PROFESSIONAL SUMMARY:

• CCNA and CCNP certified Network Engineer around 7 Plus Years’ of experience in design, implementation, configuration of Cisco Routers, Switches and Firewalls, troubleshooting & fine - tuning of Firewalls, VPN configuration, troubleshooting network related problems in Enterprise& Data Center Networks.
• Expert level knowledge of troubleshooting, optimizing and testing of static and dynamic routing protocols such as BGP, OSPF, RIP, EIGRP ability to interpret and resolve.
• Experience in layer-3 Routing and layer-2 Switching and knowledge of configuring the Cisco Routers and Switches.
• Expert-level professional experience with Cisco iOS or Juniper JunOS including configuration and troubleshooting.
• Strong hands-on experience on Palo Alto (5060, 3060), Checkpoint Firewall R77, juniper and Cisco ASA 5585 firewall.
• Strong knowledge of various network platforms such as Cisco, Arista, Palo Alto Networks, Juniper and Load balancer
• Has expertise to work in Cisco/Checkpoint/Juniper/F5/Riverbed Products.
• Troubleshooting SDWAN queries through Router based SDWAN technologies.
• Migrated from traditional Cisco to cloud-based Cisco Meraki for Firewall, L3 / L2 switches, and Wireless controllers.
• Migration of firewall rules from Cisco ASA, Checkpoint to Palo Alto firewalls using migration tool from PAN.
• Responsible for check point and Cisco ASA firewall administration across global networks.
• Administering, managing, maintaining and troubleshooting Cisco Firewall, Palo alto firewall, F5 Load balancer, SDWAN devices and network switches related issues.
• Basic knowledge of Cisco based SDWAN (Viptela).
• Experience in implementing IGP, VPN, and MPLS, Network system maintenance, issues connectivity and System upgrading.
• Hands on Knowledge/experience on F5 load balancers, its methods, implementation and troubleshooting on LTMs and GTMs.
• Experience Palo Alto, Network Security, Juniper Firewalls, SSL VPN, Checkpoint, RSA, Cisco Nexus, Cisco ACE, Cisco Wireless.
• Execute DHCP, DNS, IPAM configure on the servers to allocate.
• Cisco Meraki Devices: Switches (MS): MS425, MS350, MS320, MS250, MS225, MS220, MS210, Wireless
• Hands on experience of troubleshooting router based SDWAN failover of traffic.
• Implemented antivirus and web filtering on Juniper SRX 240 at the web server as well as configuration of F5 Big-IP LTM-6400 load balancers and experience working with F5 technologies (LTM, GTM, APM, V9, V10, V11)
• Strong knowledge of Cisco and Juniper software (IOS/XR and JunOS) and hardware.
• Arista Cloud Vision (CVP) & Cloud Vision Exchange (CVX) Deployed on VMs.
• Provide the test results including the bugs found in JUNOS release to the developers.
• Experienced in managing and troubleshooting of SDWAN infrastructure. (Versa SDWAN)
• Adding Client Mac addresses in ISE for Authentication.
• Experience in Network Management Tools and sniffers like SNMP, HP-Open view, Wireshark and Cisco works.
• Working on migration from traditional MPLS platform to SD- WAN technologies (Fat Pipe, Silver Peak, Cisco Meraki).
• Configuring Meraki and Velo Devices- SDWAN. Creating routes, Business Policy ISP change and doing 1:1 NAT
• Analyze cause of defect, whether the defect is due to JUNOS or defect with the script, and to log defects accordingly in JIRA.
• Managed all network and devices to include Cisco routers, switches, VPNs, SSL, Check Point, Cisco PIX, Cisco ASA, Cisco FWSM as well as content delivery networks (CSS, Citrix Netscaler and F5 BigIP LTM and GTM 1600 and 3400 load balancers) enterprise environment.
• Experience in deploying, configuring & maintaining F5 3DNS(Global traffic Manager) Controller and BigIP -LTM(local traffic manager) for wide area load balancing and global redirection using VPN and Proxy load balancing techniques.
• Implemented AAA model using ISE including device administration and Network access.
• Adept knowledge in preparing technical documentation and presentations using Microsoft Visio/ Office.
• Provides technical leadership for problem escalation and resolution.
• Highly motivated with the ability to work independently or as an integral part of a team and committed to highest levels of professionalism.

TECHNICAL SKILLS:

Lan Technologies: vlan, vtp, inter vlan routing, stp, rstp, pvst, 802.1x.

Wan Technologies: Frame relay, isdn, ppp, atm, mpls, Channel & Leased lines.

Network Securities: nat/pat, vpn, l2/l3vpn, Filtering, l oad b alancing f5, ids/ips, IP Sec, acl. Routing Protocols rip, igrp, eigrp, ospf, bgp, is-is, hsrp, ipv6.

