SUMMARY:

• 8 years of experience in providing solutions, implementation, network designing, configurationof Cisco routers and switches, troubleshooting of complex networking system.
• Experience in designing, configuring, implementing and testing of LAN, WAN, Ethernet, Frame relay and IP routing protocols such as OSPF, IGRP, RIP, BGP, EIGRP.
• Experience in implementation, support and troubleshooting of VLAN’s including operational knowledge of spanning tree protocol (STP), VLAN Trunking, inter VLAN routing and ISL/802.1q.
• Worked on Cisco 2900, 3500, 4500, 5500, 6500, Cat 6509 series switches, Cisco 7200, 3800, 3600, 2800, 2600 series Router.
• Switch platforms Cisco Catalyst 2900, 3500, 3700, 4500 and 6500 Series
• Have Extensive knowledge of OSI and various network protocols (DNS, DHCP, TCP/IP, FTP, TFTP, UDP, ICMP, IPv4/IPv6, NFS, HTTP, SMTP etc.).
• Extensive and In - depth knowledge in Security, including VPN IPSEC and GRE
• Developed IT strategies, policies and procedures consistent with the businesses strategies and vision while effectively protecting: data integrity, security and limiting liability.
• Working knowledge in F5, Cisco ACE 4710 Load balancers.
• Manage maintain F5 Loadbalancer which include LTM 3400,4000, GTM
• Experience in skillful deployment of Layer-2 technologies like VLANS, VTP, STP, RSTP, Inter-VLAN routing, VLANTrunking, Ether Channels, VLAN access-maps and port security.
• Developed IT strategies, policies and procedures consistent with the businesses strategies and vision while effectively protecting: data integrity.
• Experience setting up IPSEC VPN between ASA Firewall and Router 3800
• Troubleshooting of routing protocols: MP-BGP, OSPF, LDP, EIGRP, RIP, BGP v4, MPLS.
• Worked on network analyzers like Wireshark to troubleshoot network issues.
• Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500/PIX security appliance, Failover DMZ zoning & configuring VLANs/routing/NAT with the firewalls as per the design.
• Well Experienced in configuring protocols HSRP, GLBP, VRRP, ICMP, PPP, HDLAC, PAP and CHAP.
• Excellent Analytical, Organizational problem solving & resolution skills.

TECHNICAL SKILLS:

Switches: CISCO 2900, 3500,4500,5000,6500, Nexus 7k,6k,5k,2k

Juniper: E series, J series and M series. Juniper SRX & VPN

Simulation Tools: OPNET IT GURU, OPNET Modelar, Silverpeak optimization

Web Technologies: HTML, XHTML, CSS.

Firewalls: Pix(525/535), ASA (5520/5550/5580 )

Networking Technologies: LAN/WAN Architecture, TCP/IP, Frame Relay, VPN, LACP, VLAN, VTP, SVI, NAT, PAT, STP, RSTP, PVST, MSTP,VPC,VPD.

Networking Hardware: Cisco Switches, Cisco Routers, PIX firewalls

OSPF, IGRP, EIGRP, RIP, MPLS, IS: IS, BGP, Redistribution, Multicasting

Security Technologies: Knowledge on Firewall, ASA, IP Sec,IPS/IDS, VPN & Cisco PIX.

Network Monitoring: Cisco Works 2000, Wire Shark, Solarwinds, Nagios, Collectd, Graphite

Operating Systems: Windows 7, Vista, XP, 2000, LINUX, Cisco IOS, IOS XR.

Network Simulators: GNS3, Packet Tracer

Routers: CISCO 2600, 2800,3600,3800,7200, Cisco CRS-1, CRS -3, GSR

Applications: MS Office, MS Visio

PROFESSIONAL EXPERIENCE:

Confidential, Northbrook, IL

Network Engineer

• Managing and configuring Cisco Switches and Firewalls independently.
• Monitoring network infrastructure using SNMP tools like HP Open view.
• Involved in configuration of Access Lists (ACL) for the proper network routing for the B2B network connectivity.
• Worked with customers in troubleshooting issues related to connectivity STP, VLANs, Inter-VLAN routing, VTP, Ether-Channels, Layer 2/3 switching and log messages.
• Dealt with NAT configuration and troubleshooting issues related to access list and DNS/DHCP issues within the LAN network.
• Evaluate, Plan, Test, and Deploy migration of DNS and DHCP to Infoblox Appliances.
• Hands on experience in troubleshooting of inter-VLAN routing and VLAN Trunking using 802.1Q.
• Configured switching technology such as VLAN Trunking802.1Q, STP (802.1d), and Port Security on Catalyst 6500, 3500 series switches.
• Designed 10 gigabit networks using Cisco Nexus 7000 series switches, Checkpoint NGX firewall and Cisco 3800 series routers.
• Performed OS upgrades &device replacements on several Cisco devices (6500, Nexus 2K, 3K, 5k,6k and 7k series switches).
• NEXUS 7000/6000/5000/2000 with Fabric Path Data Center design engineer for multi-segmented network including DMZ/B2B for Partner Networks and public facing environment in a collapsed core environment
• Configure fiber optic Direct Connect, IPSECVPN,anyconnect VPN and CDN to integrate DevOps and public cloud networking operations globally.
• Implemented VPN/IPSec tunnels for secured data transfer from all locations to core routers and then to application servers.
• Manage and maintain CUCM manager.
• Deploy and upgrade CUCM manager, Cube router and Gateway router.
• Design and configuring of OSPF, BGP on Cisco Routers.
• Ability to identify IPv4 address ranges, subnets, and other IPv4 addressing fundamentals required. Fundamentals include understanding of DHCP, NAT, PAT, and subnetting.
• Install, maintain and upgrade CheckPoint Clusters on various models (Standalone, Distributed, Full HA) and various product versions (GAIA, R65 - R77.30).
• Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500/PIX securityappliance, Failover DMZ zoning & configuring VLANs/routing/NATing with the firewalls as per the design.
• Re-engineer BGP routing (Default routing, AS PATH Attribute, IBGP and EBGP Sessions, Route Reflectors and Route Filters, Route Maps, IP Prefix-lists, AS-Path prepend, MED, Local Preference, Partial and full mesh peering, Aggregation) to load balance traffic across multiple ISPs links.
• Devised and executed major network upgrade project spanning more than 150 devices with varying complexities and roles, e.g. ASR1001, ASR1006, ASR9006, ME3600, ME3400, and C2960 platforms; Cisco IOS, Cisco IOS-XE, Cisco IOS-XR.
• Extensive working knowledge in BGP, OSPF, EIGRP, RIP, IS-IS, HSRP, L2/3 VPNs in IOS, IOS XE, and IOS XR platforms.
• Handles different networking platforms such as Cisco ASA firewall, ASR routers, Cisco Catalyst switches and routers.
• Configured OSPF redistribution and authentication with type 3 LSA filtering to prevent LSA flooding.
• Implementing traffic engineering on top of an existing Multiprotocol Label Switching (MPLS) network using Frame Relay and Open Shortest Path First (OSPF).
• Provided redundancy in a multi homed Border Gateway Protocol (BGP) network by tunings AS-path.
• Worked extensively with VizGems team tested SNMP, Syslog on Cisco Routers, Cisco Switches, Cisco ACE, and F5.
• Experience with Citrix Netscaler, F5 GTM Loadbalancer.
• Expertise in F5 LTM and GTM Management
• Expertise in F5 BIG-IP LTM and Cisco CSS load balancers
• Team point person for configuring and installing of Cisco 3750 and 4500 access switches. Cisco Nexus 6K for core and distribution switches.
• F5 Big- IP LTM-6400 load balancers, all Clustered, 3DNS GTM Balancers, Active and Secondary Datacenter's, working with IIS 6 and up for migration
• Involved in configuring and implementing of composite Network models consists of Cisco7600, 7200, 2811,2901, CSR-1 series routers and Cisco 2950, 3500, 5000, 6500 Series switches, Connected Grid Router (CGR 2010) and Cisco 2520 Connected Grid Switch (CGS 2520).
• Dealing with various Check Point firewalls such as the R series(R71 to R77) and experience and dealing with the DLP Market by moving from Detection to Prevention of Data Loss Incidents.
• Manage a very large DNS environment using Lucent QIP and manual management of DNS for DMZ/External servers.
• Responsible for day to day management of Cisco Devices, Traffic management and monitoring .

Confidential, New York

Network Engineer

Responsibilities:

• Configured OSPF, BGP protocols on Juniper routers (MX960, MX480) and troubleshooting them.
• Configuration of port channel between core switches and server distribution switches was performed.
• Developed global standards for deployment of blue coat proxy servers to replace the older net cache deployments.
• Performed Web content filtering, blacklisting and whitelisting of web URL on blue coat proxy servers.
• Deploying Layer 2 security in Server Farms by configuring switch for 802.1x port based authentication.
• Designed, Installed and configured LAN, WAN management, Internet and network security and configuration of Cisco Catalyst switches 6500, 4000 and 3750 series and Cisco ASR routers 9001, 1006 according to the Network Design along with the Data Center topology.
• Good Knowledge on multiplex techniques such as DWDM and VOIP.
• Designed, implemented and administered a VMware ESX/ESXi environment.
• Monitored Network on a daily basis using NetFlow Traffic Analyzer and Wireshark.
• Upgraded system images on Nexus 5 and 7 multi-layer switches using kick start and FTP server.
• Experience working with Cisco Nexus 2148 Fabric Extender and Nexus 7010, 5000 series to provide a Flexible Access Solution for a data center access architecture.
• Experience with configuring Virtual Server and Load balancing in F5 NETWORKS BIG IP LTM.
• Worked towards building connectivity to production and disaster recovery servers through F5 Big IP LTM load balancers .
• Realignment and modification of BGP from the MPLS routers.
• Expertise on FTP, HTTP, DNS, DHCP servers in windows server-client environment with resource allocation to desired Virtual LANs of network.
• Worked on troubleshooting network security issues related to Cisco ASA/PIX, Checkpoint firewalls.
• Involved in intrusion detection, threat prevention and information security using IDS/IPS technologies.
• Designed L2VPN services and VPN-IPSEC authentication & encryption system.
• Tuned BGP internal & external peers with manipulation of attributes such as metric, origin, local preference.
• Responsible for turning up BGP peering and customer sessions, as well as debugging BGP routing problems.
• Enhanced the network access security & feasibility at a higher end using Cisco ISE implementation.
• Administer and troubleshoot Cisco ACS 4.x and 5.x, CSM, ACE and load-balancers F5.
• Configured Multiprotocol Label Switching (MPLS) VPN with Routing Information Protocol (RIP) on customer’s site.
• Challenging maintenance of day to day management of Cisco Devices, Traffic management and monitoring.
• Designs, installs and configures network and infrastructure and the monitoring tools, including the core network switches, routers, firewalls, intrusion detection/prevention systems (IPS), proxy servers
• Setup new workstations and printers to access the network.
• Install and configure workstation software.
• Setup user workspaces, Identify problems, troubleshoot workstation hardware and software, Configure and troubleshoot networked printers, copiers and fax machines.
• Recommend designs to ensure consistency within networks.
• Day-to-day activities involved maintenance, upgrading, and troubleshooting of Ethernet, Fast Ethernet, and Gigabit Ethernet LANs.
• Used DHCP to automatically assign reusable IP addresses to DHCP clients.
• Created extensive architecture and design documents such as (site network diagrams, logical LAN/WAN diagram, network device list (servers/routers/switches), server information sheets) that will be used in the handoff from engineering to operations .

Confidential, Chicago, IL

Network Engineer

Responsibilities:

• Configured IP access filter policies
• Worked on designing, configuring & troubleshooting of routing protocols: OSPF, BGP on Cisco 1600, 2600, 2800, 3600 series routers
• Active participation on operational support for routing/switching protocols in complex environments including BGP, OSPF, EIGRP, Spanning Tree, 802.1q
• Troubleshooting traffic passing managed firewalls via logs and packet captures
• Used Python scripts to perform tasks required
• Hands on Experience working with security issues like applying ACL’s, configuring NAT and VPN
• Worked with BMC Remedy Service Management suite and HP OpenView (HP BTO) software for change controls
• Configured multiple domain name services (DNS), email services (Exchange Server), web, and file transfer protocol services (FTP) for various platforms including line leasing through DHCP servers
• Experience with installing and managing IT services such as Active directory, site replication, DNS, SSH, DHCP, DNS, NAT and Terminal service
• Experience working with Nexus 7010, 7018, 5020, 2148, 2248 devices
• Experience in site to site VPN configurations using Cisco ASA 5500 series firewalls
• Tested Cisco IOS, IOS upgrades, configuration upgrades and implemented VLANs
• Provided redundancy in a multi homed Border Gateway Protocol (BGP) network by tunings AS-path.
• Implemented Hot Standby Router Protocol (HSRP) by tuning parameters like preemption.
• Implemented various OSPF scenarios on networks consisting of 7600 routers.
• Configured policy based routing for BGP for complex network systems.
• Configured Multiprotocol Label Switching (MPLS) VPN with Routing Information Protocol (RIP) on the customer’s Site.
• Tuned BGP internal and external peers with manipulation of attributes such as metric, origin and local Preference.
• Involved in Configuring and implementing of Composite Network models consists of Cisco7600, 7200, 3800 series and ASR 9k, GSR 12K, CSR-1 routers and Cisco 2950, 3500, 5000, 6500 Series switches.
• Perform network capacity planning and performance analyses with IT Guru Network Planner, VNE Server, ACE
• Configured OSPF redistribution and authentication with type 3 LSA filtering and to prevent LSA flooding.
• Configured OSPF over frame relay networks for NBMA and point to multipoint strategies.
• Scripting experience with Pearl.
• Configuring, Installing and troubleshooting on Check Point Devices.
• Good knowledge on Intrusion Detection and Intrusion Prevention System.
• Policy Building using IDP.
• Worked on FTP, HTTP, DNS, DHCP servers in windows server-client environment with resource allocation to desired Virtual LANs of network.
• Responsible for day to day management of Cisco Devices, Traffic management and monitoring.
• Troubleshoot and Worked with Security issues related to Cisco ASA/PIX, Checkpoint, IDS/IPS.