SUMMARY:

• Over 7+ years of experience as a Network Engineer with strong hands on experience in planning, designing, implementing, troubleshooting and optimization of WAN/LAN technologies such as Routing & Switching with Cisco devices, Load Balancers (F5,ACE),Wireless Technology in a 24x7 support environment.
• Cisco Certified Network Professional (CCNP) certified with extensive hands on experience with Cisco equipments.
• Worked on F5 LTM, GTM series like 6400, 6800, 8800 for the corporate applications and their availability
• Solid experience in configuring Cisco Routers (7200, 4000, 3800, 3700, 3200, 3000, 2800, 2600, 2500, and 1700) and Cisco Switches (3500, 2900), Layer 3 switches (6500).
• Configuring and implementing of routing protocols including RIPv1/v2, OSPF, EIGRP, ISIS, BGP.
• Extensive knowledge and experience in dealing with various Networking related Protocols and Standards: TCP/IP, UDP, SIP, Switching (VLANs, STP, VTP), Routing, Routing Protocols (EIGRP, OSPF, RIP, BGP), WAN (Frame Relay, IPSec VPNs, MPLS).
• Switching tasks include VTP, Trunking, ISL and 802.1q, VLAN, Ether Channel, STP, PVST, RSTP and MST.
• Taking Regular backups & testing the backups by restoring in test lab frequently
• Managing a TACACS server for VPN user authentication and network devices authentication
• Handled Corporate and Review Audits from the perspective of IT Security for Network Devices and Servers under our control
• Hands on Experience testing iRules using Browser(IE), HTTP watch
• Configuring IPSEC VPN on SRX series firewalls
• Provided redundancy in a multi homed Border Gateway Protocol (BGP) network by tunings AS - path.
• Worked on Juniper J series j230, M 320 routers and EX 3200 series switch.
• Created engineering configuration, Security Standards, documenting processes and Network documentation using Microsoft Visio
• Troubleshooting and installing of CRS, ISR, GSR, ASR9000 and Nexus devices.
• Installation, Configuration and Administration of ADS,DNS,DHCP and Web proxy(ISA)server
• Upgrade Cisco Routers, Switches and Firewall (PIX) IOS using TFTP
• Extensive knowledge/experience in implementing, maintaining and troubleshooting LAN/WAN, Network security including NAT/PAT configuration, ACL, VPN Concentrator and Cisco Firewalls.
• Sound knowledge and experience in WAN/LAN protocols such as Ethernet, IP services.
• Creating dedicated VLANs for Voice & Data with QOS for prioritizing voice over data.
• Hands on experience in installing and upgrading of Cisco IOS and firmware of different Cisco devices and modules.
• Good organizational and project management skills including ability to organize time and work on multiple tasks and following to completion of a task or project.
• Ability to make technical documentation of systems and procedures.

TECHNICAL SKILLS:

Networking Hardware: Cisco Routers - 7200, 3800, 3600, 2800, 2600, 2500, 1800, 1700, 1600 Series, ASR 1K, Cisco Switches -1900, 2900, 3550, 3750, 4500-X, 4948, 4510, 6509E series.

Network Management: Ethereal, Network Associate Sniffers like N-mapper, Wireshark, Ciscoworks 2000, Aperture, Ulticam, httpheaders, Reflections, HP OpenView, Nessus, Retina, ISS, SolarwindIPMonitor, Orion NCM, Solarwind, IP Management, NPM, RSA- Envision, NetQoS

Network Technology: DSL, DHCP, DNS, FTP, TFTP, Telnet, SSH, SNMP v1 v2c v3, ICMP, IGMP

LAN Technologies: Ethernet, Fast Ethernet, Gigabit Ethernet

WAN technologies: Frame Relay, ISDN, PPP, ATM, leased lines, DSL modems, DS1, DS3, OC3, OC12, OC48, T1 /T3 & E1/E3

WLAN technologies: 802. 11a, 802.11b, 802.11g, 802.11n, IEEE std, wireless access point

Routing Protocols: RIP, OSPF, IS-IS, IGRP, EIGRP, BGP, VRF, PBR

Switching Protocols: LAN, 802.1q, VTP, STP, PVST+, RSTP(802.1W), MST, MPLS, MPLS-VPN

Etherchannel, PAGP, LACP

Redundancy Protocols: HSRP, VRRP, GLBP

Security Protocols: IPSEC, ACL, NAT/PAT, AAA, RSA, MD5, PAP, CHAP

Operating Systems: Cisco CATOS, Cisco IOS, JUNOS, Unix, MacOS, Linux Red Hat 9.0, MS Windows 95/98/NT/2000/XP/VISTA/7/8.

