SUMMARY:

Professional with over 7 years of experience including configuration, implementation, administration (service requests), escalation support (ticket resolution), deployment, monitoring/analysis, documentation/design review, and troubleshooting which includes proficiency in routing, routing protocols, switching, Confidential, Confidential and monitoring technologies.

TECHNICAL SKILLS DETAIL:

Routing/Switching Technologies: Confidential Routers, ISRs and 1000 ASRs Series, Confidential Catalyst Switches, Confidential Nexus Switches, Juniper and HP Routers & Switches - WAN, LAN, TCP/IP, Confidential IOS, Spanning Tree Protocol, BPDU, CDP, ACL, NAT, PAT, RIP, RIPv2, OSPF, OSPFv3, EIGRP, Confidential, MPLS, VTP, SNMP, SMTP, ARP, TCP, UDP, Static Routing, Stub Routing, VLAN, VLAN Trunking, VXLANs, Multicast routing, HSRP, SVI, CEF, Etherchannel, Portfast, VSS, VPC.

Confidential /Firewalls Technologies: Confidential ASA 5500 series firewalls, Confidential IPS/IDS, Confidential ACS, Confidential ASA 1000V cloud firewall, Checkpoint Firewall, Juniper SRX series, Palo Alto.

Protocols & Standards: AAA, TACACS+, RADIUS, SSH, VPN, IPSec, SSL/IPSec, Data Loss Prevention, Data Management Zone, Pretty Good Protection (PGP), Public Key Infrastructure (PKI), Internet Key Exchange Policy, Port Confidential, MAC Address Filtering

Confidential Technologies: Confidential WLC, IEEE 802.1x & 802.11, WLAN, WAP, AP, SSID, LWAPP, Aironet, Bluetooth, Avaya, AURA - Confidential Over Internet Protocol (VoIP), VoIP/SIP, CUCM, UCCM, UCCX, MGCP, RSTP, SCCP, STP, Quality of Service (QoS), PoE, MMDS, LMDS, CCK, DSSS

Monitoring/Data Center Technologies/APPS: Wireshark, Remedy, Confidential, Nagios, VMware, Solarwinds, Confidential Manager Suite, Server, Orion - VMware, F5 Big-IP, Confidential Prime, Confidential IPS/IDS, Meraki cloud.based - Splunk, SNMPv2c, SNMPv3, DNS, DHCP, FTP, Telnet, HTTP(S), SMTP, tunneling protocols, PTP, SFTP, RDP.

Other Technologies: Operating Systems Windows XP, 7, 8, and 10; Applications MS Office 2007, 2010, 2013

SUMMARY OF PROFESSIONAL EXPERIENCE:

Confidential

Responsibilities:

• Member of a team responsible for analysis, installation, integration, support and troubleshooting of various networking technologies including but not limited to routing, switching, Confidential, Confidential, etc.
• Daily responsibilities include but not limited to client support, analysis, administration, development and troubleshooting enterprise environments to external clients and internal team of networking technologies.
• Additional responsibilities included client analysis and recommending logical, physical, and configurations.

Confidential

Administrator

Responsibilities:

