SUMMARY:

• 7 years of IT experience in design, development, implementation, troubleshooting and maintenance of complex Network & Security devices, Network Security, Linux Kernel Programming.
• Expertise in network protocols, Firewalls and Communication Network design.
• Experience with Troubleshooting tools for example protocol analyzers, load generators & network traces
• Working knowledge of frame relay, MPLS services, OSPF, BGP and EIGRP routing protocols, NATing, sub - netting, also including DNS, WINS, LDAP, DHCP, http, HTML, HTTPS, TCP/IP, UDP, SNMP, OSPF, RIP, IPSEC, PPTP, VLAN, STP (Spanning tree Protocol), RTSP & Multicasting protocols
• Designing, Implementing and Troubleshooting Cisco 3750, 3550, 3560, 2924, 6509-V-E, 6513, 6504, 6503, 6506, 6500 series switches.
• Experience with design and implementation of Virtual Switching System (VSS).
• Implementing 3750 Stackable switches using Cisco Stack Wise technology. Experience to review and evaluate current and future design issues as required maintaining network integrity, efficient data flow.
• Good domain knowledge in Linux source code 2.6x & Shell scripting.
• Strong hands on experience in installing, configuring and troubleshooting of ASR1K, ASR 9K, 3900, 3600, 2900, 2600, 2500 and 1800 series routers,CiscoCatalyst 6500, 4500, 3750, 2950 and 3500XL series switches.
• Network security including NAT/PAT, ACL, VPN Concentrator.
• Cisco VPN Concentrators, F5 Fire pass SSL VPN, 6509 Core Datacenter designs.
• Well Experienced in configuring protocols HSRP, GLBP, VRRP, ICMP, IGMP, PPP, HDLC, PAP, CHAP, and SNMP.
• In-depth Cisco technology experience/knowledge in design, implementation, administration and support.
• Strong hands on experience in installing, configuring, and troubleshooting of Cisco 7600, 7200, 3800, 3600, 2800, 2600, 2500 and 1800 series Routers, Cisco Catalyst 6500, 4500, 3750, 2950 and 3500XL series switches.
• Experienced in handling and installing Palo Alto Firewalls.
• Advanced knowledge of OSI model, TCP/IP, Internet technologies, system security, firewall infrastructure, network architecture and Cisco network routing / switching (Layer 2 and 3) experience, including LAN and WAN, design and implementation which includes Layer 1 to Layer 7 experience
• Designing, Implementing and Troubleshooting Cisco Routers (2800,2900,3900,3800,7600) using Static, RIP, IGRP, OSPF, EIGRP & experience with Checkpoint, Cisco PIX & ASA devices
• Well experienced in configuring gateway redundancy protocols like HSRP, GLBP, PPP and SNMP.
• Juniper: EX-2200,EX-4200, EX-4500, MX-480, M Series, SRX210, SRX240
• Strong Hands on experience in installing, configuring and troubleshooting of Cisco 12404,12406,7600, 7200, 3800, 3600, 2800, 2600, 2500 and 1800 series Routers, Cisco Catalyst 6500, 4500, 3750, 2950 and 3500XL series switches.
• Worked on Load Balancer F5 LTM, GTM series like 6400, 6800, 8800 for the corporate applications and their availability.
• Network Security - Anomaly Detection in Attack Prevention System, Network and Host IPS/IDS, Cisco PIX firewall, Vulnerability scanning, Penetration testing, Buffer Overflows, Cross Site Scripting,
• Security consultant for Bombay Stock Exchange, India and Kotak Securities Pvt. Ltd and many more, involving web application testing, Penetration testing, Session Management.

TECHNICAL SKILLS:

In: depth technical knowledge and diagnostic skills on all layers of the TCP/IP protocol stack and internetworking including protocol analysis and several TCPIP-based application

Programming: C Programming, Linux Kernel Module Programming, TCL/TK, Perl, Network Processors (Programmable Chips), Redhat Linux

Security: Anomaly Detection in attack prevention system, IPS/IDS, Penetration Testing and Web application testing, Buffer Overflows, Cross Site Scripting, Session Management, Cisco PIX, and Security attacks like DoS, DDoS, Spoofing, Nessus & Cisco IOS, Cisco Works

Protocols & Standards: TCP/IP Protocol Suite, Ethernet, Token Ring, FDDI, OSPF, EIGRP, Rip, BGP, HSRP, L2/L3/L4/L7 Switching, VLAN s, VTP, IPv4, IPv6, ATM, VoIP, LAN, SSL, SNMP V1, V2. T1, DS3.