PROFESSIONAL EXPERIENCE:

Confidential

Sr. Network Engineer

Responsibilities:

• Part of a Global Network deployment team that manages Network Infrastructure and provide Tier 2/3 technical support.
• Configuration and Installation of Cisco ASR 1004 to replace aging 7200VXR and maintenance/upgrading the 6509E, 4507, 3750X, 3650 series routers and switches.
• Configured, installed and deployed Nexus 7K, 5K and 2K series switches.
• Migration of the company’s core to the new MPLS backbone and implementation of L3 MPLS- VPN for all remote locations.
• Experience working with Nexus 7010/Nexus 7018, 5020, 2148, 2248 devices
• Experience configuring VPC(Virtual Port Channel), VDC(Virtual Device Context) in Nexus 7010/7018
• Experience with configuring Nexus 2000 Fabric Extender (FEX) which acts as a remote line card (module) for the Nexus 5000
• Implementing, deploying and troubleshooting OSPF, BGP, MPLS-VPN, HDLC, PPP, NTP, WCCP, WAAS, VLANs, VTP, STP, MSTP, RSTP, Root Guard, BPDU Guard, Port Fast, Uplink Fast, Backbone Fast, Ether channel, PAGP, LACP and 802.1Q.
• Configured and resolved various OSPF issues in an OSPF multi area environment on CISCO 2800, 3945.
• Configured and played with various BGP attributes such as Local Ps, MED, Extended Communities, AS path manipulations, Route-Reflector clusters, Route-maps and route policy implementations.
• Tuned BGP internal and external peers with manipulation of attributes such as metric, origin and local P.
• Cisco Secure Access Control Server (ACS) for Windows to authenticate users that connects to a VPN 3000 Concentrator.
• Scripting experience with Pearl.
• Configuring, Installing and troubleshooting on Check Point Devices.
• Good knowledge on Intrusion Detection and Intrusion Prevention System.
• Knowledge on multiplex techniques such as DWDM.
• Troubleshoot and Worked with Security issues related to Cisco ASA/PIX, Checkpoint, IDS/IPS and Juniper Netscreen firewalls.
• Implemented first hop redundancy protocols (FHRP) i.e., GLBP and VRRP.
• Enabled OSPF between Access routers and Core routers and used area-range command to summarize the prefixes.
• Configured GLBP load sharing between VLANs.
• Configured L2/L3 Ether-Channels to increase bandwidth on core and distribution switches.
• IOS Upgrade in CISCO 6500 switch and 2800, 3845, 3945 routers.
• Primary responsibility is to design and deploy various network security & High Availability products lick Cisco ASA other security products.
• Support customer with the configuration and maintenance of ASA firewall systems.
• Worked on Cisco Firewalls, Cisco ASA 5500(5510/5540) Series.
• Experience with Firewall Administration, Rule Analysis, Rule Modification.
• Predominantly set up, configured and maintained a Windows server and Network Equipment on a TCP/IP network.
• Working knowledge of configuring routing protocols such as RIPv2, EIGRP, OSPF and BGP.
• Extensive network troubleshooting experience and understanding of quality of service from LAN through WAN.
• Managing IP space on divisional Networks.
• Configured and maintained Secure Shell(SSH) on routers using RSA.
• Provided immediate resolution of issues such as application of ACL’s for anti-spoofing, route re-distribution and blocking of known Cisco IOS vulnerabilities.
• Consulted directly with Cisco and Juniper for hardware issues, software vulnerabilities.
• Arranged RMA’s for faulty hardware and liaise with AT&T Labs for permanent network design changes.
• Provided direction to System Engineering on migrating Backhaul DS3 circuits from one Location to another Location
• Worked on-call rotation 24x7 on production issues, problem isolation/resolution and analyse data for RCA with vendors using tools such as WIPM, BGPMON, and OSPFMON.