Switching Protocols: STP, RSTP, MSTP, VLAN, Router on a Stick, Trunking, and Port Security.

Infrastructure Service dhcp, dns, smtp, pop3, ftp, tftp.: Network Management snmp, ssh, telnet, icmp, ssl.

Operating Systems: Windows 10/8/7/Vista/xp/nt/2003, m ac os x.

Network Tools: Wireshark, Cisco Packet Tracer, Solar Winds, TCP Dump, GNS3.

Diagnostic Tools: Network General Sniffer, Volt Meter, Penta /Omni Scanner, Cable Tester.

Management Tools: Cisco Works, Cisco WCS /WLC, Vital Net, Net QOS, TACACS. QIP

Router: Cisco 1841, 2501, 2511, 2621. Juniper MX 240, MX 480, MX 960 series.

Switch: Cisco 2950, 2960, 3750,4948 and Avaya ERS 3500, Juniper EX 4400, EX 4200, EX 2200.

Firewall: ASA Firewall (5505/5510), Checkpoint, Cisco ASA.

PROFESSIONAL EXPERIENCE:

Confidential, Sunnyvale, CA

Sr Network Engineer

Responsibilities:

• Configuring routing protocols such as OSPF, EIGRP, and BGP with Access Control lists implemented as per Network Design Document and followed the change process as per IT policy. It also includes the configuration of the port channel between core switches and server distribution switches.
• Contributed in troubleshooting of complex LAN/WAN infrastructure that includes routing protocols EIGRP, OSPF and BGP.
• Maintaining multi-site network operations and software applications, operating systems and regular maintenance with private facilities in Onsite.
• Working on ISE firewall Security and Administration.
• Experience in Making ISP Configuration changes on cisco Routers and SDWAN Devices.
• Working with Juniper JUNOS operating system and working on M and MX series routers.
• Implementing and troubleshooting firewall rules in Cisco ASA 5525, 5580, Checkpoint R77.20 Gaia and VSX as per the business requirements.
• Working on Cisco ISE V2.2 including installation, TACACS service configuration and integrating with different devices for AAA implementation.
• Migrated Cisco network infrastructure to cloud managed Meraki infrastructure, that includes Firewalls, Layer 3 / Layer 2 switches, wireless controllers and access points
• Configuration and troubleshooting of Site to Site as well as Remote Access VPN on Cisco ASA and Checkpoint firewall MDS.
• Configuring & managing around 500+ Network &Security Devices that includes Cisco Routers & Switches, Nexus Switches, Juniper and Palo Alto Firewalls, F5 BigIP Load balancers, Blue Coat Proxies and Riverbed WAN Optimizers.
• Working on resolving issues related to VPN (Junos Pulse, Cisco).
• Working in Configuration of SDWAN devices
• Supporting 24*7 environment that include approx. 100+ F5 load balancers LTM, GTM & Enterprise Manager.
• Configuration of Cisco Catalyst, Nexus Switches, Routers, Arista Switches and F5 Load Balancer and Troubleshoot network issues.
• Working experience in end point Posture and Profiling using ISE.
• Currently designing global Cisco SDWAN rollout for enterprise customer.
• Managed cisco devices like Routers switches, Access points and also handle SDWAN sites which has Silver peak Devices, Meraki switches, Open gear devices.
• Having bridge connection between two Juniper MX80 for uplink from Cisco 4948 Devices.
• Removal of Extreme Devices and Replacing with Cisco ASR 9001 for better performance.
• Move of all VLAN’s and Gateways form Extreme devices to Juniper Mx80 and Cisco 4948 switches.
• Involved in network planned event activity during night hours for traffic shifting, IOS and JUNOS up gradation,
• Have configured ACI for remote Authentication in the respective organization, manage project task to migrate from Cisco ASA firewalls to Checkpoint firewalls.
• Working on F5 LTM & GTM ver. 11.x, 12.x, 13.x also Enterprise Manager, BIG IQ.
• JUNOS up gradation on Juniper SRX100 firewall.
• Migration/Installation of complete SDWAN setup from Cisco environment in remote offices.
• Adding Mac address on Cisco ISE and configuring ISE related configuration on Switch.
• Working with Cisco Meraki Cloud VPN
• Having bridge connection between two Juniper MX80 for uplink from Cisco 4948 Devices in order move the ports from Extreme devices to Cisco.
• Removal of Extreme Devices and Replacing with Cisco ASR 9001 for better performance.
• Careful move of access ports and trunk port that exist on VLAN’s and check for traffic is taking place.
• Working on Routing protocols Eigrp and BGP. Working on Infoblox for IPAM, DHCP and DNS. Working on Linksys, SG500, Cisco, Arista switches and Cisco routers.
• Creation & renewal of SSL s on F5 LTM, Configuration of Wide IP & Wide IP Pool on F5 GTM, troubleshooting of advanced Load Balancer problems
• While on migration, checking for the host device are also active on the new devices through mac address which are present on VLAN’s.
• Worked on Checkpoint Platform including Provider Smart Domain Manager. Worked on configuring, managing supporting Checkpoint Gateways.
• Working with Cisco any connect and Junos pulse
• Working on evaluating SDWAN for implementation across branches.
• Proper collection of Management VLAN’s IP address from customer end and Console IP’s for CISCO 4948 switches which are in replace.
• Assisted in the architecture, evaluation and recommendations related to purchasing and installing hardware, software related to IP Networking.
• Documented workflow process, managing and implementing standard policy and procedures.

