SUMMARY:

• 8 years of experience in networking, installing, configuring and maintaining network devices.
• Implementing IP addressing schemes, LAN/WAN protocols, IP Services, to fulfill network requisites in different environments.
• Hands on experience in configuring Cisco Catalyst 2960, 3750, 4500, 6500 series, and Cisco 2600, 2800, 3600, 3800, 7200, 7600 series routers, Cisco Nexus 7000 series, 5000 series, 2000 series data center switches, Juniper EX/ MX/ SRX series.
• Comprehensive expertise in the implementation of optimization, analysis, troubleshooting and documentation of LAN/WAN networking systems.
• Proficient in Configuring Virtual Local Area Networks (VLANS) using Cisco routers and multi - layer Switches and supporting STP, RSTP, PVST, RPVST along wif trouble shooting of inter-VLAN routing and VLAN Trunking using 802.1Q.
• Worked extensively on Cisco FirewallsCisco PIX (506E/515E/525) & ASA 5500(5510/5540)Series.
• Implemented redundancy wif HSRP, VRRP, GLBP, Ether channel technology (LACP, PAgP) etc.
• Implemented traffic filters using Standard and Extended access-lists, Distribute-Lists, Route Maps and route manipulation using Offset-list.
• Hands on in deployment of GRE tunneling, SSL, Site-Site IPSEC VPN and DMVPN.
• Managed inventory of all network hardware, Management and Monitoring by use of SSH, Syslog, SNMP, NTP.
• Strong experience onJuniper SSG series Firewalls and Checkpoint R75, 76 Firewalls.
• Experience wif F5 load balancers - LTM, GTM series like 6800 and 8900 for the corporate applications and their availability.
• Expertise in OSI layer model/TCP/IP.
• Well versed and experienced in routing and switching protocols RIP, OSPF, EIGRP, BGP and VLAN.
• Exposed to handling and troubleshooting issues on NAT.
• Working noledge on configuring access lists. Troubleshooting DNS/DHCP issues wifin the LAN network.
• Expertise in IP subnetting and worked on various designing and allocating various classes of IP address to the domain.
• Involved in troubleshooting network traffic and its diagnosis using tools like ping, traceroute, WireShark, TCP dump and Linux operating system servers.
• Programming/Scripting: Bash Scripting, Python, C++.
• Expertise in Data Center Core layer, Access layer, Aggregation layer, Services layer.
• Worked extensively on AAA design system.
• Sound noledge of Routing and Switching concepts and MPLS design.
• Proficient in Cisco IOS for configuration & troubleshooting of routing protocols: MP-BGP, OSPF, LDP, EIGRP, RIP, BGP v4, MPLS.p
• Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500/PIX security appliance, Failover DMZ zoning & configuring VLANs/routing/NAT wif the firewalls as per the design.
• In-depth noledge and hands-on experience in Tier II ISP Routing Policies, Network Architecture, IP Subnetting, VLSM, TCP/IP, NAT, DHCP, DNS, FT1 / T1 / FT3 / T3 Sonet POS OCX / GigE circuits, Firewalls.
• Configured and deployed QOS and defined class of service (COS) WRED and WFQ for bandwidth management.
• Primary responsibility is to design and deploy various network security & High Availability products lick Cisco ASA other security products.

TECHNICAL SKILLS

Cisco Routers: 1600,1700,2600,2800, 2900, 3600, 3800, 7200 and 7600

Cisco L2 & L3 Switches: 1900,2900, 3560, 3750, 4500, 4900, 6500

Cisco Nexus: 5020,5548,5596T,2148,2248TP,2348UPQ,7010,7702

Juniper: EX-2200, EX-4200, EX-4500, MX-480, M Series, SRX210, SRX240

LAN Technologies: Ethernet, Fast Ethernet, and Gigabit Ethernet, SMTP, VLAN, Inter-VLAN Routing, VTP, STP, RSTP, Light weight access point, WLC.

WAN Technologies: Frame Relay, PPP, HDLC, (E1/T1/E3T3), DS3, OC192.

