SUMMARY:

• Around 7 years of Experience in designing, deploying and troubleshooting Network & Security infrastructure on routers, switches (L2/L3) & firewalls of various vendor equipment.
• Working Knowledge of Cisco IOS, CatOs, Junos & NX - OS (7K, 5K&2K).
• Efficient designing of IP Addressing Scenario using VLSM and Sub netting.
• Good at OSI Layers concepts.
• Strong hands on experience on ASA (5505/5510/5540/5585 ) Firewalls, Juniper (SRX 110/210/220/550 ).
• Implemented security policies using ACL, Firewall, IPSEC, SSL, VPN, IPS/IDS, AAA (TACACS+ & RADIUS).
• Knowledge on complex Juniper, Cisco ASA & Palo Alto firewalls Environment.
• Strong hands on experience in layer-3 Routing and layer-2 Switching. Dealt with Nexus models like 7K, 5K, 2K series, Cisco router models like ASR 9K, ASR 1K, 7200, 3900, 2900, 2800, 2600, 2500, 1800 series and Cisco catalyst 6500, 4500, 3850, 3750, 3500, 2900 series switches
• Technology and Infrastructure consultant for Cisco and Juniper design and implementation projects. Specific tasks include installations, configurations, support and maintenance of routers and switches.
• Experience with design and deployment of MPLS Layer 3 VPN, MPLS Traffic Engineering, MPLS QOS
• Diverse industry exposure - Finance, Telecom, and IT consulting Markets.
• Extensive experience in configuring Layer3 routing and layer2/3 switching of Juniper & Cisco based J2320,MX,EX,2950,2960,3600,3750,4500,6500,1700,1800,2600 and 3700 series routers & Switches.
• Troubleshooting & implementation of Vlan, STP, MSTP, RSTP, PVST, 802.1Q, DTP, HSRP, VRRP, GLBP, LACP, PAGP, AAA, TACACS, RADIUS, MD5, VTP & SVI.
• Proficient in setting up IT infrastructure including wide area networks (WAN) local area networks (LAN), security management systems network device administration.
• Experience working with Cisco IOS-XR on the ASR9000 devices for MPLS deployments
• Experience configuring & troubleshooting routing protocols like RIP, OSPF, BGP, EIGRP.
• Hands-on experience with Juniper SRX - Juniper SSL VPN
• IOS/JUNOS upgrade for Cisco & Juniper routers/switches.
• Experience in testing Cisco & Juniper routers/switches in laboratory scenarios and deploy on site for production.
• Good communication skills and a team player, Effective inter-personal skills, adaptive to any environment, with the latest technologies and delivering solutions as an individual and as part of a team

TECHNICAL SKILLS:

Routing Protocols: RIP, BGP, OSPF, EIGRP, Static Routing, IP Addressing, Subnetting, VLSM

Communication Protocols: TCP/IP, UDP, DHCP, DNS, ICMP, SNMP, ARP, PPP

Redundancy Protocols: GLBP, HSRP, VRRP

Topologies: MPLS, Ethernet, Cable Modem, and Wireless

Switch Technologies: VLANs, VTP, STP, DTP, ISL and dot1q

Network Hardware: Cisco switches (2960, 3550, 3560, 4500, 6509, and 6513), Cisco Nexus Switches (2248, 2232, 5548, 5596, 7010, 7718), Cisco routers (1900, 2900, 3900, 7200, ASR-1k/9k), Cisco ASA 5500 series, CSU/DSU s, network cards, Modems and F5 Network Load Balancer

Network Management Tools: MRTG, HP Open view, Cisco WAN manager, Cisco works 2000, Solarwinds Orion, Zenoss

Security: NAT/PAT, Ingress & Egress Firewall Design, VPN Configuration, Internet Content Filtering, URL Filtering -Web-sense, SSL, IPSEC, IKE, Static, Dynamic, Reflexive ACL, and authentication AAA (TACACS+ & RADIUS).

