SUMMARY:

• CCNA, CCNP, PALO ALTO CERTIFIED professional with Around 10+ years of experience in routing, switching, firewall technologies, systems design, administration and troubleshooting.
• Exposure to LAN/WAN setup, installation, configuration and troubleshooting.
• Experience of routing protocols like EIGRP, OSPF, RIP, BGP and IP addressing.
• Experience in testing Cisco & Juniper routers cum switches in laboratory scenarios and deploy on site for production.
• Strong experience in Network security using ASA Firewall, Palo Alto, Cisco IDS/IPS and IPSEC/SSL VPN and implementing security rules.
• Knowledge and experience on F5 load balancers and Cisco load balancers (CSS and ACE) stratégies/techniques
• Experience in working with Cisco Catalyst series 2900, 3850, 4500, 6500, 6800, 9300, 9400, 9500.
• Hands on experience in configuring Cisco Nexus 2232, 2248, 5548, 6001 and 7018(Sup 2E) and worked on nexus protocols VPC, VRF, VDC and FEX Links.
• IOS/JUNOS/PanOS upgrade for Cisco & Juniper routers cum switches and PA Firewalls.
• Experience with Enterprise Data Center: Cisco ACI, Virtualization, SDN. Software Defined Network (SDN) experience (Cisco ACI).
• Implementing, maintaining and troubleshooting switching tasks such as VLANs, VTP, VLAN Trunking using ISL & 802.1Q, STP, RSTP, PVST+, Ether channel using LACP and PAGP, Inter - Vlan routing, CEF and DCEF
• Good knowledge in WAN Technologies like ACL, NAT/ PAT, Ether Channel, IPSec and VPNs.
• Enhanced level of knowledge with, PPP, PAP, CHAP, ATM, T1 /T3 Frame-Relay, MPL
• Worked with Cisco, Palo Alto, ASA, Juniper SRX, Checkpoint, Fortinet, Zscaler and other vendors to provide a stable, high-speed, secure network
• Experience in working with Cisco 2800, 3600, 3800, 3900, 4300, 4400, 4500, 7200, 7600 series Routers
• Extensive knowledge in different networking protocols DHCP, DNS, FTP, VOIP (SIP, H.323, MGCP)
• Extensive experience with Cisco IOS, IOS-XR, IOS-XE, Nex-OS Windows client/server operating systems, Linux, Networking technologies, Firewalls.
• Experience in Cisco Unified Communication Manager (CUCM), VCS, Call Manager Express (CME), Cisco Unity Connection (CUC), Unified Contact Center Express (UCCX), Unified Contact Center Enterprise (UCCE), IM and Presence, SRST and Voice Gateways
• Implementing and configuring F5 LTM's for VIP's and Virtual servers as per application and business requirements.
• Experience working with Cisco IOS-XR on the ASR9000 devices for MPLS deployment
• Experience working with Nexus 7K, 5K and 2K
• Experience with virtualized ISE deployment across two network enclaves.
• Hand-on experience in developing scripts using Perl scripting language.
• Configured syslog-ng for Splunk implementation, Familiar with monitoring tools such as Nagios, Splunk, Solar winds.
• Unix/Linux Shell scripting skills as well as Python automation and analyzing logs using Perl.
• VMware ESX/ESXi, VMware vCenter, VMware vCSA and Windows 2008 R2 Hyper-V.
• Worked on large scale implementation and maintenance for SSH (Secure Shell), PKI/SSH, VPN, IPSEC Satan, ISS, TCP/IP Monitoring.
• Efficient at use of Microsoft VISIO/Office as technical documentation for diagram and presentation tools
• Demonstrated success record in Managing multiple tasks with proven ability to meet deadlines and proactively identifying the problem to solve complex technical issues
• Highly enthusiastic, creative team player, project implementation, analytical/critical thinking and debugging skills with excellent verbal and written communication skills.
• Responsible for implementing, engineering, & level 2 support of existing networktechnologies / services & integration of new network technologies / services
• Key contributions include troubleshooting of complex LAN /WAN infrastructure that includes EIGRP, OSPF.
• Responsible for turning up new BGP peering and customer sessions, as well as debugging BGP routing problem
• Managed, operated, and analyzed data from corporate security systems including Sourcefire IDS.
• Performed extensive traffic engineering to best utilize upstream transit providers and peering relationships, resulting in significant fiscal savings
• Managed deployment and testing of code updates for wireless systems, such as WCS, WiSM, and WLC.
• Support Network Technicians as they require training & support for problem resolution including performing diagnostics, & configuring network devices
• Ensured that data center stayed as immaculate as possible to prevent unnecessary damage to computer systems.
• Recommended Security considerations for the Intranet data center, integrating security, providing solution design details and configuration details
• Designed WAN structure to prevent single point of failure in case of link failure.
• Technical assistance for LAN/WAN management and complex customer issues.
• Provided support for troubleshooting and resolving Customer reported issues.
• Performed route redistribution & manipulated route updates using distribute lists, route-maps & administrative distance.

