SUMMARY

• Around 7+ years of hands on experience in network engineering, designing, integrating, deploying, maintaining and supporting broad range of communication systems.
• Configuring, Administering and troubleshooting the Checkpoint and ASA firewall.
• Configured policies on F5 ASM Created rules and scripts for the automation of the environment. Reengineered Firewall policies on Juniper SSG320 and SSG140 Firewalls.
• Worked with the installation of Palo Alto firewall. Migrated with a team from predominantly checkpoint environment to Palo alto global solution.
• Checkpoint level 3 operations support with hardware operation and fixed all problems
• Expertise in Migration of Firewalls from Nortel Contivity to ASA, ASA to Checkpoint, Checkpoint to Palo alto and Vice Versa.
• Experience on NOC and SLA Environments.
• Experience on Design, develop Wi - Fi software feature for Confidential Wi-Fi gateway product. .
• Administer and support employee mobile devices for email, VPN, and communications.
• Strong experience on Juniper SSG series Firewalls and checkpoint R75,76 Firewalls.
• In depth knowledge of Cisco Wireless and Wired Network Technology.
• Experience working on RISK Domain, Tiered Domain, QoS, Ethernet and IP.
• Experience working on Air Magnet Toolset, Cisco Equipment Configuration, Implementation and Support..
• Strong hands on experience on PIX Firewalls, Palo alto, ASA (5540/5550) Firewalls. Implemented Security Po li ci es u si n g AC L, Fir e wall, IP S EC, SS L, V P N, IPS /IDS, A AA (TACA CS + & RA DIUS ).
• Used PowerShell for DevOps in Windows-based systems.
• Performed DevOps for Linux Mac and Windows platforms.
• Completed load and performance testing of extremely complex systems.
• Hands on Knowledge/experience on F5 load balancers, its methods, implementation and troubleshooting on LTMs and GTMs.
• Good knowledge of CISCO NEXUS data center infrastructure with 5000 and 7000 series switches includes (5548, 7010) including CISCO NEXUS Fabric Extender (223, 2248)
• Experience in configuring security technologies like IPsec VPN, DMVPN, VLAN's, policy based routing.
• Ability to Install, Manage & Troubleshoot Large Networks & Systems Administration on Windows & Linux platforms in Development, Lab & Production Environments.

TECHNICAL SKILLS

Routers and Switches: Cisco Switches (2900, 2924, 2950, 3550, 5500, 6500, 6509, 6513), Cisco routers (2600, 2800, 3640, 3700, 3825, 7200, 7204, 7206),Juniper Routers and SwitchesProtocols: RIP, RIP2, PPP, OSPF, EIGRP, IS-IS, BGP, SNMP, HTTP, FTP, TFTP, HTTP, DHCP, SMTP, ICMP, SNMP, NETCONF

WAN Technologies: Frame Relay, ISDN, PPP, ATM, MPLS, Channel & Leased lines: LAN Technologies

Ethernet, TCP/IP, CDP, STP, RSTP, VTP, VLAN, Trunks,: Ethernet channel, MPLS, Carrier Ethernet, Ethernet OAM, Ether Channel, CFM, LACP, LAG, L2TP, PPPoX, 1/10/40/100 G, xSTP

Automation Frameworks: ROBOT, Pybot, Pycharm.

Firewalls: ASA, PIX, SRX, Watch guard, ASDM, CSM, Checkpoint,

Palo Alto Firewall.: Operating Systems

Windows 2000/2003/2008 , windows XP/7, LINUX,: Redhat, UNIX, Macintosh, ONOS, Karaf Containers

Servers: Domain servers, DNS servers, WINS servers, Mail Servers, Proxy Servers, Print Servers, Application servers, FTP Servers

Load balancer: F5 Load Balancer, ACE, LTM & GTM series.

Testing Tools: Spirent, IXIA, iPerf, Ostinato.