Firewall: Cisco ASA, Juniper SRX, Palo Alto

Network Simulators: GNS3, Packet Tracer, Wire shark

OS: Windows, UNIX, LINUX

PROFESSIONAL EXPERIENCE:

Confidential, Chicago, IL

Sr. Network Engineer

Responsibilities:

• ExperienceworkingwithdatacenterdeploymentwhereweconvertedfromCisco6500toNexus.
• ExperiencewithconfiguringFCOEusingCisconexus5548.
• ExperienceworkingwithJuniperdeviceslikeEX 2200,EX 4200,EX 4500,MX 480,MSeries,SRX650,SRX240
• TroubleshootwanrelatedproblemsincludingOSPF,EIGRP,BGProutinganddesign
• ExperienceSupportingEIGRP,OSPFandBGPbasednetworkbyresolvinglevel2&3problemsof internalteams&externalcustomersofalllocations
• ExperiencewithconfiguringBGP,OSPFinJuniperMandMXseriesroutersfor branch/Backoffice locations.
• ExperiencewithsettingupIPSECVPNonCisco5585Firewallstowardsthemultiple vendors
• ExperienceworkingwithNexus7010/Nexus7018,5020,2148,2248devices
• Experience configuring VPC, VDC and ISSU software upgrade in Nexus 7010
• ExperiencewithconfiguringNexus2000FabricExtender(FEX)whichactsasaremotelinecard (module) fortheNexus5000
• ExperienceworkingwithF5LTM3600/6400 andGTM 2200/4200indatacenter
• ConfiguredVirtualServers,ConfigureNodes,andconfiguringtheloadbalancingPoolsandalsousedtoworkwithconfiguringloadbalancingalgorithms.
• Experience configuring sessionbasedpersistenceandIhaveleantconfiguringwritingi Rulesfor specificredirectionpurpose@andalsoi rulesforpersistence.
• DealtwithcreatingVIP(virtualservers),pools,nodesandapplyingIRulesforthevirtualserverslike cookie persistency,redirectionoftheURL
• Provided Load Balancing towards access layer from core layer using F5 Network Load Balancers.
• ConfiguredCisco3502wirelessaccesspoints.
• Supplieddocumentation,escalation,andstandardoperatingproceduresasneededtoallowforasmoothtransitionwithintheNOC.
• Modifiedinternalinfrastructurebyaddingswitchestosupportserverfarmsandaddedserversto existing
• DMZenvironmentstosupportnewandexistingapplicationplatforms.
• DesignedandinstallednewBranchnetworksystems.Resolvednetworkissues,rantestscriptsandpreparednetworkdocumentation.
• PerformedswitchingtechnologyadministrationincludingVLANs,interVLANrouting,Trunking,STP,RSTP,portaggregation&linknegotiation.
• ConfigurationofAccessListACL(STD,Ext,Named)toallowusersalloverthecompanytoaccess different applicationsandblockingothers.
• InvolvedinconfiguringIPQualityofservice(QOS)
• WorkedonLayer2protocolssuchasSTP,VTP,STP,RSTP,PVSTP+,MSTandotherVLAN troubleshooting issuesandconfiguringswitchesfromscratchanddeployment
• Primaryresponsibilityistodesignanddeployvariousnetworksecurity&HighAvailabilityproducts like CiscoASAothersecurityproducts
• Convert Branch WAN links from point to point circuits to MPLS and to convert encryption from IPSec/GRE to GetVPN.
• Configured, implemented, and troubleshoot routers and switches with various account settings permissions, and parameters including security firewalls.
• Plan Design and assist in deploying enterprise wide Network Security and High Availability Solutions for ASA and SRX Firewalls
• Work as a part of the DMZ migration and consolidation for external vendors into a new environment on ASA 5585 devices.
• Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500/Juniper security appliance, Failover DMZ zoning & configuring VLANs/routing/NATing with the firewalls as per the design.
• Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500/PIX security appliance, Failover DMZ zoning & configuring VLANs/routing/NATing with the firewalls as per the design.
• Multipoint VPN: IPSec, IKEv2, DES, 3DES, AES (-128, -192, -256), Pre-Shared Key, X.509v3, MD5, SHA-1, NAT-T, firewall rules for each VPN connection, configuration assistance via web interface, remote-controlled activate/ deactivate connection.
• Data center migration was involved in Access, Distribution and Core layers.
• Created MOPS and get approval from peers to perform configuration add/ remove changes.
• Actively participated in upgrading fast Ethernet, Layer 3 switched/routed LAN infrastructure from Cisco 3640 to Cisco 2811 ISR routers and switches at access level to 2950, 3550.
• Configuration and extension of VLAN from one network segment to other segment between Different vendor switches (Cisco, Juniper).
• Configuring Vlan’s, VTP’s, enabling trunks between switches.
• Configured VLANs with 802.1q tagging. Configured Trunk groups, ether channels, and Spanning tree for creating Access/distribution and core layer switching architecture.
• Performed Configuration on ASR 9K Pairs includes HSRP, Bundle Ethernet Config, Assigning DHCP profiles.

