SUMMARY:

• Cisco, Juniper and Palo Alto Certified with 8 years of experience in networking, installing, configuring and maintaining network devices.
• Hands on experience in configuring Cisco Catalyst 2960, 3750,3850, 4500, 6500 and Nexus 3000, 5000, 6000, 7000, 9000 series switches and Cisco 2600, 2800, 3600, 3800, 7200, 7600 series routers.
• Implementing IP addressing schemes, LAN/WAN protocols, IP Services, to meet network requirements in different environments.
• Expertise in Configuration of Virtual Local Area Networks (VLANS) using Cisco routers and multi - layer Switches and supporting STP, RSTP, PVST, RPVST along with trouble shooting of inter-VLAN routing and VLAN Trunking using 802.1Q.
• Implemented redundancy with HSRP, VRRP, GLBP, Ether channel technology (LACP, PAgP).
• Proficiently implemented traffic filters using Standard and Extended access-lists, Distribute-Lists, Route Maps and route manipulation using Offset-list.
• Hands on experience in deployment of GRE tunneling, SSL, Site-Site IPSEC VPN and DMVPN.
• Extensively worked on Cisco catalyst 6509 and implemented VSS along with VDC and VPC on Nexus 5505, 7009 switches.
• Performed configuration, deployment and support of cloud services including Amazon Web Services (AWS) and deploy monitoring, metrics, and logging systems on AWS.
• Comprehensive expertise in the implementation of optimization, analysis, troubleshooting and documentation of LAN/WAN networking systems.
• Working knowledge on configuring access lists. Troubleshooting DNS/DHCP issues within the LAN network.
• Extensive hands-on experience in working with complex routed LAN and aironet networks, and preparing technical documentation.
• Involved in troubleshooting network traffic and its diagnosis using tools like ping, traceroute, Wireshark, TCP dump and Linux operating system servers.
• Implemented many number of security policy rules and NAT policy rules on Palo Alto, created Zones, Palo Alto Firewall interface, Palo Alto IDS and VLAN.
• Hands-on experience on Checkpoint Firewall R77, Palo Alto and Cisco ASA 5520 firewalls.
• Experience with Network Automation using Python.
• Proficient in Cisco IOS for configuration & troubleshooting of routing protocols: MP-BGP, OSPF, LDP, EIGRP, RIP, BGP, V4, V6, MPLS
• Experience with convert Checkpoint VPN rules over to the Cisco ASA solution.
• Migration with Checkpoint, Cisco ASA and VPN experience.
• Experience in configuring Virtual Device Context in Nexus 7010.
• Responsible for Check Point and Cisco ASA firewall administration across global networks.
• Experience in Palo Alto design and installation (Application and URL filtering, Threat Prevention, Data Filtering)
• Responsible for service request tickets generated by the helpdesk in all phases such as troubleshooting, maintenance, upgrades, patches and fixes with all around technical support

TECHNICAL SKILLS:

Networking Technologies: LAN/WAN Architecture, TCP/IP, Frame Relay, VPN, VLAN, VTP, NAT, PAT, STP, RSTP, PVST, MSTP

Networking Hardware: Cisco Switches, Cisco Routers, ASA/Pix firewalls, Vmware, Ironport

OSPF, IGRP, EIGRP, RIP, MPLS, IS: IS, BGP, Multicasting

Security Technologies: PAP, CHAP, Cisco PIX, Blue Coat

Network Monitoring: Cisco Works 2000, Wire Shark, HRPing

Operating Systems: Windows 7, Vista, XP, 2000, LINUX, Cisco IOS, IOS XR

Routers: CISCO 2600, 2800,3600,3800,7200, Juniper M & T Series, Cisco CRS-1, CRS -3, GSR

Load Balancers: Cisco CSM, F5 Networks (BIG-IP)