Confidential, Bellevue, WA

Network Engineer

Responsibilities:

• Responsibilities include configuration and installation of End of life Cisco Network hardware
• Installed and configured Cisco series routers and Catalyst 2960, 3750X, 4500, 6500 switches.
• Creating Private VLANs & preventing VLAN hopping attacks & mitigating spoofing with snooping & IP source guard
• Hands on Experience working with security issue like applying ACL’s, configuring NAT and VPN
• Documenting and Log analyzing the Cisco ASA 5500 series firewall
• Tasks included configuring and troubleshooting EIGRP, RIP, OSPF, BGP and static routing, MPLS WAN connectivity.
• Upgrading, Configuration and maintenance of stacks of Cisco 3750 LAN network switches with Cisco 4507, 4510.
• Involved in troubleshooting of DNS, DHCP and other IP conflict problems
• Implementation of name resolution using WINS & DNS in TCP/IP environment
• Configured FTP server for inside/outside users & vendors
• Configured VLANs, Private VLANs, VTP, Dot1.Q trunking on switches Involved in L2/L3 Switching Technology Administration including creating and managing VLANs, Port security, Trunking, STP, InterVlan routing, LAN security.
• Supporting EIGRP and BGP based company network by resolving level 2 &3 problems of internal teams & external customers of all locations.
• Install, Configure and Troubleshoot issues that arise in replacing cisco 7200VXR with ASR1002X or ASR1004
• Involved in troubleshooting software, hardware and network problems.
• Responsible for Cisco ASA firewall administration across our global networks.
• Worked on Extensively on Cisco Firewalls, Cisco PIX (506E/515E/525/) & ASA 5500(5510/5540) Series
• Configuring, upgrading and verifying the NX-OS operation system.
• Working with Cisco Nexus 2148 Fabric Extender and Nexus 5500 series to provide a Flexible Access Solution for datacenter access architecture.
• Design and implementation of IPSEC VPN/GRE architecture used for multicast and unicast communication on an existing IP VPN.
• Experience working on Network design and support, implementation related internal projects for establishing connectivity in various field offices and Datacenters.
• Ensure Network, system and data availability and integrity through preventive maintenance and upgrade.
• Responsible for service request tickets generated by the helpdesk in all phases such as troubleshooting, maintenance, upgrades, patches and fixes with all around technical support.
• Worked on the security levels with RADIUS, TACACS+.
• Configuring VLAN, Spanning tree, VSTP, SNMP on EX series switches.
• Hands on Experience testing iRules using Browser (IE), HTTP watch.
• Providing daily network support for national wide area network consisting of MPLS, VPN and point-to point site.
• Upgrading WAN link using PPP Multilink and by implementing Cisco WAAS.
• Configuring HSRP between the 3845 router pairs for Gateway redundancy for the client desktops.
• Configured GLBP, VLAN Trunking 802.1Q, STP, Port Security on Catalyst 6500 switches.
• Knowledge of Testing Tools like IXIA Networks and Spirent Test Center.

Confidential, Denver, CO

Network Support Engineer

Responsibilities:

• Involved in configuring Cisco routers and switch administration, familiar with enterprise level Cisco Routers such as 7200 series, 3800 series, 3700 series, 2800 series, and Cisco catalyst series switches like 6500, 3750, 4500.
• Configuring and troubleshooting of routing protocols such as OSPF and BGP for effective communication.
• Implemented VLANs and Access Control lists (ACL) and troubleshooted IP addressing issues
• Updated IOS images and other hardware installations.
• Experience in troubleshooting VLAN, STP (Spanning tree protocol), & Switch Trunk and IP subnet issues.
• Network Cabling, dressing, labeling and troubleshooting various network drops onsite.
• Involved in L2/L3 Switching Technology Administration including creating and managing VLANs, Port security, Trucking, STP, Inter-Vlan routing, LAN security.
• Worked on the security levels with RADIUS, TACACS+.
• Completed service requests (i.e. - IP readdressing, bandwidth upgrades, IOS/platform upgrades, etc)
• Handled SRST and implemented and configured the Gateways, Voice Gateways.
• Worked on a broad range of topics such as routing and switching, dedicated voice access, planning and implementation, large-scale high-visibility outages, change management coordination, proactive monitoring and maintenance, disaster recovery exercises, and core network repairs.
• Dealt with Cisco ACE load balancer in managing the key role issues.
• Dealt with NAT configuration and troubleshooting issues related access lists and DNS/DHCP issues within the LAN network.
• Managing and configuring Cisco Switches and Firewalls independently.
• Coordinated with senior engineers with BGP/OSPF routing policies and designs, worked on implementation strategies for the expansion of the MPLS VPN networks.
• Provisioning and troubleshooting Ethernet services, Gigabit networks and Connectivity issues with WAN types (Frame relay).
• Installing and configuring the VPN’s for the clients (site to site).
• Monitoring Network infrastructure using SNMP tools like HP Openview.
• Involved in Configuration of Access lists (ACL) for the proper network routing for the B2B network connectivity.
• Worked with customers in troubleshooting issues related to connectivity, STP, VLANs, Inter-VLAN routing, VTP, Ether channels, Layer 2/3 switching, log messages.
• Gained a good experience in developing and maintaining technical procedure and documentation.