TECHNICAL SKILLS:

Networking Technologies LAN/WAN Architecture, TCP/IP, Frame Relay, VPN, VLAN, VTP, NAT, PAT, STP, RSTP, PVST, MSTP:

Networking Hardware: Cisco Switches, Cisco Routers, ASA/Pix/Palo Alto/Fortinet/Juniper firewalls.

Routing Protocols: OSPF, ISIS, EIGRP, RIP, MPLS, IS-IS, BGP, Multicasting

Security Technologies: PAP, CHAP, Cisco PIX, Blue Coat, Palo Alto, ASA, Fortinet, Checkpoint

Network: Monitoring Solarwinds, Wireshark, HRping, Whatsupgold, Infoblox

Operating Systems: Windows 7, Vista, XP, 2000, LINUX, Cisco IOS, IOS XR, IOS-XE, NX-OS

Routers: CISCO 4300, 4400, 4500,2600, 2800,3800,7200, Juniper M & T Series, ASR 1000

Load Balancers: F5 Networks (BIG-IP), Netscaler (Citrix)

Capacity & performance: Cascade Riverbed (Flow Monitor), WAN Killer

Switches: CISCO 2960,3750,3850, CAT 9300, CAT9400, CAT 9500,4500,6500,6800 Nexus 7k,5k,2k

Programming Languages: C, C++, Perl, Power Shell, Python

Simulation Tools: GNS3, VMware, OPNET IT GURU, OPNET Modeler, Cadence

Firewalls: Juniper Net Screen (500/5200), Juniper SRX (650/3600), Pix (525/535), ASA (5520/5550/5580 ), McAfee Web Gateway, Checkpoint, Palo Alto firewalls.

AAA Architecture: TACACS+, RADIUS, Cisco ACS

Features & Services: IOS and Features, HSRP, GLBP, VRRP, IPAM IRDP, NAT, SNMP, SYSLOG, NTP, DHCP, CDP, DNS, TFTP and FTP Management, Open Stack, IVR's, HLD and LLD documents, Dell equal logics

PROFESSIONAL EXPERIENCE:

Senior Network Engineer

Confidential, FL

Responsibilities:

• Responsible for Network Rebuild Design, for three client location, Deployment, Configuring, Troubleshooting and Testing of large to medium enterprise networks.
• Involved in complete LAN, WLAN development (including IP address planning, designing, installation, configuration, testing, maintenance etc.). Handled project independently from the planning stage to the validation and troubleshooting post-installation.
• Network Planning and implementation between the Main Head office and branch offices located across the USA and Mexico. Design and Implement Remote access management and VPN access between the sites.
• Planning, Designing, Deploying, of Wide Area Networks using Static Routing and Dynamic routing protocols including OSPF, EIGRP,and BGP.
• Replaced the old HP switches with the Cisco 2960 and 3850 cat switches including VLANs and Trunking Protocols.
• Expertise in installing, configuring, and troubleshooting of Cisco Routers (6500,3850, 3750, 2600).
• Security policy review and configuration in Palo Alto and Juniper SRX Firewall in US offices and Datacenters, communicated with juniper engineering and QA test systems.
• Successfully installed Palo Alto PA-5060 firewalls to protect Data Center and provided L3 support for routers/switches/firewalls.
• Deploying and decommission of VLANs on core ASR 9K, Nexus 9k, 7K, 5K,and its downstream devices, ci
• Experience on Internet protocols and services (TCP/IP, WWW, FTP, TELNET, NFS, SSH, RSH, etc.
• Implemented security policies using ACL, Firewall, IPSec, SSL, VPN, IPS/IDS, AAA (TACACS+, RADIUS).
• Member of the Security Team assisted in the migration of Firewalls from Cisco ASA to l.
• Supported the technologies like IWAN Solutions, APIC-EM, Prime Infrastructure,and Cisco ASA.
• Responsible for Palo-Alto firewalls configuration and administration across global networksfor providing IPS/IDS.
• Worked on installing, configuring, and troubleshooting of Cisco Switches 2960, 3850 Cat switches.
• Configuring HSRP between VLANs, Configuring Ether-Channels, and Port Channel on 3850catalysts.
• Installed and configured Aerohive Access Points as part of new site installations. Created network policies.Directed the launch of an enterprise-class office Wi-Fi solution resulting in increased staff mobility and flexibility.
• Good knowledge on managing Netscreen and SRX deployed in HA mode
• Good understanding knowledge in managing code levels on Netscreen and SRX platforms, Knowledge of SPACE
• Configure Linux Red Hat servers with Kickstart, LDAP, DNS, and DHCP and connect to Network. Integration of Windows Active Directory with Linux/Unix Servers
• Built virtualized Linux servers on ESX and blade servers to host multiple applications on the same chassis across different server hosts
• Configured OSPF on CISCO devices with multiple routing processes and redistributed them. Tested and hands-on experience in multi-area OSPF topologies.
• Configuring, managing, and troubleshooting networks using routing protocols like RIP, EIGRP and OSPF (Single Area and Multi Area).
• Deployed and configured the DHCP server and created scopes for the dynamic IP addressing to the users.
• Deployed and configured the External RADIUS server(Windows 2012 NPS server) for the Authentication, Authorization and Accounting the user to connect to the Aerohive WAP's.

Environment: Cisco Switches(2960,3850), Cisco Routers, Dell sonic wall, Cisco 3600 series Switches, Aerohive WAP's, Network Design and Implementation, Windows NPS 2012 server, RIP,EIGRP, VLAN, WAN, MPLS, Active Directory.

Network Engineer

Confidential - Boston, MA

Responsibilities:

• Designing and Deploying the Wireless Networks with Different Secured Authentications and Encryptions basing on the Client Requirement.
• Configured and performed software upgrades on Cisco Wireless LAN Controllers 2504, 4404, 5508 for Wireless Network Access Control integration with Cisco ISE.
• Worked on the CISSO Access Points both Autonomous and Controller based and converting intocontroller-based by upgrading the IOS.
• Designed & Deployed Cisco ISE 1.2/1.3 for Enterprise RADIUS Authentication with Active Directory, RSA SecurID, Proxy Radius Services to Cisco ACS, RADIUS and TACACS.
• Design and Implementation of 802.1x Wired/Wireless User Authentication using Cisco ISE Radius Server.
• Designed & Deployed Cisco ISE 1.2/1.3 for Enterprise RADIUS Authentication with Active Directory, RSA SecurID, Proxy Radius Services to Cisco ACS, Juniper Steel-Belted Radius and Radiator Radius.
• Configuration & Maintenance of Cisco ISE for Certificate-based authentication for BYOD and Corporate Mobile Device Authentication using XenMobile MDM
• Configuring policies, Firewallrules, Web filtering using checkpoint smart dashboard and Initial configuration of Palo Alto Firewall.
• Monitoring day-to-day administration and maintenance operations of the company networkand systems working on Linux and Solaris Systems.
• Configured the NIS, NIS+,and DNS on Red Hat Linux 5.1 and update NIS maps and Organize the RHN Satellite Servers in combination with RHN Proxy Server.
• Worked on NX-OS series 2000,3000,4000,5000,6000,7000 switches by configuring and upgrading in data centers
• Configured 6500, 3750 and 4500 for Network Access Solution integration with Cisco Identity Service Engine on ESX 5.0 VMware and physically with Cisco ISE appliances.
• Planning, designing,and Configuration of various Policy Configurations, Profile Authorizations, End device Profiling, User Identities, Cisco ISE and AD mapping with various attributes and levels of authorizations and Network Access.
• Planning, designing,and configuration of various Cisco ISE strategies (Standalone, Distributed Setups).
• Worked Extensively on Access Control Policies consisting of VLAN switching through SNMP, applying downloadable ACLs through Cisco ISE, and Configuring Standard and Extended ACLs locally and on the upstream switch's for Cisco ACS
• Worked extensively on device profiling, authentication and authorization mechanisms using AAA, RADIUS, 802.1X, Policy buildups for Posture Compliance Policies and Rules for Checking the devices coming onto Network, Remediation Process, Access and Controls, and Segmenting the Global Networks for NAC Solutions for both Cisco and Fore scout NAC Appliances.
• Worked extensively on designing PKI Infrastructure for EAP-TLS Protocol using certificate-based authentication.
• Extensively worked on Microsoft Certificate Authority Server for ROOT/Intermediate Issuance of certificates, securing the certificate exportability.