• Member of a team responsible for onsite client support, administration, documentation, as needed ticket resolution, task/change management, monitoring/analysis and troubleshooting.
• Technologies in the environment include but not limited to local area network (LAN) technologies, wide area network (WAN) technologies, server and enterprise applications and desktop technologies.
• Implement trunk ports and implement granular control of VLANs and VXLANs using NX-OS to ensure virtual and flexible subnets that can extend further across the network infrastructure than previous generation of switches.
• Implement port-profiles as part of the NX-OS command structure that allows for configuration of multiple ports and port-types via inherited configurations applied via a single command that reduces administrative error and allows for better configuration readability.
• Implement a virtual version of Nexus: Nexus1000v into VMWare to extend Nexus capabilities directly adjacent to virtual machines so that they benefit from Confidential switching capabilities and network topology consistency ensuring VMs maintain their subnet/VLAN relationships during failover.
• Implement secure privileged administrative access to the Confidential IOS system. Enable the encryption of system passwords to prevent unauthorized users access to passwords in the system configuration.
• Implement secure access to the console and vty ports, and set the interval that the EXEC command interpreter waits until user input is detected on the Console and vty ports. Also, configure the console and vty ports log messaging to not interfere with active device configuration.
• Implement VLAN Trunking Protocol to reduce administrative overhead. Enable secure sharing of VLAN information to prevent the introduction of rogue devices from affecting the VLAN database. Shutdown unused switchports following Layer 2 Confidential best practices.
• Create and manage Local VLANs based on department function, and configure ports with static VLAN assignment, static 802.1Q trunks, and dynamic ISL trunking using PAgP for layer 2 forwarding. Utilize VLAN Spanning-Tree in conjunction with PVST+ for compatibility between Confidential and Juniper switches. Configure edge ports for fast-transitioning into the forwarding state to fix workstation startup connectivity delays. Modify spanning-tree parameters for manual root bridge assignment. Implement ether-channels between each switch using PAgP for negotiation. Modify ether-channel load balancing method.
• Implement WAN links between sites using frame-relay point-to-point and multipoint connections to establish connectivity between each of the four sites as required. Establish frame-relay point-to-point connections three of the sites creating a full mesh. Implement hub and spoke network between three of the sites with the main office as the hub for redundant connections.
• Implement Confidential routing for point-to-point and Non Broadcast Multi-Access networks. Ensure that the spoke routers are receiving routing information about each other from the hub. Configure Confidential unequal-cost load balancing to also use the lower capacity multipoint links when routing packets.
• Prevent neighbor adjacencies from being formed as well as the sending and receiving of routing updates on unnecessary interfaces. Implement Confidential MD5 Message Authentication between sites to prevent unauthorized insertion of routes into the domain. Implement manual Confidential route summarization to reduce routing protocol demand on CPU resources, memory, and bandwidth used to maintain the routing table.
• Implement OSPF routing with multiple areas for networks between sites. Implement totally stubby areas to lower the system resource utilization of routing devices for the network. Implement NSSA area to allow injection of external routes into the area and propagation into the OSPF domain.
• Implement backup and recovery of Confidential IOS Images. Perform password recovery on Confidential IOS routers/switches and a Juniper EX2200 Series switch to restore administrative access. Backup and Restore startup-config file for disaster recovery.
• Configured and verified internal Confidential peering using directly connected networks.
• Configured and verified internal Confidential peering using loopbacks by using an interior gateway protocol (OSPF) to provide routing information.
• Configured and verified external Confidential peering using directly connected networks.
• Configured and verified external Confidential peering using loopbacks and ebgp-multihop.
• Configured and verified internal Confidential peering using a Route Reflector.
• Used debugging diagnostic commands to monitor Confidential events.
• Configured and verified MPLS manually and using automatic configuration via OSPF.
• Configured and verified virtual routing and forwarding (VRF) instances with route-targets and route descriptors.
• Configured and verified MP- Confidential to send VRF traffic in an MPLS VPN.
• Redistributed provider edge networks into MP- Confidential and verified end-to-end connectivity over the MPLS VPN.

Confidential

Responsibilities:

• Implement an IPSec Site-to-Site VPN between the Confidential ASA5505 at small office location and Confidential 1841 ISR with a Confidential IOS image at the main office. Implementation of the VPN includes the following configurations: Internet Key Exchange Policy using DES and SHA for encryption and authentication, access-lists to define VPN traffic, transform set using esp-des esp-sha-hmac to define how the traffic is protected, crypto-map to associate the previously configured elements to a peer, and application of the crypto map to appropriate interface or VPN endpoint.
• Implementation of Zone-Based Policy Firewall on the Confidential 1841 ISR with the following components: three zones, class-maps specifying traffic that must have policy applied as it crosses a zone-pair, policy maps to apply action to the class-maps’ traffic, zone-pairs, and application of policy to zone pairs.
• Implement a Clientless SSL VPN (WebVPN) to allow users to establish a secure, remote-access VPN tunnel to the Confidential ASA 5505 using a web browser. Prepare the Confidential ASA with necessary configurations to self-signed certificate generation. Generate a general purpose RSA key-pair for certificate authority identification, configure certificate authority trustpoint for the WebVPN using self enrollment, and configure CA trustpoint interface association.
• Configure Syslog on the Confidential ASA5505 with logging to a host and internal buffer. Forward all logging to an internal Syslog server for monitoring and management. Configure and manage Syslog output generation using custom message lists. Implement FTP backup of internal buffer when it is exceeded.
• Implement Basic Threat-Detection, Advanced TCP Intercept, and Scanning Threat-Detection. Simulate attacks on network to manage threat-detection rates and verify Syslog generation.
• Utilize Confidential ASA5505 Modular Policy Frame-Work to configure and manage layer 3/4 interface service policies, apply inspection and connection limits to services, apply inspection and QoS policing to HTTP traffic. Configure HTTP inspection policy to block restricted sites and file downloads.
• Configuration and troubleshooting of high availability pairs of F5 BIG-IP devices via a GUI and CLI to provide a virtual web server utilizing round-robin selection to balance traffic on several web servers.

