PROFESSIONAL SUMMARY

• CCNP certified professional wif 8 years of extensive experience in network design, implementation, troubleshooting, engineering, managing & migration of large - scale enterprise campus networks and data center networks.
• Design and configuring of OSPF, BGP on Juniper Routers (MX960, MX480) and SRX Firewalls (SRX240, SRX550).
• Eexperience wif F5 GTM/LTM 8950 and VIPRION configuration/installation/support.
• Expertise in implementing L2 technologies including VLAN’s, VTP, STP, RSTP.
• In-depth expertise in teh implementation of analysis, optimization, troubleshooting and documentation of LAN/WAN networking systems.
• Good noledge ofIP Addressing, Subnetting, VLSM, ARP, OSI and TCP/IP models.
• Expertise in implementing routing protocols RIP, RIP V2, EIGRP, OSPF, ISIS and BGP.
• Configuring and Troubleshooting Route Redistribution between static, RIP, EIGRP, OSPF & BGP protocols.
• Experience in Configuration and Support ofLAN protocols on Cisco Switches such as (Layer2, Layer3 and Multi-Layer).
• Experience working wif High performance data center switch like Nexus 7010, 7018, 7009, 5020, 2148, 2248 devices.
• Dealt wif teh escalation problems for Routing, Switching and WAN connectivity issues using ticketing system like Remedy Ticketing System.
• Experience in layer-3 Routing and layer-2 Switching. Dealt wif Nexus models like 7K, 5K, 2K series, Cisco router models like 7200, 3800, 3600, 2800, 2600, 2500, 1800 series and Cisco catalyst 6500, 4500, 3750, 3500, 2900 series switches.
• Strong hands on experience on PIX Firewalls, ASA (5540/5550) Firewalls. Implemented Security Policies using ACL, Firewall, IPSEC, SSL, VPN, IPS/IDS, AAA (TACACS+ & RADIUS).
• Efficient at use of Microsoft VISIO/Office as technical documentation and presentation tools.
• Working wif Cisco for opening TAC Case and resolving issues to meet project deadlines.
• Experience wif designing, deploying and troubleshooting LAN, WAN, Frame-Relay, Ether-channel, IP Routing Protocols - (RIPV2, OSPF, EIGRP & BGP), ACL's, NAT, VLAN, STP, VTP, HSRP & GLBP.
• Working noledge wif monitoring tools like Solar Winds & network packet capture tools like Wire-shark.
• Configured Security policies including NAT, PAT, VPN’s and Access Control Lists.

TECHNICAL SKILLS

Cisco & other vendor equipments: Nexus 7K, 5K, 2K & 1K, Cisco routers (7600, 7200, 3900, 3600, 2800, 2600, 2500, 1800 series) & Cisco Catalyst switches (6500, 4900, 3750, 3500, 4500, 2900 series). PIX Firewall (506/515/525/535), ASA Firewall (5505/5510), Cisco ACE Load BalancersRouting Protocols RIP, IGRP, EIGRP, OSPF, IS-IS, BGP, HSRP, VRRP & GLBP

Network Management: Solar Winds, SNMP, Cisco Works, WiresharkInfrastructure services DHCP, DNS, SMTP, FTP, and TFT

PLAN technologies: Ethernet, Fast Ethernet, Gigabit Ethernet, & 10 Gigabit Ethernet, Port- channel, VLANS, VTP, STP, RSTP, 802.1Q

WAN technologies: Frame Relay, ISDN, ATM, MPLS, leased lines & exposure to PPP, DS1, DS3, OC3, T1 /T3 & SONET

Network Security: NAT/PAT, Ingress & Egress Firewall Design, VPN Configuration, Dynamic, Reflexive ACL, and authentication AAA (TACACS+ & RADIUS)

Platforms: Cisco IOS-XR, Cisco Cat OS, Cisco IOS (11.x, 12.x), PIX IOS (6.7.x), CAT-OS UNIX, LINUX, Windows XP, NT, 2000, 2003Documentation MS Office, MS Visio

PROFESSIONAL EXPERIENCE

Confidential, Stamford, CT

Sr. Network Engineer

Responsibilities:

• Responsible for designing and implementation of customer’s network and Security infrastructure.
• Involved in complete LAN, WAN, Extranet redesign (including IP address planning, designing, installation, pre configuration of network equipment, testing, and maintenance) in both Campus and Branch networks.
• Experience working wif MPLS Layer 3 VPN on ASR 9006 wif IOS-XR.
• Experience wif converting Cisco 6500 IOS to Cisco Nexus NX-OS in teh data center environment.
• Experience working wif Nexus 7010, 5020, 2148, 2248 devices.
• Experience wif configuring Nexus 2000 Fabric Extender (FEX) which acts as a remote line card (module) for teh Nexus 5000.
• Experience configuring VPC, VDC and ISSU Software upgrades on Cisco Nexus 7010.
• Experience in configuring, upgrading and verifying teh NX-OS operation system.
• Experience wif configuring OTV between teh data centers as a layer 2 extension.
• Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500/PIX security appliance, Failover DMZ zoning & configuring VLANs/routing/NATing wif teh firewalls as per teh design.
• Experience working wif BGP attributes such as Weight, Local-Preference, MED and AS-PATH to influence inbound and out bound traffic.
• Involved in Switching Technology Administration including creating and managing VLANs, Port security, Trunking, STP, InterVlan routing and LAN security.
• Use and maintain routing protocols EIGRP, OSPF and BGP on teh Routers in teh network & also worked on BGP Route Reflectors, Confederations.
• Deployed a large-scale HSRP solution to improve teh uptime of collocation customers, in teh event a core router became unreachable.
• Configured and designed LAN networks wif Access layer switches such as Cisco 4510, 4948, 4507 switches.
• Experience wif convert PIX rules over to teh Cisco ASA solution.
• Responsible for Cisco ASA firewall administration across our global networks.
• Support customer wif teh configuration and maintenance of PIX and ASA firewall systems.
• Design and configuring of OSPF, BGP on Juniper Routers and SRX Firewalls.
• Configuring IPSEC VPN on SRX series firewalls.
• Ability to plan independently and execute producttestingwif quality (White box, Black box testing, Scalability, performance, solution and systemtesting).
• Applies test expertise and experience to craft & execute test plans, conduct negative/exception tests, verification, performance and regressiontestingof RIA, HTML, AJAX, Mobile Web client, integration services, enablers & platforms.
• Configuring Virtual Chassis for Juniper switches EX-4200, Firewalls SRX-210.
• Implemented HSRP on teh Cisco 2948G Layer 3 switches and EIGRP, OSPF on 2 Cisco 2610 routers, teh Layer 3 switch, 3 Cisco 350XL Switches, Cisco 3524XL switches for load balancing and fail over.
• Configuring ASA Firewall and accept/reject rules for network traffic.
• Extensive noledge and troubleshooting in data communication protocols and standards including TCP/IP, UDP, IEEE 802.3, Token Ring, Cable Modem, PPPOE, ADSL, Multilayer Switching, DoD standards.
• Provided Load Balancing towards access layer from core layer using F5 Network Load Balancers.
• Upgraded load balancers from Radware to F5 BigIP v9 which improved functionality and scalability in teh enterprise.
• Managed teh F5 BigIP GTM/LTM appliances to include writing iRules, SSL offload and everyday task of creating WIP and VIPs.
• Other responsibilities included documentation and supporting other teams.

Environment: Juniper firewalls 5GT, 208, SSG 5, 140, 550, 550M, NSM, IDS/IPS, Vulnerability Assessment tools like Nessus, Red Hat, Solaris, Juniper VPN’s, SSL

Confidential, Tennessee

Network Operations Engineer

Responsibilities:

• Designed, installed, and maintained various WAN technologies and applications connecting remote sites to corporate headquarters.
• Configured, implemented, and troubleshoot routers and switches wif various account settings, permissions, and parameters including security firewalls.
• Primary responsibility is to design and deploy various network security & High Availability products like Checkpoint NGX, Provider-I, Nokia appliance, Cisco ASA other security products
• Installed various network hardware including concentrators, bridges, and hubs to establish communication connections wif remote locations.
• Configured multiple domain name services (DNS), email services (Exchange Server), web, and file transfer protocol services (FTP) for various platforms including line leasing through DHCP servers.
• Configuring various advanced features (Profiles, monitors, iRules, Redundancy, SSL Termination, Persistence, SNATs, HA on F5 BIGIP appliances SSL termination and initiation, Persistence, Digital Certificates, Executed various migration/upgrade projects across F5 and hands on wif F5 BIGIP LTMs/EM.
• Experience wif creating VIP (virtual servers), pools, nodes and applying iRules for teh virtual servers like cookie persistency, redirection of teh URL.
• Networking protocols worked wif included but not limited to TCP/IP, DNS, WINS, DHCP, VPN, Terminal Services, Routing and Remote Access, Network Design, wiring and cabling.
• Cisco IOS experience on 3600/7200 class hardware in complex WAN environment and experience on Cisco OS and IOS on CAT6500 in a complex data center environment.
• Hands on experience installing Sup720 for Cisco 6509-E series and its Gigabit Ethernet port deployment in teh core network.
• Configuring IP, RIP, EIGRP, OSPF and BGP in routers.
• Experience in deploying EIGRP/BGP redistribution and teh changing teh metrics for teh primary and backup.
• Paths for teh packet prioritization and EIGRP tuning.
• Experience on a mesh 6500 and 5500 series routes and switches to support teh core trading system. Involved
• Experience working wif Nexus 7010,7018, 5020, 2148, 2248 devices
• Experience working wif High performance data center switch like nexus 7000 series
• Configuring IPSEC VPN on SRX series firewalls
• Provided redundancy in a multi homed Border Gateway Protocol (BGP) network by tunings AS-path.
• Configured IPsec site-to-site VPN connection between Cisco VPN 3000 Concentrator and Cisco 3800.

Environment: Juniper firewalls 5GT, 208, SSG 5, 140, 550, 550M, NSM, IDS/IPS 6500/3750/3550/3500/2950 switches, Juniper (M320, T640), Load balancing, Cisco 7200/3845/3600/2800 routers, TACACS, EIGRP, RIP, OSPF, BGP, VPN, MPLS, Ether Channels

Confidential, Quincy, MA

Network Support Engineer

Responsibilities:

• Installation and Configuration of Cisco Catalyst switches 6500, 3750 & 3550 series and configured routing protocol OSPF, EIGRP, BGP wif Access Control lists implemented as per Network Design Document and followed teh change process as per IT policy It also includes teh configuration of port channel between core switches and server distribution switches.
• Involved in teh modification and removal (wherever necessary) of BGP from teh MPLS routers.
• Involved in designing L2VPN services and VPN-IPSEC authentication & encryption system.
• Tuned BGP internal and external peers wif manipulation of attributes such as metric, origin and local Preference.
• Cisco Secure Access Control Server (ACS) for Windows to authenticate users that connects to a VPN 3000 Concentrator.
• Responsible for turning up BGP peering and customer sessions, as well as debugging BGP routing problems.
• Router/ Microsoft VPN Server in order to access certain limited network resources from customer locations.
• Involved in teh redistribution into OSPF on teh core ASA firewall.
• Experience on HSRP for load balancing.
• Involved in teh removal of EIGRP from all devices and making OSPF teh primary routing protocol.
• Designing and Implementation of (LAN) VLANs, VTP, Spanning Tree (STP), Trunking (dot1q and ISL) and Ether channel.
• Installed and configured four PIX 525 and two ASA 5505 in customer locations. In addition to that, two PIX firewall configured for teh Guest access.
• Key contributions include troubleshooting of complex LAN/WAN infrastructure that include routing protocols EIGRP, OSPF & BGP.
• Scripting experience wif Pearl.
• Involved in Configuring and implementing of Composite Network models consists of Cisco7600, 7200, 3800 series and ASR 9k, GSR 12K routers and Cisco 2950, 3500, 5000, 6500 Series switches.
• Implemented various OSPF scenarios on networks consisting of 7600 routers.
• Configured policy based routing for BGP for complex network systems.
• Configured Multiprotocol Label Switching (MPLS) VPN wif Routing Information Protocol (RIP) on teh customer’s Site.

Environment: CISCO routers and switches, Access Control Server, VLAN, Trunk Protocols, CISCO ASA, DHCP, DNS, Spanning tree, Nimsoft.

