SUMMARY:

• Network Engineer having 7+ Years of rich experience in providing solutions, implementation, configuration of Cisco Routers and switches, firewalls, VPNs configuration and troubleshooting network problems in Enterprise Network.
• Hands on experience in configuring and troubleshooting OSPF, EIGRP, BGP, IS - IS, RIP v1/v2, VLAN's, VLSM, Route Summarization, Trunking, VTP, STP, RSTP, HSRP, 802.1q, and Ether-channels environment.
• Experience configuring and troubleshooting remote access using various VPN technologies, Cisco, and good knowledge of NAT/PAT as well as WAN protocols.
• Excellent grasp of current and future technologies including TCP/IP, IPv4/v6, RIP, EIGRP, OSPF, BGP, ACL, VPN, Wireless LAN and configuration of VLANS.
• Hands on experience in configuring Cisco Catalyst 2960, 3750, 4500, 6500 and Nexus 3000, 5000, 6000, 7000 series switches and Cisco 2600, 2800, 3600, 3800, 7200, 7600 series routers and F5 Load Balancers.
• Switching tasks include VTP, ISL/ 802.1Q, IPsec and VLAN, Ether Channel, STP and RSTP, PVST+.
• Strong Knowledge of cisco Next Generation Firewall.
• Good knowledge of IPv4 and IPv6 Addressing, IP Sub netting, Fixed Length and Variable Length Subnet Masking (VLSM), OSI and TCP/IP models. Experience in migration of IPv4 addresses to IPv6 addresses using mechanisms like Tunnel Broker, Transport Relay Translation (TRT), In-depth knowledge and hands-on experience in Tier II ISP Routing Policies, Network Architecture, NAT, DHCP, DNS, FT1 / T1 / FT3 / T3, SONET POS OCX/ GigE circuits.
• Configured and maintained Quality of Service (QoS) protocols (SIP, SRTP, SDP, IAX) on VoIP along with PBX servers, VoIP Gateways and Cloud based PBX servers, Active Directory Database.
• Experience in configuration of LAN protocols such as Ethernet and Fiber Distributed Data Interface (FDDI) on Cisco Switches. Experience in documenting and preparing the process related operational manuals.
• In-Depth Knowledge and experience of various wireless 802.11 standards, controllers, Access Points, Wi-Fi analytics from various vendors (Cisco Meraki, HPE /Aruba, D-Link and Netgear), SD-WAN (MX 65, MX100, MX400).
• Implemented and maintained Sourcefire intrusion detection/ prevention (IDS/IPS) system and hardened protection standards, IDS/IPS signatures on Firewall for Fine-tuning of TCP and UDP services.
• Worked on Cisco Firewalls Cisco ASA … Series and Checkpoint R75, 76, NGX R70 Firewalls.
• Implemented traffic filters using standard and extended access-lists, distribute-lists and route maps.
• Provided support that included resolving day-to-day operational issues with tickets generated by a server.
• Good understanding of SNMP, IP SLA and Network Monitoring with experience in tools like PRTG.
• Deployed, Managed, monitored and supported Bluecoat Proxy for content filtering, internet access between sites and VPN client users, forward proxy scenario and reverse proxy scenario for security and also worked on adding URL's in Bluecoat Proxy SG's for URL filtering.
• Experience in troubleshooting a variety of problems. Streamlined and improved process to be quicker to market, ensured compliance and optimized operational efficiency. Identified opportunities for improvements of process to ensure maximum output in focus to deadlines.
• Experienced in configuring protocols HSRP, GLBP, VRRP, ICMP, PPP, HDLC and SNMP.
• Implemented traffic filters using Standard and Extended access-lists, Distribute-Lists, and Route Maps.
• Experience in site to site VPN configuration using Cisco ASA 5500 series firewall.
• Responsible for Checkpoint and Cisco ASA firewall administration across global networks.
• Established IPSec VPN tunnels between branch offices and headquarter using Cisco ASA Firewall.
• Experience in installing and configuring DNS, DHCP server.
• Strong knowledge of administrating and configuring cisco ACS protocol’s i.e RADIUS and TACACS+.
• Experience configuring and troubleshooting remote access using various VPN technologies and good knowledge of NAT/PAT.
• Excellent customer management/resolution, problem solving, debugging skills and capable of quickly learning, effectively analyses results and implement and delivering solutions as an individual and as part of a team.
• Outstanding background in the troubleshooting of remote hardware and software.
• Background in troubleshooting of client server implementations

TECHNICAL SKILLS:

Cisco Platforms: Nexus 7K, 5K, 2K & 1K, Cisco routers (7600, 7200, 3900, 3600, 2800, 2600, 2500, 1800 series) & Cisco Catalyst switches (6500, 4900, 3750, 3500, 4500, 2900 series)

LAN technologies: Ethernet, Fast Ethernet, Gigabit Ethernet, & 10 Gigabit Ethernet, Port-Channel, VLANS, VTP, STP, RSTP, 802.1Q.