Networking: Network Design & Engineering, Operations Research, Cisco Routers (800, 2600, 2800, 3800, 4500), Switches (2950, 3560, 6500), Snort network intrusion detection systems (IDS). Network penetration testing tools like NMAP, Net filter, IP Tables, Ethereal, SONNET, MPLS, DSU/CSU

PROFESSIONAL EXPERIENCE:

Confidential

Sr. Network Engineer

Responsibilities:

• Played responsible role for implementing, engineering, and level 2 support of existing network technologies / services and integration of new network technologies / services
• Worked on 3560, 3750, 3850, 4510,4500-X, 6509 series Cisco Catalyst switches, and 2248, 5020, 5548 and 7010 Cisco Nexus switches in multi VLAN environment for the implementation of inter-VLAN routing, 802.1Q trunking, and Ether Channel
• Performed network administration tasks such as creation and management of VLANS, Port security, Trunking, RPVST+, Inter-VLAN routing, and LAN security
• Configuration of site-to-site VPN connections (IPSec/GREtunnels, DMVPN) to support diverse network connections to extranet clients.
• Configured and maintained IPSEC and SSL VPN's on Palo Alto Firewalls.
• Adept at configuring and troubleshooting of VPC on Nexus 7Ks, 5Ks and VSS on Cat 6509, 4500-X
• Work with Data Center Operations to perform the replacements in scheduled maintenance windows.
• Implemented antivirus and web filtering on Juniper SRX 240 at the web server
• Worked on configuration and commissioning of the MPLS circuits for various branch offices.
• Expertise in configuration of routing protocols and deployment of OSPF, EIGRP, BGP and Policy routing over Cisco Routers, Switches ( Nexus 7Ks, Catalyst 6500 )
• IOS upgrades on Nexus Switches.
• Experience on layer3 routing and layer 2 switching. Experience in network security: intrusion detection systems (IDS), IP Security, and Intrusion Prevention Systems (IPS), ASA and PIX firewalls.
• Configuration and Maintenance of MPLS between satellite locations and Data center. Rule Management for MPLS routers.
• NetworkSecurities withJuniperSRX firewalls.
• Resolved various trouble tickets related to routing ( BGP, EIGRP, Static Routes,prefix-list,route-map,distribute-list,route-redistribution), switching (VLAN, port security, trunking, STP, VPC, HSRP, FEX)
• Designed, planned and performed failover testing with various extranet clients successfully
• Involved in design, implementation and configuration of HSRP for load balancing on L3 switches on different location of office on the switched network
• Performed configuration for data center connectivity with Cisco 6500 switches (Sup720) and configured BGP attributes for WAN connectivity (routing with EIGRP)
• Managed inventory of all network hardware, Management and Monitoring by use of SSH, Syslog, SNMP, NTP.
• Configure Checkpoint (12200, 4800), Cisco ASA (5512-x), Big - IP - LTM- F5 (3600, 6900) in HA pair mode providing redundancy across different projects.
• Administration of ASA firewalls in the DMZ and FWSM in the Server Farm to provide security and controlled/restricted access.
• Performed maintenance and troubleshooting of connectivity problems using PING, and Trace route
• Used DHCP to automatically assign reusable IP addresses to DHCP clients via Infoblox IPAM
• Configured and maintained OSPF protocol which included deployment of new locations in the existing infrastructure created Stub/areas and configured summarization for effective routing
• Configured OSPF on ASR 1002/9001 Cisco routers
• Configured ACLs in FortiGate firewall for Internet Access requests for servers, Protocol Handling, Object Grouping and NAT
• Configured SPAN and RSPAN for network monitoring
• Worked on network-based IT systems such as racking, stacking, cabling and module replacement
• Gained experience in troubleshooting Cisco IP phone
• Configured and installed Wireless Access Points at different company’s location and managed them through Wireless LAN Controller (Aruba)

Confidential

Network Engineer

Responsibilities:

• Maintain and track the status of device supplied to the client.
• Coordinating with JTAC for faulty part replacement and configuring standby device to support customer with minimal downtime.
• Implemented Juniper firewall & switches for various clients like AT&T, Qualcomm and SunTrust Bank as assigned.
• Installation & Maintenance of Juniper switches, routers & firewalls for Tata Consultancy Services onsite as per contract.
• Installation, configuration and troubleshooting ofCisco7200VXR, ASR1K, ASR9K, Catalyst 6500, 2900 switches.
• Implemented various EX, SRX & J series Juniper devices.
• Installed controller and light weight access point coordination with JTAC.
• Maintenance and trouble-shooting of LAN, WAN, IP Routing, Multi-Layer Switching.
• Performing onsite data center support including monitoring electrical power, switch alarms, network alerts and access logs.
• Installation and trouble-shooting of routing protocols like static and dynamic.
• Implemented site to site VPN in Juniper SRX as per customer.
• Developing access lists to meet user specifications.
• Supporting core layer, distribution layer and access layer issues.
• Tracking and installation of requirements & development by working with client and related teams to implement changes.
• Preparing weekly reports and follow- up with clients.
• Update data related to network configuration, setup and implementation of Juniper Topology.
• Coordinate with Project Managers, sales and call center (customer service) to deliver best quality of service to the customer.
• Configuring RIP, OSPF and Static routing on JuniperM and MX series Routers
• Configuring VLAN, Spanning tree, VSTP, SNMP on EX series switches
• Maintain connectivity for approximately 300 switches and routers in a 500+ node network.
• Troubleshooting any and all network problems involving LAN, WAN, BGP, EIGRP, MPLS/VPN, VRF - VPN Routing and Forwarding Instance, SIP Trunking, Internet ISP, Multi homed - BGP with Level-3 Datacenters.
• Experience with deploying Fabric Path using Nexus 7000 Devices
• Experience with configuring OTV between the data centers as a layer 2 extension.
• Experience with configuring FCOE using Cisco Nexus 5548.
• Implemented cluster and configuration of SRX-100 Juniper firewall.
• Implemented cluster and configuration of SRX-110 Juniper firewall.
• Installed Trapeze-MX 2800 wireless controller and light weight access points.
• Working with MPLS Designs from the PE to CE.
• Experience with designing and deployment of MPLS Traffic Engineering
• Involved in design and implementation of Data Center Migration, worked on implementation strategies for the expansion of the MPLS VPN networks
• Design and deployment of MPLS QOS, MPLS Multicasting per company standards.
• Managing health check of Network devices this is involves upgrading IOS on every quarter after checking the vulnerability of IOS and reviewing the configuration
• Implemented Virtual chassis of EXseries Juniper switches as per client requirement.