Environment: Cisco routers 3700, 3800, 7200, 7604, Cisco catalyst series Switches 2960, 3750, 3560, 6500, Network Implementation, Nexus 5k, Nexus 7k, MPLS, Frame Relay, VRF, DSLAM, RIPv2, OSPF, BGP, IPSEC, VLAN, STP, VTP, HSRP.

Network Engineer

Confidential - Dresser, WI

Responsibilities:

• Performed IOS upgrades on Catalyst 1900, 2900, 3500 series switch, and 2500, 2600, 3600 series routers.
• Involved in designing, configuring, implementing, maintenance and troubleshooting issues relating to routers and switches in LAN, WLAN,andWAN.
• Performed IOS Software upgrades on switches 6500, 3750 and 4500s
• Designed and deployed networks as per the company's requirement. Handled different tasks such as network address assignment, assignment of routing protocols, etc.
• Worked on NX-OS series 2000,3000,4000,5000,6000,7000 switches by configuring and upgrading in data centers
• Handling the network infrastructure of NOC LAN/WAN, migration & configuration of networkclient workstations. Addressing performance bottlenecks & ensuring maximum networkefficiency and uptime
• Planning designing, Installation, configuration and maintenance of 802.11a/b/g Wireless Networks and Wireless Access points.
• Implemented, Monitored and troubleshoot the protocols EIGRP, OSPF,and Static Routes.
• Configuration and Installation of ASA 5520 firewalls.
• NAT, VPN and Traffic filter implementation in Cisco Firewall.
• Implemented traffic filters using Standard and Extended Access Control Lists. Handled Route-map, Re-distribution list & access-list configurations.
• Access distribution and core layer switching architecture, created VLAN, Firewall Services Module (FWSM) and STP configuration.
• Experience with Cisco Voice and Unified Communications Solutions (CUCM 8 ).
• Deployed unified communication solutions for the corporation with Cisco 2900, 3900, 3900E routers.
• Hands on experience with voice protocols like MGCP, H323,and SIP.
• Hands-on experience with various gateway models like Cisco Voice Gateway 200, Cisco Access Digital Trunk Gateway and Cisco Analog Trunk Gateway.
• Experience with CUCM services such as Unified Messaging, Multimedia Conferencing, and Collaborative Contact Centers.
• Good working and understanding knowledge with Net screens and NSM and SRX.
• Assisted in building Netscreen and SRX firewalls (interface creation, routing, policy, etc.)
• Worked in the team in migrating from Netscreen to SRX platform
• Used tools Wireshark, Packet Sniffer and Microsoft Network Analyzer for monitoring Local Area Network connections (LAN's) and Wide Area Network Connections (WAN) for Networkconnection and failure issues.
• Administrative responsibilities including the installations, additions, updates,and changes to Microsoft Windows 2003 and Windows 2008 servers.
• Administering the Microsoft Windows Servers and managing disk space, user profile creation and user rights management.
• Maintain and create user accounts and policies within Active Directory, Configure/maintain Internet filtering and security on public access pcs
• Configuration and maintenance of DNS & DHCP servers.
• Maintained accurate network documentation for moves, adds, changes, and deletes. Properly documentation of problem situations and resolutions.

Environment: Cisco Routers, Cisco Switches, Routing Protocols (RIP, BGP, OSPF), VPN Tunnels, Checkpoint Firewall, Frame relay, ACL, NAT, WAP, WLC, VLAN, RSTP, Active Directory, Tools (MRTG, Cisco Works).