Network Security: Cisco ASA, ACL, IPSEC.

OS products/Services: DNS, DHCP, Windows (2000/2003/2008, XP), UNIX, LINUX.

Routing Protocols: OSPF, EIGRP, BGP, ISIS, VRF, PBR, Route Filtering, Redistribution, Summarization, and Static Routing.

Gateway Load Balancing: HSRP, VRRP, GLBP, EBGP

Various Features / Services: IOS and Features, IRDP, NAT, SNMP, SYSLOG, NTP, DHCP, CDP, TFTP and FTP.

Network Management Tools: Wireshark, Netflow Analyzer, Cisco Works, Etheiral, SNMP, HP open view.

Security Server Protocols: TACACS+, RADIUS.

Facilities: DS0, DS1, DS3, OCX, T1/T3

Load Balancers: Cisco CSM, F5 Networks (BIG-IP) LTM 8900, BIG-IP GTM 6800, Cisco ACE 4710.

Operating Systems: Windows (98, ME, 2000, XP, Server 2003/2008, Vista, Windows 7/8), CentOS, Ubuntu, IOS.

Firewall & Security: Checkpoint (R62, R65, R70, NGX), Cisco ASA, Palo Alto, Juniper SRX, fortigate 5000-series.

PROFESSIONAL EXPERIENCE

Confidential, Menlo park, CA

Sr. Network Engineer

Responsibilities:

• Configuring Static, IGRP, EIGRP, and OSPF Routing Protocols on Cisco 1600, 2600, 2800, 3600, 7300 series Routers.
• Deployed on Nexus 7000, 5000 and 2000 series wif V-Block servers and Cisco UCS E-series.
• Experience in working wif Cisco Nexus 2148 Fabric Extender and Nexus 7010, 5000 series to provide a Flexible Access Solution for datacenter access architecture.
• Experience in configuring, upgrading and verifying the NX-OS.
• Expansion and implementation of current data center for different phases of migration.
• Perform extensivetestingaround the upgrade, migration and configuration functionality of our software.
• Configured Easy VPN server and SSL VPN to facilitate various employees’ access internal servers and resources wif access restrictions.
• Responsible for entire company network infrastructure dat includes Cisco Switches, Routers, Firewalls, Access Points, Servers and PBX.
• Design, Implement & troubleshooting of Juniper switches, routers and Firewalls EX-2200, EX-4200, EX-4500, MX-480, M Series, SRX210, SRX240, SRX 3600/650.
• Configuring and implementation of Juniper Firewall, SSG Series, Netscreen Series ISG 1000, SRX Series.
• Implementation of Site-to-Site VPNs and DMVPN over the internet using IKE Phase 1 and IKE Phase 2 based on traffic wif ASA 5500 series Firewalls.
• Configure various LAN switches such as CISCO CAT 2900, 3550, 4500, 6509 switches and Access layer switches such as Cisco 4510, 4948, 4507 switches for VLAN, Fast Ether Channel configuration.
• Managing and troubleshooting of Juniper M320 routers including installation, upgrade, configuration and network management.
• Configuration and troubleshooting of CSM, integration wif ASA devices.
• Experience in migration of VLANS & Configured VLANs wif 802.1q tagging, Ether channels, and Spanning tree for creating Access/distribution and core layer switching.
• Creation of firewall rules on Checkpoint Smart Dashboard and install policies.
• Developed a Python script to automate the data fetching and processing mechanism for the network
• Developed various Splunk search scripts to process and filter the network data as per the requirements
• Management of corporate Checkpoint Firewall implementing security protocols and alleviating network attacks
• Deployed Palo Alto Firewalls for web filtering and application control.
• Configured EBGP load balancing and Ensured stability of BGP peering interfaces.
• Worked on Route-Reflectors to troubleshoot BGP issues related to customer route prefixes also route filtering using Route-maps.
• Designed and implemented DMZ for Web servers, Mail servers & FTP Servers using Cisco ASA5500 Firewalls.
• Worked on FortiGate 5000-series security appliance to maintain SSL Inspection, Application control, Firewall and VPN management.
• Extensive use of NSM (Network and Security Manager), FortiOS 5 and CSM (Cisco Security Manager) for adding or modifying firewall policies for the firewalls in use.
• Worked extensively on Cisco ASA 5500(5510/5540) Series, experience wif convert PIX rules over to the Cisco ASA solution.
• Worked on migration of existing PIX firewall to ASA firewall, PIX OS upgrade from 6.3 to 7.0.
• Design and Implement DMZ for FTP, Web and Mail Servers wif CISCO PIX 506, PIX515.
• Mapped, Network Diagrams and physical identification in MS Visio.
• Worked wif engineering team to resolve tickets and troubleshoot L3/L2 problems efficiently.
• Configured Cisco 2800, 3800 routers and 3750, 4500, 6500 switches as part of the implementation plan.