Programming Language: Java, XML, and C and C++

PROFESSIONAL EXPERIENCE

Confidential, CA

Sr Network Engineer

Responsibilities:

• Design, implementation and operational support of routing/switching protocols in complex environments including IS-IS, BGP, OSPF, EIGRP, Spanning Tree
• Configuring BIG-IP-F5 LTM and GTM Load Balancers and troubleshooting Issues in F5 and upgrading and modifying the Virtual Pool, Nodes and Virtual Servers.
• Install and Configure GRE Tunnels and Extended the Data Center access to remote sites to access the Data Center.
• Experience working on Air Magnet Toolset, Cisco Equipment Configuration, Implementation and Support..
• In depth knowledge of Cisco Wireless and Wired Network Technology.
• Completed load and performance testing of extremely complex systems.
• Experience working on RISK Domain, Tiered Domain, QoS, Ethernet and IP.
• Writing the Nat rules in Palo Alto FW manager including troubleshooting & validation.
• Installation of Palo Alto (Application and URL filtering, Threat Prevention, Data Filtering).
• Migration from Cisco firewalls to Palo Alto firewalls platforms PA 4000 and PA 500 and PA- 200 firewalls.
• Configured and performed software upgrades on Cisco Wireless LAN Controllers 5508 for Wireless Network Access Control integration with Cisco ISE.
• Configured Cisco ASA 5510 for VPN Network Access Control integration with Cisco ISE (Inline PEPs).
• Monitoring and troubleshooting traffic on Palo Alto 5020 firewall.
• Enabling the TCP, UDP, SMTP ports to allow the traffic between the servers.
• Configured Cisco ASA 5510 for VPN Network Access Control integration with Cisco ISE (Inline PEPs).
• Configured ASA 5500 to ensure high-end security on the network with ACLs and Firewall.
• Expert level knowledge about TCP/IP protocol suite and OSI model.
• Implemented antivirus and web filtering on Juniper SRX 240 at the web server.

Confidential, Atlanta

Network Engineer

Responsibilities:

• Palo Alto design and installation (Application and URL filtering, Threat Prevention, Data Filtering) .
• PIX, Net Screen Firewalls, Check point Provider-1 / VSX, Nokia VPN, Palo Alto IDS, Foundry / F5 Load Balancers, and Blue Coat Packet Shaper systems.
• Experience with configuring Nexus 2000 Fabric Extender (FEX) hich acts as a remote line card (module) for the Nexus 5000.
• Provide technical support in the configuration of Cisco and Juniper routers and switches to include: Cisco Enterprise Equipment, Cisco Routers, Cisco Catalyst Switches, Juniper Enterprise Equipment, Juniper Routers, M-Series, MX-Series, and Juniper EX-Series Switches.
• Adding exemption, editing policy groups on Websense Management Server.
• Configuring RIP, OSPF and Static routing on Juniper M and MX series Routers.
• Installation and configuration of Cisco Nexus 9k, 7k, 5k, 2k (Fexus), ASRs, 6500s, 4510s, 3800s, 2900s.
• Configuring and maintaining F5 SSL VPN and network access and Single Sign-On (SSO) for SAML resources.
• In depth knowledge of Cisco Wireless and Wired Network Technology.
• Experience working on RISK Domain, Tiered Domain, QoS, Ethernet and IP.
• Experience working on Air Magnet Toolset, Cisco Equipment Configuration, Implementation and Support
• Deploying and decommission of VLANs on core ASR 9K, Nexus 9k, 7K, 5K and its downstream devices.
• Experience in Installation, configuration, and troubleshooting on Riverbed Steelheads.
• Responsible for Palo Alto firewall management and operations across our global networks.
• Involved in Bradford NAC policy development, testing and deployment.
• Good understanding of JUNOS platform and worked with IOS upgrade of Juniper devices.
• Provided support for NAC platform including analysis and implementation of NAC requirements
• Experience with devices Palo Alto Network firewalls such as security NAT, Threat prevention & URL filtering.
• Used Cisco routers, switches, Access Points, Concentrators for implementation and management purpose.
• Adding exemption, editing policy groups on Websense Management Server.
• Perform Firewall OS upgrades using CLI, Splat and Voyager GUI.
• Provide technical support in the configuration of Cisco and Juniper routers and switches to include: Cisco Enterprise Equipment, Cisco Routers, Cisco Catalyst Switches, Juniper Enterprise
• Equipment, Juniper Routers, M-Series, MX-Series, and Juniper EX-Series Switches.