Confidential, Santa Monica, CA

Network Engineer

Responsibilities:

• Involved in the Configuration and Administration of Cisco and Juniper Routers and Switches
• Experience working with Nexus 7010, 5548, 5596, 2148, 2248 devices.
• Implemented Site-to-Site VPNs over the internet utilizing 3DES, AES/AES-256 with ASA and JUNIPER SRX Firewalls
• Experience with setting up MPLS Layer 3 VPN cloud in data center and also working with BGP WAN towards the bank.
• Configure and troubleshoot Juniper EX series switches and routers at branches/backoffices.
• Experience with moving data center from one location to another location, from 6500 based data center to Nexus based data center
• Created documents for various platforms including Nexus 7k, ASR9k, and ASR1k enabling successful deployment of new devices on the network.
• Modified internal infrastructure by adding switches to support server farms and added servers to existing DMZ environments to support new and existing application platforms.
• Involved in Implementation and Configuration (Profiles, I Rules) of F5 Big-IP C-4400 load balancers.
• Network Redesign for Small Office/Campus Locations. This includes changes to both the voice and data environment
• Worked on a broad range of topics such as proactive monitoring and maintenance, disaster recovery exercises, and core network repairs
• Advanced expertise and hands-on on Cisco IOS-XR software platform on Cisco 12000 series routers
• Experience working with ASR 9000 series switches with IOS-XR
• Advanced expertise and hands-on on Cisco IOS, IOS-XR 4.1.2 and 4.3.31 software platform on 12000 series routers
• Well Experienced in configuring protocols HSRP, GLBP, ICMP, IGMP, PPP, PAP, CHAP, and SNMP.
• Experience with communicating with different with different customers/Vendors, IT teams in gathering the details for the project
• Switching tasks include VTP, ISL/ 802.1q, IPSec and GRE Tunneling, VLANs, Ether Channel, Trunking, Port Security, STP and RSTP.
• Experience in installing and configuring DNS, DHCP servers.
• Replace branch hardware with new 3900 routers and 3750 POE Switches.
• Convert Branch WAN links from Point to Point circuits to MPLS and to convert encryption from IPSec/GRE to GetVPN.
• Responsible for layer 2 securities which was implemented using a dedicated VLAN ID for all trunk ports, setting the user ports to non-trunking, deployed port security when possible for user ports
• Involved in configuring Juniper SRX 550, Cisco ASA 5585 firewall and PALOALTO 5050 firewall
• Enabled STP attack mitigation (BPDU Guard, Root Guard), using MD5 authentication for VTP, disabling all unused ports and putting them in unused VLAN and ensuring DHCP attack prevention where needed

Confidential, Durham, NC

Network Engineer

Responsibilities:

• Responsible for the configuration, implementation and operation of Cisco 3745 routers Cisco 6509 and 3560 L2/L3 switches
• Removed Cisco 3600 and 2600 series routers and Cisco 2900 series switches from the current infrastructure and replaced them with the Cisco 6509 or 3560 L2/L3 switches.
• Configured RSTP, MST and used VTP with 802.1q trunk encapsulation. Provided port binding and port security wherever required. Provided router redundancy through HSRP.
• Configured ether channels using PAgP and LACP.
• Designed ACLs, VLANs, troubleshooting IP addressing issues and taking back up of the configurations on switches and routers.
• Provided testing for network connectivity before and after install/upgrade
• Switching related tasks included implementing VLANS and configuring ISL trunk on Fast-Ethernet and Gigabit Ethernet channel between switches.
• Experience in Cisco switches and routers: Physical cabling, IP addressing, Wide Area Network configurations (Frame-relay and ATM).
• Performed troubleshooting, while maintaining trouble ticket tracking, following internal/external
• Escalation procedures and customer notifications.
• Configured Cisco Routers for OSPF, IGRP, RIPv2, EIGRP, Static and default route.
• Worked on HSRP and GLBP for first hop redundancy and load balancing.
• Configured the Cisco router as IP Firewall and for NATting.
• Prepare, update, and maintain technical and logistical network documentation

Confidential

Network Support Engineer

Responsibilities:

• Configuration, Management, Troubleshooting of Network devices (Routers, Switches). Maintained the Telecommunication Connectivity using DSL and T1 Lines.
• Worked on Routers Cisco 2620, Cisco 3750, and Cisco 2950 Switches & Link sys wireless access points.
• Maintained complex LAN/WAN networks with several VLANS and provided support for routing protocols.
• Managed IP addressing and implemented IP Access Lists
• Configured and troubleshoot VLAN, VTP, STP and Trunks
• Configuring and Maintaining TACACS+ for AAA.
• Installing and configuring protocols like TCP/IP and Internet protocols including Local Area Networking, routing and HTTP.
• RMA’s and provided 24x7 supports.