Confidential, Wayne, PA

Sr. Network Engineer

Responsibilities:

• Responsible for configuration, maintenance, and troubleshooting of dynamic routing protocols: BGP, OSPF & EIGRP (route redistribution, distribute lists, route-maps, offset-lists, prefix lists, route summarization, route-feedback, BGP attributes) on Cisco Routers 7613, 7201 and 3945E.
• Involved in design and implementation of Data center migration with the help of Visio design.
• Worked on NEXT-gen technologies like SDWAN (Velocloud, Viptela), SDN (NFV)
• Experience in designing and deploying SDWAN infrastructure which includes commissioning of vBond, vManage, and vSmart controllers along with Viptela and Cisco WAN Edge devices.
• Worked on Migration of Juniper SRX firewalls for isolation of network segments and VPN's, ASR (9k, 901,903).
• Worked on different modules of Checkpoint Next Generation firewall R77.30 such as IPS.
• Physical installation experience in Cisco and Arista switches and routers.
• Change Requests involves analysis, investigation of the changes, co-ordination with the MSPs, Change reviewer Team, Configuring changes on Load balancer and Implementation.
• Managing SaaS Cloud Datacenter Network include Cisco FWSM firewall, Cisco ASA, Check Point and F5 Load Balancer.
• Involved in application Notes for Network Instruments Observer Suite with Avaya device Manager.
• Troubleshoot network issues like LAN, wireless, VPN like Junos Pulse and Remote access to HP Incorporation
• Designing, Implementing and Troubleshooting Cisco 3750, 3550, 3560, 2924, 6509-V-E, 6513, 6504, 6503, 6506, 6500 series switches, GSR, ASR routers with Cisco IOS and IOS-XR.
• Installed, configured and managed Cisco routers such as 7200 series, 3800 series, 3700 series, 2800 series and Cisco Catalyst switch series 6500, 4500, 3500, and 2900.
• Has expertise to work in Cisco/Checkpoint/Juniper/F5/Riverbed Products.
• Monitoring the traffic through Cisco catalyst switches for Detection of Intrusion using IDSM2 and its Prevention IPS.
• Configuration of Cisco Catalyst, Nexus Switches, Routers, Arista Switches and F5 Load Balancer and Troubleshoot network issues .
• Expert-level professional experience with Cisco iOS or Juniper JunOS including configuration and troubleshooting.
• Implementing 3750 Stackable switches using Cisco Stack Wise technology. Experience to review and evaluate current and future design issues as required maintaining network integrity, efficient data flow.
• Worked on Layer 2 protocols such as STP, VTP, RSTP, PVSTP+, MST and other VLAN troubleshooting issues and configuring switches from scratch and deployment.
• Involved in designing and implementing QOS and policy map to 2800 series routers for all the branches.
• Designed & Implemented DMZ solutions for data center environment, build checkpoint firewall policies for the same
• Perform various scheduled maintenance tasks across numerous platforms and datacenters such as building VLANs and configuring switch ports on Cisco, Brocade.
• Experience Branch Relocation: Connect workstation, servers, etc. Rack and stack Pre-configured new hardware and connect the circuits. Work with Carrier to test and turn-up circuits.
• Involved in operations and administration of WAN consisting Ethernet Handoffs, T1, DS3, and Optic Fiber Handoffs.
• Installation of all kind network devices including PaloAlto (PA-820, PA 3020 and PA 3050), F5 load balancer, CISCO Switches (N3048TP, N31108TC, N5596T) and Routers.
• Supporting EIGRP and BGP based on the network by resolving level 2 & 3 problems of internal teams & external customers of all locations.
• Worked with Juniper JUNOS operating system and working on M and MX series routers.
• Installed & Troubleshooter layer 2 and 3 issues on Brocade routers and switches.
• Actively involved in switching technology Administration including creating and managing VLANS, Port security - 802.1x, Trunking 802.1Q, RPVST+, Inter-VLAN routing and LAN security on Cisco Catalyst Switches 4507R+E, 6509-E and Cisco Nexus Switches 2232, 5596, 7009.
• Migrating device to SDWAN.
• Configured Voice ports and Dial peers on the call manager for the VOIP call to reach remote destination.
• Worked on configuration and commissioning of the MPLS circuits for various branch offices.
• Provided Daily network support for national wide area network consisting of MPLS, VPN and point-to-point site.