Confidential, Plano TX

Network Engineer

Responsibilities:

• Experience on designing and troubleshooting of complex BGP and OSPF routing problems.
• Experience in configuring routing protocols like EIGRP, RIP v2, OSPF & BGP and Cisco ACS protocols like RADIUS and TACACS.
• Experience in migration of Frame-relay based branches to MPLS based technology using multilayer stackable switch like 6500 series and 2800 series router.
• Configuring and troubleshooting perimeter security devices such as Checkpoint NGX R77 Gaia, Provider- 1/MDM, Secure Platform, Palo Alto and ASA Firewalls.
• Redistribution, Installed and Maintained Cisco 3600, 2600 and 7200 backbone routes with HSR.
• Migration of existing IPSEC VPN tunnels from Pre-Shared key to Certificate Authority for purpose of scaling.
• Upgrade firewalls in accordance with change management & Document changes to firewalls.
• Applying crypto maps and security keys for the branches, ISAKMP (Internet security association key management protocol) for establishing Security associations (SA) cryptographic keys.
• Configuring/Troubleshoot issues with the following types of routers Cisco (1700, 2600 and 3500 series).
• Implementing & Troubleshooting of T1, MUXES, CSU/DSU and data circuits.
• Configuration of EIGRP and OSPF as interior gateway protocol with route filtering and route.
• Experience in migration of Frame-relay based branches to MPLS based technology using multi layer stackable switch like 6500 series and 2800 series router.
• Experience in configuring routing protocols like EIGRP, RIP v2, OSPF & BGP and Cisco ACS protocols like RADIUS and TACACS.
• Experience in HSRP standby troubleshooting & Experience in configuring & upgrading of Cisco IOS.
• Have sound knowledge of Firewall architecture, routing and VPN.

Confidential

Network Support Engineer

Responsibilities:

• Responsible for design & management of juniper Netscreen firewalls, juniper switches, cisco switches.
• Configuration, Troubleshooting and Maintenance of Palo alto Firewalls (160+ firewalls) - PA200, PA2000 series, PA3000 series, PA4000 series and PA5000 series.
• Implement changes on switches, routers, load balancers (F5 and Brocade), wireless devices as per engineer’s instructions and troubleshooting any related issues.
• Configuration and troubleshooting of Cisco 2500, 2600, 3000, 6500, 7500, 7200 Series routers.
• Configured VLANs with 802.1q tagging. Configured Trunk groups, ether channels, and Spanning tree for creating Access/distribution and core layer switching architecture.
• Working on the project of F5 LTM and GTM code upgrade project, doing couple of them every week.
• Create and test Cisco router and switching operations using OSPF routing protocol.
• Configured BPDU Guard, port-fast, uplink fast and other spanning tree features.
• Configuration and troubleshooting link state protocols like OSPF in multiple areas.
• Configured HSRP and VLAN trucking 802.1Q, VLAN Routing on Catalyst 6500 switches.
• Configuration 7609, 7606 with OSPF and catalyst 6505, 4500, 3550 switches with various VLAN.
• Configured HSRP and VLAN trucking 802.1Q, VLAN Routing on Catalyst 6500 switches.

Confidential

Network Admin

Responsibilities:

• Designing solutions for frozen requirements using Cisco Routers and Switches.
• Configured Cisco Catalyst 6500, 4500, 3850, 3750, 2960 switches and Cisco 3600, 7200 & ASR 1K & 9k Routers for an enterprise network.
• Implemented ISL and 802.1Q for communicating through VTP.
• Configured routers and modems, troubleshot issues related to broadband technologies for Residential and Business Customers.
• Negotiate d VPN tunnels using IPSec encryption standards and also configured and implemented site-to-site VPN, Remote VPN.
• Apache Web Server & MRTG, BIND DNS Server configuration and optimization over UNIX and Active directory implementation of Windows 2003 Server.
• Worked on Cisco Layer 2 switches (spanning tree, VLAN).
• Configured Cisco Catalyst 6500, 4500, 3850, 3750, 2960 switches and Cisco 3600, 7200 & ASR 1K & 9k Routers for an enterprise network.
• Worked on Juniper J series j2330, M320 routers and EX 3200 switches.
• IOS upgrade in Nexus 7010 through ISSU (In service Software Upgrade).
• Migration of RIP V2 to OSPF, BGP routing protocols.
• Configured & Maintained Cisco 2600, 2800, 3200 series routers including IOS upgrades.
• Configured RADIUS server.
• Configured EIGRP for Lab Environment.
• WAN Infrastructure running OSPF & BGP as core routing protocol.