Capacity & performance: IXIA, Spirent, Cisco works, IPerf, IXChariot

Switches: CISCO 2900, 3500,4500,5000,6500, Nexus 7k,5k,2k

Programming Languages: C, C++, Perl, VB Script, Power Shell, Python, SQL

Simulation Tools: Qualnet Developer, OPNET IT GURU, OPNET Modelar, Cadence

Firewalls: juniper net screen(500/5200), Juniper SRX (650/3600), Pix(525/535), ASA (5520/5550/5580 ), McAfee Web Gateway

AAA Architecture: TACACS+, RADIUS, Cisco ACS

Features & Services: IOS and Features, HSRP, GLBP,IPAM IRDP, NAT, SNMP, SYSLOG, NTP, DHCP, CDP, DNS, TFTP and FTP Management, Open Stack, IVR s, HLD and LLD documents, Dell equal logics

PROFESSIONAL EXPERIENCE:

Confidential, Ashburn, VA

Sr. Network Engineer

Responsibilities:

• Configured Modular QOS which includes Class Map, Policy Map and Service- Policy
• Deployed Cisco FireSight, ISE using certificate authority signed certs with PxGrid remediation module.
• Experience in configuring and supporting site-to-site and remote access Cisco, IPsec, VPN solutions using ASA/PIX firewalls, Cisco, B2B VPN client in addition to providing TACACS+ and RADIUS services.
• Excellent hands on working experience in Network Infrastructure, Security which includes designing, deployment and providing network support, installation and analysis for a broad range of LAN / WAN protocols, routing, switching, configuring, implementation, troubleshooting of complex networking system. Working experiences with Routers, Switches, Load Balancers, Firewalls and Proxies.
• Performed network-engineering tasks like designing, planning in F5 LTM, GTM, EM, AFM & APM load balancing implementation and Deployed F5 Enterprise manager of 4000 series for the all cluster devices over the network.
• Designed, troubleshooted rule/layers on large Internet Facing Bluecoat proxy SG appliances, including configuration, setup, upgrade and replacements.
• Experience on the Palo Alto firewall platforms PA-7050, PA-5050, PA-2000 series, PA-200, PA-500.
• Experience in configuring all Palo alto Networks Firewall models (PA-2k, PA-3k, PA-5k etc.) as well as a centralized management system (Panorama) to manage large scale firewall deployments.
• Experience in Creating Custom Antivirus, AntiSpyWare, and Vulnerabilities profile per organization standards and apply them to security policies.
• Involved in configuring Juniper SSG-140
• Coordinated and scheduled the delivery of F5 Professional Service implementations and consulting engagements
• Good understanding of NAT & Firewall on Aruba Controllers.
• Configured Cisco QOS features like Classification, Congestion Management, Policing and Shaping.
• Proven expertise in diagnosing and resolving complex hardware, software and networking issues, ensuring responsive 24/7 functionality and support for users across multiple locations.
• Strong knowledge in DNS, DHCP, IP addressing. Experience of IP Service - DNS, DHCP, IPAM and Active Directory DNS.
• Primarily supporting the fabric environment including Cisco and Nexus 6000/5500/2200 series fabric switches and extenders
• Worked on Tufin Software Application to identify the firewall rules used in checkpoint firewalls.it also helped in removing the old unused rules.
• Created documents for various platforms including Nexus 7k, ASR9k, and ASR1k enabling successful deployment of new devices on the network
• Implementation and Integration of Servers (Windows, Linux and Unix), Security devices like Firewall, IPS, IDS, WAF, Nessus, Bluecoat Proxy, F5 IDM, Symantec Endpoint Protection).
• Configured L3 protocols (IP, BGP, OSPF, EIGRP, IGRP, RIP), redistribution, summarization, Filtration (using distribute list, route map, prefix list, access list).
• Worked on Cisco 2300, 4000, 6500 series Router and Cisco 1600, 2900, 6500 series switches.
• Implementing, maintaining and troubleshooting switching tasks such as VLANs, VTP, VLAN Trunkingusing ISL and 802.1Q, STP, RSTP, PVST+, Ether Channel using LACP and PAGP, Inter-Vlan routing.