Confidential, Vernon CA

Sr. Network Engineer

Responsibilities:

• Configuring and implementing of Composite Network models consists of Cisco 7600, 7200, 3800 series routers and Cisco 2950, 3500, 5000, 6500 Series switches.
• Implemented migration project of Email environment firewall from Junos to Fortigate 5000 series appliance
• Conversions to BGP WAN routing, which will be to convert WAN routing from OSPF to BGP which involves new wan links.
• Updating software on Avaya devices for Ethernet routing Switch 2500 and 5000 as per the request.
• Carrying out various F5 Load balancer activities from creating new Virtual Servers, Pools, Members,
• Deployed Checkpoint GAIA Firewalls at the Data Centers.
• Migrated 1500 Plus existing traditional Network setup to Fortinet SDWAN technologies for client network.
• Assigning VLAN and DHCP on avaya ERS 3500 form the customer end and assigning temp-links for other avaya devices.
• Configuring firewall switch module on Cisco 6506 distribution layer switches, configuring VTPs, trunking, inter-VLan routing, port fast, uplink fast, backbone fast on access layer switches.
• Planned and installed Frame Relay WAN links to the branch offices.
• Maintained and setup wireless access points at various locations in the company.
• Understanding of WLAN including 802.11 standards, Lightweight and Autonomous systems.
• Experience in monitoring, alerting, preventive action framework for Brocade SAN switches.
• Implemented migration project of internet edge perimeter firewall from JUNOS to cisco FTD 2140 series appliance SSL Client/Server management using Venafi tool for F5.
• Assisted in MPLS migrations, implemented a backup for the existing WAN connection using site-to-site IPsec VPN tunnels.
• Knowledgeable in configuration of Voice VLAN’s (VOIP), prioritizing the voice traffic over the data traffic, Telecom, using Dark fiber created fast speed line between two campus, Wireless networks.
• Deployed Checkpoint GAIA Firewalls at the Data Centers.
• Worked on Network Traffic sizing of cloud to network through security firewalls.
• Remediation of firewall rules from checkpoint firewalls to Cisco ASA firewalls and their implementation.
• Worked on JunOS Upgradation of Ex4200 Switch.
• Migration of existing Physical Cisco Load balancer CSS11501 to Virtual F5
• Configuring and troubleshooting OSPF routing protocol on the corporate network.
• Tested and implemented various BGP attributes such as Local P, MED, AS-PATH, Community, Extended community using route-maps.
• Worked on migration of Frame Relay based branches to MPLS based VPN for customer’s WAN infrastructure.
• Worked on migration of existing PIX firewall to ASA firewall, PIX OS upgrade from 6.3 to 7.0, also configured on BIG IP (F5) Load balancers and also monitored the Packet Flow in the load balancers.
• Implemented VLAN, LAGs, and Port-channels on Brocade switches.
• Implemented BNA (Brocade Network Advisor) on the migrated network for monitoring and management of the network devices.
• Have good working experience with the Trouble Tickets on F5 Load Balancers.
• Managing enterprise BGP setup by configuring and troubleshooting BGP related issues.
• Troubleshoot issues related to VLAN, VLAN Trunking, HSRP failovers, related issues.
• Configuration of NAT.
• Addition, Modification of F5 Load Balancer and switches for Monitoring Purpose.
• Worked on emerging trends like SDWAN and implementation of the in house SDWAN product working closely with development and testing team.
• Worked on Junos Space and Network Security Management
• Provided technical security proposals, detailed RFP responses, and security presentation, installing and configuring ASA firewalls, VPN networks and redesigning customer security architectures.

Confidential

Network Engineer

Responsibilities:

• Responsible for assisting implementation, troubleshooting, and maintaining operations of network systems.
• Provide desktop support including creating images specific to client requirements and deal with issues pertaining to hardware and applications.
• Responsible for configuring and maintaining communications including firewalls, Internet connections, VPN, point to point connections, and remote access.
• Build, maintain, and examine core network services including anti-virus and back-up.
• Perform routine network maintenance checks as well as configure and manage printers, copiers, and another miscellaneous network equipment.
• Troubleshooting DHCP and Static IP mismatch issues in the company printers.
• Participate in a rotating 24/7 on-call rotation.
• Implemented Different VLANs as per departments in the firm.
• Performed deep-packet troubleshooting using wire-shark.
• Troubleshooting DNS issues.
• Worked as assistant in team of senior engineers for solving various network problems.