Environment: Cisco2948/3560/4500/3560/3750/3550/3500/2960 6500 switches and Cisco 3640/1200/7200/7600/3845/3600/2800 routers, Cisco Nexus 5K/2K, Cisco ASA 500, Juniper- net Screen 5200/500, EX-2200, EX-4200, EX-4500, MX-480, M Series, SRX210, SRX240, SRX 3600/650, Checkpoint, Fortigate 5000-series windows server 2003/2008: F5 BIGIP LTM, RIP, OSPF, BGP, EIGRP, LAN, WAN, VPN, HSRP

Confidential, Montvale, NJ

Sr. Network Engineer

Key Responsibilities:

• Troubleshooting the TCP/IP networks for connectivity, outages and slow network issues and recommended appropriate and cost-effective solutions for the congestion.
• Network consists of Heavy Cisco equipment such as: Cisco 3560 2950 2924 switches, Cisco 6509 6513 5500 series Layer 3 switches, Cisco 3825 3640 7200 series routers, Cisco Pix firewall 500 series and Wireless Access points Cisco 1230.
• Worked on F5 BIG-IP LTM 8900, configured profiles, provided and ensured high availability.
• Worked on F5 and CSM load balancers deploying many load balancing techniques wif multiple components for efficient performance.
• Responsible for deploying various network security & High Availability in Checkpoint Firewall
• Configuring routing protocols OSPF, EIGRP, RIP, MPBGP, LDP and BGP V4
• Configuring HSRP between VLANs, Configuring Ether-Channels, Port Channel on 6500 catalyst
• Build Logical design and Implementation of Wireless Solution
• Design an End -to-End High- Level Cisco TrustSec Network wif Cisco ISE and 802.1x
• Experience wif configuring VMware and managing and maintenance of VMs (virtual server)
• Experience wif convert Checkpoint VPN rules over to the Cisco ASA solution. Migration wif Checkpoint and Cisco ASA VPN experience
• Responsible for Cisco ASA firewall administration across our global networks
• Experience wif migration of Checkpoint R54 to SPLAT
• Configured various BGP attributes such as Local Preference, MED, Extended Communities, Route-Reflector clusters, Route-maps and route policy implementation.
• Actively participated in upgrading fast Ethernet, Layer 3 switched/routed LAN infrastructure from Cisco 3640 to Cisco 2811 ISR routers and switches at access level to 2950, 3550.
• Configured Nexus 5020, 5548 7010 and 7702 wif multiple distribution VDC’s running EIGRP for route propagation between them.
• Experience wif configuring Nexus 2000 Fabric Extender (FEX) hitch acts as a remote line card (module) for the Nexus 5000.
• Created a replica of the ISP model over CentOS using OSPF, BGP and IPSEC .
• Created a Web based HTTP server using socket programming in Python
• Continual network monitoring of data center support, troubleshoot and diagnose hardware problems.
• Configured various Router interfaces like ATM interface, T3 & Channelized T1 interfaces
• Configuring and troubleshooting CISCO catalyst 6509, 7609, 7613 wif Supervisor cards, Cisco 3640, Cisco GSR 12416,21418(wif PRP and RPR processors)
• Configuring and implementing F5 BIG-IP LTM, GTM load balancers to maintain global and local traffic

Environment: Cisco 3560/2950/2924/6509/6513/5500 switches, Cisco 3825/3640/7200 routers, Nexus 5020/5548/7010/7702/2000series, VPN, BGP, OSPF, RIP, EIGRP, F5 BIG-IP, LTM, GTM, VLAN, VTP and Checkpoint.