Confidential, Springfield, MA

Network Administrator

Responsibilities:

• Implemented sites in different WAN connectivity having Frame Relay, MPLS and VPN networks.
• Interacted with offshore team - on developing/ implementing the Onsite Offshore model for 24X7 support.
• Interacted with ISP for turning up new T1 circuits for new sites.
• Interacted with the client team for the operation of new sites / locations.
• Configured and maintained Cisco switches & Cisco Routers for web traffic management and load balancing.
• Led the team for converting Frame site to MPLS network
• MPLS configuration and support.
• Designed Infrastructure for the VPN sites (Cabling, T1 Circuits, selection of Hardware Switches & Routers and VLAN)
• Resolved LAN /WLAN related outages on Cisco Catalyst switches.
• Load balancing and application-delivery solution by Cisco Application Control Engine (ACE) in data center.
• Monitored and administered Open Shortage Path First (OSPF), Border Gateway Protocol (BGP) and Enhanced Interior Gateway Routing Protocol (EIGRP).
• Prepared of support documents like Database updates/ creating the process maps/ writing the case studies & documented support process.
• Network Security implementation with Cisco IOS Feature Set, NAT, and Simple Network Management Protocol -SNMP.
• Set up IPS on SDM version 2.2 using Security Device Event Exchange.
• Maintained Site to Site VPN with Cisco routers, Cisco PIX Firewall feature Set and VPN Concentrator.
• Implementing and monitoring the network security using PIX firewall and VPN Concentrator.
• Administration of the change requests pertaining to Firewall rule changes on Cisco ASA 5540.
• Using Cisco Security manager (CSM) configure, tune and manage the Cisco firewalls.
• Configured Voice ports and dial peers on the router for the VoIP call to reach remote destination.
• Set up and troubleshoot secured wireless access points for broadband internet.
• Experience with wireless implementations of Cisco WLC (4402), AP’s (1142, 1252, 1210), Air Magnet (site survey) and various Wi-Fi/ wireless products.
• Secured wireless LAN infrastructure using WPA2 (IEEE 802.11) which needed hardware upgrades.
• Deployed latest IOS version 12.X on Cisco 2800 series routers and CATOS on Cisco switch 4000.

Confidential

Junior Network Administrator

Responsibilities:

• Provided hardware and network equipment configuration support. Managed relationships with vendors such as BSNL, Reliance Infocom to ensure reliable and stable performance for all TCL offices globally. One of the six-team members in the company on a weekly 24x7 on-call rotation.
• Installed network devices on rack and proper cabling with Cat 5, Cat 6 ethernet cables
• Designed IP allocation scheme for workstations, routers, switches etc.
• Configured Protocol Handling, Object Grouping and NAT on ASA Firewalls (5505).
• Configured Firewall logging, DMZs and related security policies and monitoring.
• Designed perimeter security policy; Implemented Firewall ACL’s; Allowed access to specified services; Enabled IDS/IPS signatures in Firewall & fine-tuned TCP & UDP.
• Involved in Installing and Configuring a Cisco/Microsoft secure ACS server for AAA authentication (RADIUS/TACACS+).
• Used load balancers ACE and load balancing technique with multiple components for efficient performance and to increase reliability through redundancy.
• Performed maintenance on equipment as necessary, performing device upgrades, modification of configurations, password changes and diagnostic testing
• Analyzed LAN to determine what were the major problems and improvements needed to be made to the network infrastructure
• Set up routers and switches and managed connectivity for local and remote presentations and
• Assisted in system upgrades, hardware/software installations and configuration of components
• Provided technical support for network and hardware problems to clients through phones
• Kept the software upgraded using TFTP, XMODEM or PCMCIA slot cards
• Simulated network topologies in lab environment
• Configured protocols on network devices when needed
• Raised tickets and escalated network problems to appropriate departments accordingly.