Routing Protocols: OSPF, EIGRP, BGP, RIP v1/v2, PBR, Route redistribution, Route filtering, Summarization, Static route.

Security Protocols: IKE, IPSEC, SSL-VPN

Switching Technologies: VLANs, Inter VLAN routing and Port Channels, VTP, Spanning Tree Protocols like PVST+, RSTP+, Multi-Layer Switching, Port security.

Networking Protocols: RIP, OSPF, EIGRP, BGP, STP, RSTP, VLANs, VTP, PAGP, LACP, MPLS, HSRP, VRRP, GLBP, TACACS+, Radius, AAA

PROFESSIONAL EXPERIENCE:

Confidential, Vernon Hills, IL

Network Engineer

Responsibilities:

• Configuring VLAN’s, Trunking and routing part for Cisco Catalyst 6500, 4500, 3750, 2980 switches.
• Assist in the migration from Cisco6500 equipment to Cisco Nexus7000 equipment and stacked Catalyst3850 switches.
• Creating Private VLANs & preventing VLAN hopping attacks & mitigating spoofing with snooping & IP source guard.
• In-depth knowledge and hands-on experience on IP Addressing, Subnetting, VLSM and ARP, reverse & proxy ARP, Ping Concepts, Planning and implementation of OSPF protocol and internet IBGP and EBGP peering relationship with another ISP. VPN Configuration between Site-to-Site and Site-to-Remote.
• Implementing and troubleshooting (on-call) IPSec VPNs for various business lines and making sure everything is in place. Implementing IPSec and GRE tunnels in VPN technology. Designed, configured, implemented site-site VPN on Cisco ASA 5500 firewall.
• Installing and configuring new Cisco equipment including Cisco catalyst switches 6500, Nexus 7010, Nexus 5548 and Nexus 2k as per the requirement of the Organization.
• Worked as a part of data center deployment where we converted from Cisco 6500 to Nexus.
• Experience configuring VPC(Virtual Port Channel), VDC(Virtual Device Context) in Nexus …
• Experience with configuring FCOE using Cisco nexus 5548
• Configured Nexus 2000 Fabric Extender (FEX) which acts as a remote line card (module) for the Nexus 5000 to connect servers and storage devices.
• Worked primarily as a part of the security team and daily tasks included firewall rule analysis, rule modification and administration. Experience in working with designing, installing and troubleshooting of Palo Alto firewalls.
• Configuring & managing around 500+ Network &Security Devices that includes Juniper SRX Firewalls, F5 BigIP Load balancers and Nexus Devices. Experience working with JUNOS OSon Juniper Routers and Switches.
• Adding and removing checkpoint firewall policies based on the requirements of various project requirements.
• Experience with Firewall Administration, Rule Analysis, Rule Modification
• Modified internal infrastructure by adding switches to support server farms and added servers to existing DMZ environments to support new and existing application platforms.
• Responsible for Cisco ASA firewall administration across the network.Installing & rebuilding IP appliances, checkpoint appliances. Configuring & troubleshooting Checkpoint ClusterXL& VRRP
• Implemented firewall policy changes after the appropriate review and approval process has been completed.
• Monitoring Network infrastructure using Cisco Network Assistant.