Confidential

Network Engineer

Responsibilities:

• Involved in configuring IP Quality of service (QoS)
• Experienced in WAN environments, installing and troubleshooting data circuit problems (MPLS, T1)
• Involved in designing and applying QOS and policy map to 2800 series routers for all the branches
• Involved in designing GRE tunnels for encryption of data flow from source to destination
• Implementing VoIP solutions using SIP & H.323, also have sound knowledge of Avaya VoIP product
• Hands on experience with Cisco 3500, 3750, 4500, 6500 series equipment and configuring and deploying and fixing them with various modules like Gig card, VPN SPA card, WIC card.
• Hands-on experience on Checkpoint Firewall R77 and Cisco ASA 5520 firewalls.
• Experience on Check Point Firewalls NG, NGX R65, R70, R75, R77, NSX (VMware Network).
• Experience in creating multiple policies and pushing them in to Checkpoint Firewall (Gateways) and hands on experience in managing the Checkpoint Management Server.
• Configuring BGP/OSPF routing policies and designs, worked on implementation strategies for the expansion of the MPLS VPN networks.
• Worked on F5 BIG IP LTM 3600 load balancers to configure Nodes, Pools and VIP’s on a need basis.
• Applying crypto maps and security keys for the branches, ISAKMP (Internet security association key management protocol) for establishing Security associations (SA) cryptographic keys.
• Experience with Project documentation tools & implementing and maintaining network monitoring systems (Cisco works & Net info, Info man Virtual Change) and experience with developing network design documentation and presentations using VISIO.
• Understanding & Implementation of IPSEC & GRE tunnels in VPN technology.
• Involved in designing L2VPN services and VPN-IPSEC authentication & encryption system.
• Experience in HSRP standby troubleshooting & Experience in configuring & upgrading of Cisco IOS.
• Implementing & Troubleshooting of T1, MUXES and CSU/DSU and data circuits.
• Have experience with Cisco Works LAN Management Solution.
• Experience in migration of Frame-relay based branches to MPLS based technology using multi-layer stackable switch like 6500 series and 2800 series router.
• Involved in design and implementation of Data Center Migration, worked on implementation strategies for the expansion of the MPLS VPN networks.

Confidential

Network Engineer

Responsibilities:

• Worked on different connection medium like Fiber and Copper Connectivity.
• In-depth expertise in the implementation of analysis, optimization, troubleshooting and documentation of LAN/WAN networking systems.
• Configured and troubleshoot OSPF and EIGRP.
• WAN Infrastructure running OSPF & BGP as core routing protocol.
• Support various Routers like 2600/3600/7200 series routers.
• Tested authentication in OSPF and BGP.
• Performed and technically documented various test results on the lab tests conducted.
• Installed and configured Cisco ASA 5500 series firewall and configured remote access IPSEC VPN on Cisco ASA 5500 series.
• Worked on F5 BIG-IP LTM 8900, configured profiles, provided and ensured high availability.
• Worked on F5 and CSM load balancers deploying many load balancing techniques with multiple components for efficient performance.
• Responsible for Configuring SITE TO SITE VPN on VPN Concentrators series between Head office and Branch office.
• Planning and configuring the routing protocols such as OSPF, RIP, and Static Routing on the routers.
• Installation & configuration of Cisco VPN concentrator 3060 for VPN tunnel with Cisco VPN hardware & software client and PIX firewall
• Configured Firewall logging, DMZs& related security policies & monitoring
• Hands on Experience working with security issue like applying ACL’s, configuring NAT and VPN
• Responsible for Internal and external accounts and, managing LAN/WAN and checking for Security
• Planning and configuring the entire IP addressing plan for the clients'network.
• Assist the team and perform configuration of LAN\WAN technologies such as Ethernet, Fast Ethernet, and Gigabit Ethernet.