Confidential, Bellevue, WA

Network Engineer

Key Responsibilities:

• Involved in the configuration & troubleshooting of routing protocols: MP-BGP, OSPF, LDP, EIGRP, RIP, BGP v4. Configured IP access filter policies. Cisco CLI, Cisco works, Network Security, Network Analysis Tools
• Experience wif Checkpoint Firewall policy provisioning.
• Firewall Policy implementation on Checkpoint R62 and R65 using Provider 1
• Develop, design and implement firewall infrastructure surrounding Checkpoint and Cisco Firewalls and a good experience wif security tools and protocols like NERC/CIP and SOX
• Troubleshoot traffic passing managed firewalls via logs and packet captures.
• Having noledge on the Data Centre Multi-Tier data design
• Configured and resolved various OSPF issues in an OSPF multi area environment.
• Hands-on experience wif WAN (ATM/Frame Relay), Routers, Switches, TCP/IP, Routing Protocols (BGP/OSPF), and IP addressing.
• Layer 2 switching technology architecture, implementation and operations including L2 and L3 switching and related functionality. dis includes the use of VLANS, STP, VTP and their functions as they relate to networking infrastructure requirements including internal and external treatment, configuration and security.
• Configuration and troubleshooting of Cisco catalyst 6509, 7613 wif supervisor cards.
• Estimated Project costs and created documentation for project funding approvals.
• Managed various teams involved in site surveys, cabling specifications, Network equipment installation and configuration.
• Planned resources and presented project status to higher management.
• Deployed 7613 as PE and CE routers and configured the Edge Routers.
• Excellent troubleshooting noledge on T1, T3, OC-3 and OC-12.
• Created and delivered internal trainings for BGP.
• Having Hands on experience wif deployment and Configuration wif MAC Autantication Bypass
• Configured egress and ingress queues for ISP facing routers using CBWFQ.
• Generating RCA (Root Cause Analysis) for critical issues of layer1/layer2/layer3 problems.
• Ability to analyze, configure and troubleshoot networks.
• Responsible for service request tickets generated by the helpdesk in all phases such as troubleshooting, maintenance, upgrades, patches and fixes wif all around technical support
• Supporting EIGRP and BGP based PwC network by resolving level 2 &3 problems of internal teams & external customers of all locations

Environment: Net Flow, TACACS, EIGRP, RIP, OSPF, BGP, VPN, MPLS, CSM, SUP720, Ether Channels, Cisco 7200/3845/3600/2800 routers, Fluke and Sniffer, Cisco 6509/ 3750/3550/3500/2950 switches, Checkpoint firewalls(SPLAT).

Confidential

Network Engineer

Key Responsibilities:

• Connected switches using trunk links and Ether Channel.
• Responsible for maintenance and utilization of VLANs, Spanning-tree, HSRP, VTP of the switched multi-layer backbone wif catalyst switches.
• Implemented redundant Load balancing technique wif Internet applications for switches and routers.
• Support Network Technicians as they require training & support for problem resolution including performing diagnostics, & configuring network devices
• Used Network Monitoring tool to manage, monitor and troubleshoot the network.
• Configured Cisco IOS Feature Set, NAT and Simple Network Management Protocol (SNMP) for Network Security implementation.
• Received inbound calls of technical nature, independently resolved customer complaints, concerns and inquiries regarding their Internet connection.
• Troubleshoot a wide range of technical support issues and connectivity problems such as autantication, connection speed, e-mail configuration, and loss of synchronization.
• Experience in new employee mentoring, training and coaching.

Environment: Cisco 1600/1700 routers, Cisco 1900 switches