Confidential, Rockville, MD

Sr. Network Engineer

Responsibilities:

• Worked Extensively on Access Control Policies consisting of VLAN switching through SNMP, applying downloadable ACLs through Cisco ISE, and Configuring Standard and Extended ACLs locally and on the upstream switches for Cisco NAC Solution.
• Configure all Palo alto Networks Firewall models and Panorama to manage large scale Firewall deployments
• Experience on Juniper SRX240, SRX220 and SRX550 series Firewalls.
• Involved in configuration of access-control lists on Juniper and Palo alto firewalls for proper network routing and B2B connectivity.
• Implementing security Solutions using Palo alto PA 5000, Check Point Firewalls R75, R77.20 Gaia and Provider-1/MDM.
• Configured OSPF and Static routing on Juniper M and MX series Routers.
• Configuration and Administration of Palo alto Networks Firewall to manage large scale Firewall deployments.
• Experience configuring Catalyst (2900, 3500, 3700 and 6500 Series), NEXUS (7000, 5000 and 2000 Series) Switches, and Routers (2800, 3600, 4400 Series) and Wireless AP's (1260, 3600) using CLI and GUI.
• Troubleshoot routing issues on Cisco 7600, 7200VXR and Juniper M320.
• Configured Cisco ASA 5510 for VPN Network Access Control integration with Cisco ISE (Inline PEPs)
• Configured Cisco ISE for Wireless and Wired 802.1x Authentication on Cisco Wireless LAN Controllers, Catalyst Switches, and Cisco ASA Firewalls.
• Hands-on experience in configuration of CISCO NEXUS Datacenter infrastructure with 5000 and 7000 series switches (5548, 7010) including CISCO NEXUS Fabric Extender (2232, 2248)
• Experience with designing and deployment of MPLS Traffic Engineering.
• Providing daily network support for national wide area network consisting of MPLS, VPN and point-to point site.
• Worked with ISPs to determine QoS markings and correct miss configurations of circuit and router service policies.
• Configured and troubleshooting HSRP, BGP, OSPF, EIGRP, MPLS WAN, MPLS L2VPN, MPLS L3VPN, DMVPN, IPsec VPN, STP, VLAN, QoS and Route Maps.
• Configured VLAN, Spanning tree, VSTP, SNMP on Juniper EX series switches.
• Develop Engineering Documentations to record F5 environment and change processes LTM/GTM/iRules.

Confidential, San Jose, CA

Sr. Network Security Engineer

Responsibilities:

• Had been responsible in the Configuration of EIGRP, OSPF and BGP. Involved in the configuration & troubleshooting of routing protocols on Cisco 2900, 3900, ASR 9010, and ASR 1002 devices across locations and datacentres.
• Had been responsible for Firewall Administration, Rule Analysis, and Rule Modification on ASA 5585, SRX550 devices.
• Used Python scripting for automation.
• Implemented automation solution for BIOS validation test cases through Python programming.
• Design, implement and administer IPv4 enterprise network infrastructure utilizing Juniper routers like Juniper MX80, MX 480 and MX960.
• Successfully installed Palo Alto PA-3060 firewalls to protect Data Center and provided L3 support for routers/switches/firewalls.
• Configured and maintained IPSEC and SSL VPN's on Palo Alto Firewalls.
• Implementing and configuring F5 LTM's for VIP's and Virtual servers as per application and business requirements.
• Implemented Zone Based Firewalling and Security Rules on the Palo Alto Firewall.
• Migrating the policy from Cisco ASA firewall into Palo Alto.
• Experience with deployment of Palo Alto firewalls for different NAT, video conferencing traffic
• Configured and maintained IPSEC and SSL VPN's on Palo Alto Firewalls.
• Install and maintain voice, video and data communications infrastructure systems and cabling.
• Hand-on Experience with configuring T1.5, Gigabit Ethernet, Channelized T3 and full T3, OCX, ATM, Frame-Relay and VOIP (Voice-Over Internet Protocol).
• Implemented cluster and configuration of SRX-100 Juniper firewall.
• Extensively worked on Juniper modelsEX-2200, EX-4200, EX-4500, MX-480, M Series, SRX210 and SRX240.
• Serve as part of a team of network engineers responsible for base wide network upgrade from Cisco Layer 3 Catalyst switches to Juniper Layer 3 EX4200 & EX3200 switches.
• Managed fast Layer 3 switched/routed LAN/WAN infrastructure as a part of Network team. The LAN consisted of Cisco campus model of Cisco 3750 at access layer, Cisco 6513 at distribution/core layer.
• Created standard access lists to allow SNMP, NTP and logging servers.
• Maintained F5 BIG-IP LTM 6900 for providing application redundancy, load balancing and policies.
• Configured VRRP & GLBP and VLAN Trunking 802.1Q & ISL, STP, Port Security on Catalyst 6509 switches.
• Configured VLANs with 802.1q tagging. Configured Trunk groups, ether channels, and Spanning tree for creating Access/distribution and core layer switching architecture.
• Experience configuring Virtual Device Context in Nexus 7010.
• Experience with converting Cisco 6500 to Cisco Nexus in the Datacenter environment.
• Experience working with Nexus 9300, 7010, 5020, 2148, 2248 devices.
• Deploying and decommission of VLANs on core ASR 9K, Nexus 9K, 7K, 5K and its downstream devices
• DesigningF5 solutions/support for migration work of applications and websites from Cisco CSS Load Balancers to the F5 BigIP Load Balancers.
• Installed and Configured the F5 BIG-IP LTM, configure virtual servers and associate them with pools for internal web servers
• Migrated from Cisco ASA 5540 firewall to Palo Alto 5250 Firewall
• Used Palo Alto 5250 Firewall for Enterprise Security, configured ACL’s for Internet requests to Server Farm in LAN and DMZ.
• Proactively involved in upgrade, maintenance, monitoring and support for the PA500 Palo Alto devices.

Confidential, Hayward, CA

Network Engineer

Responsibilities:

• Worked as a member of the NOC groups to troubleshoot issues related to IP phones, Connectivity and application slowness.
• Troubleshoot issues with Wireless Access points (Cisco 3502) and configure SSID’s on 4506 Wireless LAN Controllers.
• Adept at configuring and troubleshooting of VPC on Nexus 7Ks, 5Ks and VSS on Cat 6509, 4500-X.Expertise in Configuration of Virtual Local Area Networks (VLANS) using Nexus 7Ks, Cisco routers and multi-layer.
• Switches and supporting STP, RSTP, PVST, RPVST along with trouble- shooting of inter-VLAN routing and VLAN trunking using 802.1Q.
• Played responsible role for implementing, engineering, and level 2 supports of existing network technologies services and integration of new network technologies / services.
• Worked on 3560, 3750, 3850, 4510,4500-X, 6509 series Cisco Catalyst switches, and 2248, 5020, 5548 and 7010 Cisco Nexus switches, HP switches in multi VLAN environment for the implementation of inter-VLAN routing,802.1Q trunking, and Ether Channel.
• Performed network administration tasks such as creation and management of VLANS, Port security, Trunking, RPVST+, Inter-VLAN routing, and LAN security.
• Configuration of site-to- site VPN connections (IPSec /GRE tunnels, DMVPN) to support diverse network connections to extranet clients.
• Expertise in configuration of routing protocols and deployment of OSPF, EIGRP, BGP and Policy routing over Cisco Routers, Switches ( Nexus 7Ks, Catalyst 6500 ).
• Performed ISSU on Nexus Switches and responsible for troubleshooting application latency.
• Resolved various trouble tickets related to routing ( BGP, EIGRP, Static Routes, prefix-list, route- map, distribute-list, route-redistribution), switching (VLAN, port security, trunking, STP, VPC, HSRP, FEX).
• Designed, planned and performed failover testing with various extranet clients successfully.
• Involved in design, implementation and configuration of HSRP for load balancing on L3 switches on different location of office on the switched network.
• Managed inventory of all network hardware, Management and Monitoring by use of SSH, Syslog, SNMP, NTP.
• Performed maintenance and troubleshooting of connectivity problems using PING, and Trace route.
• Used DHCP to automatically assign reusable IP addresses to DHCP clients via Infoblox IPAM.
• Configured and maintained OSPF protocol which included deployment of new locations in the existing infrastructure created Stub/areas and configured summarization for effective routing.
• Configured OSPF on ASR 1002/9001 Cisco routers at various back offices across US. Configured ACLs in Juniper SRX 3400 and Palo Alto PA-5050 firewalls for Internet Access requests for servers, Protocol Handling, Object Grouping and NAT.
• Experience setting up SRX 240 HA Pairs on the branch firewalls for redundancy.
• Configured SPAN and RSPAN for network monitoring.
• Worked on network-based IT systems such as racking, stacking, cabling and module replacement. Configured and installed Wireless Access Points at different company’s location and managed them through Wireless LAN Controller (Cisco)