Confidential, Austin, TX

Network Engineer

Responsibilities:

• Configured the Cisco router as IP Firewall and for NATing Configured RSTP, MST and used VTP with 802.1q trunk encapsulation. Configured BGP features such as, Local p, EBGP load balancing.
• Configure and troubleshoot the switches with L2 VLANs, L3 Vlans (SVI), Trunking, STP, RSTP, port aggregation &link negotiation.
• Configuring routers and sending it to Technical Consultants for new site activations and giving online support at the time of activation.
• Supporting Development team for the access to corporate network and outside world. Providing access to specific IP, Port filter and port access.
• Experience in Cisco 7200, 7600 routers, Cisco series switches: Physical cabling, IP addressing, Wide Area Network configurations (Frame-relay and ATM).
• Performed troubleshooting, while maintaining trouble ticket tracking, following internal/external escalation procedures and customer notifications. Configured Cisco Routers for OSPF, RIP, IGRP RIPv2, EIGRP, Static and default route.
• Configured the Cisco router as IP Firewall and for NATting.
• Switching (Ethernet) related tasks included implementing VLANS and configuring ISL trunk on Fast-Ethernet channel between switches.
• Installed and configured PIX 520, 525, 535 series firewalls, configured standard and extended access-lists and policy- based filters.
• Configured ASA 5510 appliance and VPN.
• Responsible for implementing Qos prioritizing voice traffic over a data.
• Implemented SNMP on Cisco routes to allow for network management. Completed the installation and configuration of T1, T3 & OC3 circuits.
• Troubleshoot TCP/IP problems, troubleshoot connectivity issues
• Environment: Cisco 7200, 7600, Cisco, OSPF, RIP, IGRP RIPv2, EIGRP, NATting, VLANS & ISL, PIX 520, 525, 535, ASA 5510, VPN, SNMP, T1, T3, OC3, TCP/IP.
• Configuring and troubleshooting issues related to STP, RSTP and VLAN's allocation in Organization for maintaining Layer 2/3 Switching intact.

Confidential

Network Support Engineer

Responsibilities:

• Configured Cisco Routers for OSPF, IGRP, RIPv2, EIGRP, Static and default route. Worked on HSRP for hop redundancy and load balancing.
• Designed ACLs, VLANs, troubleshooting IP addressing issues and taking back up of the configurations on switches and routers.
• Configured, implemented, and troubleshoot routers and switches with various account settings, permissions, and parameters.
• Domain Name, DNS, Gateway, Subnet Mask, MAC of IP address and IP address of NTP.
• Managing tickets to perform certain Networking Configuration and Troubleshooting of Networking equipment.
• Configuring and troubleshooting multi-customer network environment.
• Involved in network monitoring, alarm notification and acknowledgement.
• Implementing new/changing existing data networks for various projects as per the requirement.
• Troubleshooting complex networks layer 1, 2to layer 3 (routing with MPLS, BGP, EIGRP, OSPF protocols) technical issues.
• Providing support to networks containing more than 2000 Cisco devices.
• Performing troubleshooting for IOS related bugs by analyzing past history and related notes.
• Carrying out documentation for tracking network issue symptoms and large scale technical escalations.
• Managing the service request tickets within the phases of troubleshooting, maintenance, upgrades, fixes, patches and providing all-round technical support.
• Commissioning and Decommissioning of the MPLS circuits for various field offices.
• Preparing feasibility report for various upgrades and installations.
• Handled installation of Windows NT Server and Windows NT Workstations.
• Handled Tech Support as it relates to LAN & WAN systems.

Confidential

Network Engineer

Responsibilities:

• Migration of RIP V2 to OSPF, BGP routing protocols.
• Configured EIGRP for lab environment.
• Implemented ISL and 802.1Q for communicating through VTP.
• Working with client tams to find out requirements for their Network requirements.
• Deploying the network infrastructure to meet the requirements.
• Created VLAN and Inter - Vlan routing with Multilayer Switching.
• Configured Cisco 6500(SUP 720), 4500(SUP 6), and 3750 catalyst switches at the core and Distribution/Access Layer respectively with Port-Securities, VLAN, VTP, RSTP, connected switches with 802.1Q Trunking Protocol and provided gateway redundancy with HSRP.
• Used Cisco ASA 5540 series for enterprise security, configured ACL s for Internet Access requests to SERVER FARM in LAN and DMZ.
• Completed service requests (i.e.- IP addressing, bandwidth upgrades, IOS/platform upgrades etc.)
• Providing technical consultancy for better application response using QoS.
• Monitor performance of network and servers to identify potential problems.
• Performed RIP, OSPF, BGP, EIGRP routing protocol administration.
• Maintained redundancy on Cisco 2600, 2800 and 3600 router with HSRP.
• Provided technical support on hardware and software related issues to remote production sites.
• Other responsibilities included documentation and support other teams.