Confidential

Responsibilities:

• Implement a Confidential network infrastructure providing access to wired LANs to increase mobility and productivity utilizing the following network elements: Confidential LAN Controller (WLC) 2106, a Confidential 3550 switch, a Confidential 1130AG series Access Point, and a Confidential 1121G series Access Point.
• Create Confidential LANs and configure interface association, Confidential parameters, and radios used. Utilize the Confidential LAN Controllers web GUI to configure and manage the Confidential network.
• Configure internal DHCP scopes for WLANs.
• Prepare infrastructure for AP registration on same subnet as management VLAN and for AP registration on different subnet.
• Configure Confidential AP policies to allow Self Signed Certifications for APs shipped without a Manufacturer Installed Certificate. Implement AP Grouping to ensure WLAN SSIDs are only broadcast by the APs desired.

Confidential

Responsibilities:

• Configured VLANs and access ports connecting virtual machines using the NX-OS CLI on a Confidential Nexus 1000v virtual machine and VMWare vSphere Client networking.
• Configured routing policies and service profiles for separate levels in an organizational hierarchy using a Confidential Prime Network Services Controller virtual machine. These policies and profiles were applied to Confidential Cloud Service Router 1000v (CSR 1000v) virtual routers.
• Configured a CSR 1000v router using the Confidential IOS 15.4 CLI.
• Used the Confidential Configuration Professional GUI to configure interfaces, passwords, hostnames, DHCP, EIGRP, and SNMP on a Confidential router. Used the CCP monitoring tool to monitor traffic from that router.
• Configured the Nagios XI monitoring tool to monitor routers and switches and customized its dashboard.
• Configured SolarWinds Orion NPM and used it to monitor traffic on a network.
• Configured the Confidential tool to graph traffic from a router and to generate alerts based on a threshold traffic level.

Confidential

Responsibilities:

• Implement a local Confidential network with the following network elements: Confidential 2811 ISR (VoIP) with a Confidential Unity Express Network Module (NM-CUE) installed, Confidential Communications Manager Express, a standard Confidential 3550 Switch, and a Confidential 3550 switch with Power-over-Ethernet. Create and manage Data and Confidential VLANs, and configure ports with static VLAN assignment and 802.1Q trunks for layer 2 forwarding. Configure edge ports for fast-transitioning into the forwarding state to fix workstation startup connectivity delays.
• Configure Fast Ethernet main and sub-interface assignments as required for intervlan routing.
• Implement static routes for local connectivity. Implement NTP server, DHCP server, and TFTP server for support of the VoIP network.
• Modification of system level parameters including max phones, max directory numbers, display format for date and time, and setting the Time-Zone.
• Implement Unity Voicemail on the Confidential Unity Express Network Module.
• Configure a dial-peer on the Confidential 2811 ISR to define the attributes of the packet Confidential network connection to the Confidential Unity Express Network Module.
• Enable call forwarding on busy or no answer. Implement Message Waiting Indicators and Voicemail access via SMTP. Daisy-chain PCs to VoIP phones to reduce network cabling costs.
• Utilize PoE ports for VoIP phones to reduce costs.