Confidential

Network Support Engineer

Responsibilities:

• Used TFTP server to backup Cisco configuration files.
• Provided technical support for expansion of the existing network architecture to in corporate new users.
• Network layer tasks included configuration of IP Addressing using FLSM, VLSM for all applications and servers throughout the company
• Configured STP for loop prevention on Cisco Catalyst Switches
• Configured VTP to manage VLAN database throughout the network for Inter-VLAN Routing.
• Worked in setting up inter-vlan routing, redistribution, access-lists and dynamic routing.
• Involved in configuring and implementing of Composite Network models consists of Cisco 3750, 2620 and, 1900 series routers and Cisco 2950, 3500 Series switches.
• Implemented various Switch Port Security features as per the company’s policy
• Configured OSPF, and EIGRP on 2901 and 3925 Cisco routers.
• Configured VLANS to isolate different departments
• Troubleshoot issues related to VLAN, VLAN Trunking, HSRP failovers, related issues.
• Configured IPSEC VPN on SRX series firewalls
• Design, installation and troubleshooting networks with hand-on experience with OSPF, BGP, VPLS, Multicast, VPN, MPLS, & Traffic engineering.
• Involved in implementation of trunking using Dot1Q, and ISL on Cisco Catalyst Switches
• Worked with snipping tools like Ethereal (Wireshark) to analyze the network problems.
• Maintenance and troubleshooting of network connectivity problems using PING, Trace Route.
• Performed replacements of failed hardware and upgraded software
• Implementing Routing and Switching using the following protocols; OSPF, BGP on Juniper M series routers.
• Involved in Local Area Network (LAN) implementation, troubleshooting, and maintenance as per company’s requirements.

Confidential

Network Technician

Responsibilities:

• Experience in Cisco switches and routers: Physical cabling, IP addressing, Wide Area Network configurations.
• Managed IP addressing and implemented IP Access Lists.
• Documented the design, implementation and troubleshooting procedures.
• Involved in network monitoring, alarm notification and acknowledgement.
• Performed switching technology administration including VLANs, inter-VLAN routing, Trunking, STP, RSTP, port aggregation & link negotiation.
• Maintained complex LAN/WAN networks with several VLANS and provided support for routing protocols.
• Maintaining Network Integrity on LAN and WAN Networks.
• Configuring and Troubleshooting Routing protocols OSPF, RIP, EIGRP & BGP.
• Have sound knowledge of Firewall architecture, routing and VPN.
• Installed and configured the ACE and CSM for firewall/Server Load balancing for Cisco Catalyst switches.