRX Firewalls, Cisco routers & switches.
• Design and configuring of OSPF, BGP on Juniper Router and SRX Firewalls
• Configuration and management of network routers (Cisco 6500, 7K; Juniper MX) and switches (Cisco 3850, 3750X, 3750, 3550; Juniper EX).
• Experience in troubleshooting VLAN, STP (Spanning tree protocol), & Switch Trunk and IP subnet issues
• Designed VLAN’s and VTP topology, troubleshooting IP addressing issues and Updating IOS, Junos images.
• Configuring HSRP between the 3845 router pairs of Gateway redundancy for the client desktops.
• Configuring VLAN TRUNKING 802.1Q, STP, Port security on Catalyst 6500, EX switches
• Routing related tasks included providing Juniper router configuration and change management, providing technical support for Juniper Router configurations and installation for Customer.
• Configuring IP RIP, EIGRP, OSPF and BGP. Configuring routing policy for BGP.
• Configuration and troubleshooting link state protocols like OSPF in multiple areas.
• Experience in trouble shooting STP (Spanning tree protocol), & Switch Trunk and IP subnet issues.
• Designed VLAN’s and VTP topology, troubleshooting IP addressing issues and Updating IOS images.
• Implementing, configuring, and troubleshooting various routing protocols like EIGRP, OSPF, and BGP.
• Assisted in MPLS migrations, implemented a backup for the existing WAN connection using site-to-site IP sec VPN tunnels.
• Establishing VPN Tunnels using IPSec encryption standards and also configuring and implementing site-to-site VPN.
• VPN Configuration for Remote client login with IPSec Implementation.
• Managed VPN, IPSec, Endpoint-Security, status policy, and Application control, IPS, Monitoring, Anti-Spam, Smart Provisioning and DLP using Checkpoint Firewalls.
• Experience in Cisco switches and routers: IP addressing, WAN configurations, LAN cabling in compliance with CAT6 standards
• Configuring access servers to perform reverse telnet and configuring AAA.
• Involved incomplete LAN, WAN, Extranet redesign (including IP address planning, designing, installation, pre-configuration of network equipment, testing, and maintenance) in both Campus and Branch networks.
• Experience with Checkpoint and Juniper SSG/SRX Firewall administration, as well as rules and policy pushes.
• Experience in installing, configuring and troubleshooting of Checkpoint Firewall and Juniper SRX series.
• Migrated with a team from a predominantly Checkpoint environment to Juniper SRX240.
• Troubleshot and configured the Juniper NetScreen firewalls (SRX).
• Creating and provisioning Juniper SRX firewall policies in (SRX210, SRX240).
• Hands on Experience with Cisco Wireless Controllers 5500's and 2500's and coming to access points, worked on 3700's, 3500's and 1142 access points.
• Configuring and implementing F5 BIG-IP, LTM, GTM load balancers to maintain global and local traffic.
• Responsible for general troubleshooting of the F5 load balancers. Extensive knowledge of Load balancing technology including health check options, I Rules implementation and licensing F5 Big-IP load balancer devices.

Environment: Ciscoswitches 2948/3560/3560/2960/6500 , Juniper Exs witches and Cisco routers - 7200/3845/3600/2800 , Juniper Mx routers, Checkpoint, SRX firewalls F5 BIGIP LTM, RIP, OSPF, BGP, EIGRP, LAN, WAN, VPN, HSRP

Confidential, Englewood, CO

Network Engineer

Responsibilities:

• Configured OSPF over frame relay networks for NBMA and point to multipoint strategies
• Involved in troubleshooting IP addressing issues and Updating IOS images using TFTP.
• Maintained redundancy on Cisco 2600, 2800 and 3600 routers with HSRP.
• Provided redundancy in a multi homed Border Gateway Protocol (BGP) network by tunings AS-path
• Hand on experience the configuration and implementation of various Cisco Routers and L2 Switches.
• Assisted in troubleshooting LAN connectivity and hardware issues in the network of 500 hosts.
• Studied and analyzed client requirements to provide solutions for network design, configuration, administration, and security.
• Modified internal infrastructure by adding switches to support server farms and added servers to existing DMZ environments to support new and existing application platforms.
• Built site-to-site IPSec VPNs over Frame-relay & MPLS circuits on various models of Cisco routers to facilitate adding new business partners to new and existing infrastructures.
• Analyzed customer application and bandwidth requirements, ordered hardware and circuits, and built cost-effective network solutions to accommodate customer requirements and project scope.
• Created a backup and recovery policy for software application and verified peripherals are working properly.
• Possess good experience in configuring and troubleshooting WAN technologies like MPLS, T1, T3, DS3 and ISDN.
• Responsible for implementing QOS parameter on switching configuration.
• Involved in Design and Implementation of complex networks related to extranet clients.
• Troubleshooting the Network Routing protocols (BGP, EIGRP and OSPF) during the Migrations and new client connections.
• Manage operational monitoring of equipment capacity/utilization and evaluate the need for upgrades; develop methods for gathering data needed to monitor hardware, software, and communications network performance.
• Troubleshoot problems on a day to day basis & provide solutions that would fix the problems within their Network.
• Monitor performance of network and servers to identify potential problems and bottleneck.
• Performed RIP & OSPF routing protocol administration.
• Interacted with support services to reduce the downtime on leased lines.
• Designed and implemented VLAN using Cisco switch catalyst 1900, 2900, 5000 & 6000 series.
• Responsible for Cisco ASA firewall administration, rule analysis & modification
• Configured VPN, ACL, and NAT in the Cisco ASA 5550 firewall to allow only authorized users to access the servers of the internal network
• Implementation of Site-to-Site VPNs and DMVPN over the internet using IKE Phase 1 and IKE Phase 2 based on traffic with ASA 5500 series Firewalls
• Involved in the redistribution into OSPF on the core ASA firewall.
• Implemented Access Control List (ACL) on inside and outside interfaces of Firewall
• Configured routers and coordinated with LD Carriers and LECs to turn-up new WAN circuits. Configuring, Maintaining the Routers and Switches and Implementation of RIP, EIGRP, OSPF, BGP routing protocols and trouble shooting.
• Maintenance and Troubleshooting of connectivity problems using Ping, Trace route.
• Daily responsibilities included monitoring remote site using network management tools, assisted in design guidance for infrastructure upgrade & help LAN administrator with backbone connection and connectivity issue Other responsibilities included documentation and support other teams
• Worked towards the key areas of the project to meet SLA’s and to ensure business continuity. Involved in meetings with engineering teams to prepare the configurations according to the requirement.
• Creating change tickets according to the scheduled network changes and implementing the changes.

Environment: Cisco 3750/3550/3500/2960 switches and Cisco 3640/ 00/3845/3600/2800 routers, Cisco ASA5510, F5 Load Balancer, Cisco ASA.

Confidential

Network Engineer

Responsibilities:

• Configuring/Troubleshoot issues with the following types of routers Cisco (7200, 1700, 2600 and 3500 series), to include: bridging, switching, routing, Ethernet, NAT, and DHCP, as well as assisting with customer LAN /MAN, router/firewalls.
• Wrote IOS and CAT OS upgrade procedures and Pre/Post checks for customer production upgrades.
• Excellent Troubleshooting Skills and Customer Centric approach.
• Switches Replace branch hardware with new 2851 routers and 2960 switches.
• Implemented Cisco Wireless Access Points and WLC’s at various corporate sites fort 11n Infrastructure and its legacy technologies.
• Provided estimated bandwidth requirements for data replication, to best determine adequate timing for migration service levels
• Configuring HSRP between VLANs, Configuring Ether-Channels, Port Channel on 6500 catalyst.
• Configuring, managing and troubleshooting networks using routing protocols like RIP, EIGRP and OSPF (Single Area and Multi Area).
• Configured OSPF on CISCO devices with multiple routing processes and redistributed them. Tested and hands on experience in multi area OSPF topologies.
• Configured VLANs with 802.1q tagging. Configured Trunk groups, ether channels, and Spanning tree for creating Access/distribution and core layer switching architecture.
• Assisted in network engineering efforts consistent with the infrastructure of an Internet Service Provider and support of such network services. Helped in designing and implementation of VLAN for the new users.
• Installation and Configuration of various types of Personal Computers and Printers. Installation of different operating systems on Intel based PC's.
• Installed Hard disks, Floppy drives, CD Drives, Sound Blaster cards, CPU, Memory, Power supply unit, Network card, Video graphics card, Hard disk controller card on PC systems.
• Troubleshooting of personal computers. On line Support to customers concerning their computer problems.
• Assisted with troubleshooting all network issues with routers and switches when necessary and consulted with on call tech as needed for client.
• Monitor, troubleshoot, test and resolve Frame Relay, ATM, MLPPP, PPP, and Dial-up.
• Actively participated in upgrading fast Ethernet, Layer 3 switched/routed LAN infrastructure from Cisco 3640 to Cisco 2811 routers and switches at access level to 2950, 3550.
• Configuring Vlan’s, VTP’s, enabling trunks between switches.

Environment: Cisco 3640/ 00/3845/3600/2800 Routers & 3750/3550/3500/2960 Switches, Checkpoint firewall, BGP, OSPF, EIGRP, VLAN, VTP, STP, MS Visio, Wireshark, VLSM and Access-lists