Confidential, Wilmington, DE

Network Support Engineer

Responsibilities:

• Re-engineered BGP routing (Route Maps, AS-Path prepend, MED, Local Preference) to load balance traffic across multiple ISP’s links
• Responsible for designing, implementing and troubleshooting temporary infrastructures for Live Webcasting Events
• Involved in F5 BIG IP LTM administration, familiar wif enterprise level traffic managers like 6800, 3600, 1600,3400 series
• Involved in updating teh VIP’s for pools and pool members, updating iRules for teh URL created in teh new DNS entry
• Worked on updating WIDE IP for Global traffic managers (GTM) which are assigned for multiple data centers located across different geographical locations.
• worked on venafi encrption director for teh SSL certificate management
• Dealt wif application owners and assigned SSL Certificates based on teh requirement
• Involved in configuring teh SNMP module to Venafi certificate director for teh SSl cert alerts
• Troubleshoot OC-3, DS3, DS1, and ISDN connectivity issues
• Negotiate service contract wif circuit carriers
• Interface wif various Telcos for circuit testing and turn up
• Responsible for designing, implementing and monitoring customer Co-Location environment
• Configure Extreme Black Diamond Switches (layer 2, 3 and 4 switching)
• Design and implement security policies using ACL, PIX firewall (515, 520)and
• Provide intranet VPN solution using Cisco 2621 and IPSec Tunneling
• Configure f5 BiGip to provide Load Balancing for server farm
• Upgrade Cisco Routers, Switches and Firewall (PIX) IOS using TFTP
• Members of a team that designed and built Tier one infrastructure
• Configure Terminal Servers for out-of-band management
• Configure Traffic Shaping to optimize utilization on ATM Backbone
• Build and maintain Visio documentation database of network topology

Confidential

Network Engineer

Responsibilities:

• Provided port binding, port security and router redundancy through HSRP.
• Designed ACLs, VLANs, troubleshooting IP addressing issues and taking back up of teh configurations on switches and routers.
• Provided testing for network connectivity before and after install/upgrade
• Switching related tasks included implementing VLANS and configuring ISL trunk on Fast-Ethernet and Gigabit Ethernet channel between switches.
• Configured Cisco Routers for OSPF, IGRP, RIPv2, EIGRP, Static and default route.
• Worked on HSRP for hop redundancy and load balancing.
• Configured teh Cisco router as IP Firewall and for NATing Configured RSTP, MST and used VTP wif 802.1q trunk encapsulation.
• Experience in Cisco switches and routers: Physical cabling, IP addressing, Wide Area Network configurations.
• Responsible for Internal and external accounts and, managing LAN/WAN and checking for Security
• Settings of teh networking devices (Cisco Router, switches) co-coordinating wif teh system/Network administrator during any major changes and implementation
• Routing protocols OSPF, RIP & BGP
• Implementation of name resolution using WINS & DNS in TCP/IP environment
• Configured FTP server for inside/outside users & vendors

Environment: Cisco 7200/3845/3600/2800 routers, TACACS, EIGRP, RIP, and Vulnerability Assessment tools like Nessus, Red Hat, Solaris, Juniper VPN’s, and SSL.Sun

Confidential

Network Administrator

Responsibilities:

• Worked on Cisco routers 7200, 3700 and Cisco switches 4900, 2900
• Key contributions include troubleshooting of complex LAN/WAN infrastructure that include
• Configured Firewall logging, DMZs & related security policies & monitoring
• Creating Private VLANs & preventing VLAN hopping attacks & mitigating spoofing wif snooping & IP source guard
• Installed and configured Cisco PIX 535 series firewall and configured remote access IPSEC VPN on Cisco PIX Firewall
• Enabled STP Enhancements to speed up teh network convergence that include Port-fast, Uplink-fast and Backbone-fast
• Configured network access servers and routers for AAA Security (RADIUS/ TACACS+)
• Other responsibilities included documentation and change control
• Responsible for Configuring SITE TO SITE VPN on Cisco Routers between Head Quarters and Branch locations
• Implemented teh security architecture for highly complex transport and application architectures addressing well non vulnerabilities and using access control lists that would serve as their primary security on their core & failover firewalls
• Installation & configuration of Cisco VPN concentrator 3060 for VPN tunnel wif Cisco VPN hardware & software client and PIX firewall
• Involved in troubleshooting of DNS, DHCP and other IP conflict problems
• Used various scanning and sniffing tools like Wire-shark
• Hands on Experience working wif security issue like applying ACL’s, configuring NAT and VPN
• Documenting and Log analyzing teh Cisco PIX series firewall
• Configured BGP for CE to PE route advertisement inside teh lab environment
• Spearheaded meetings & discussions wif team members regarding network optimization and regarding BGP issues.