SUMMARY:

• Around 7 + years’ experience in routing, switching, network design, implementation and troubleshooting of complex network systems.
• Experience testing Cisco routers and switches in laboratory scenarios and then design and deploy them on site for production.
• Cisco Security: Telnet, SDM, NAT/ACLs, AAA, Layer 2 Security, Layer 3 Security, IPS/IDS, Cisco (ASA, PIX) 5510, cryptography, VPN, IPsec.
• Strong hands on experience in installing, configuring, and troubleshooting of Cisco 7600, 7200, 3800, 3600, 2800, 2600, 2500 and 1800 series routers, Cisco Catalyst 6500, 6800,4500, 3750, 2950 and 3500XL series switches.
• Experience with configuring Nexus2000 Fabric Extender (FEX) which acts as a remote line card (module) for the Nexus5000.
• Experience working with OTV & FCOE on the nexus between the datacenters.
• Experience working with Cisco Nexus2148 Fabric Extender and Nexus5000 series to provide a Flexible Access Solution for a datacenter access architecture.
• Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500/PIXsecurity appliance, Failover DMZ zoning & configuring VLANs/routing/NATing with the firewalls asper the design.
• Worked on Extensively on Cisco Firewalls, Cisco PIX (506E/515E/525/) & ASA 5500(5510/5540)Series.
• Experience with convert PIX rules over to the Cisco ASA solution.
• Experience in Layer 2 routing Protocol Configurations: ARP, RARP, ATM/FRAME RELAY and VPN technologies: IPSec & SSL.
• Strong hands on experience on PIX Firewalls, ASA (5540/5550) Firewalls. Implemented Securitypolicies using ACL, Firewall, IPSEC, SSL, VPN and raising CRQ.
• Network security including NAT/PAT, ACL, VPN Concentrator.
• Experience with ITIL framework version 3.
• Well experienced in configuring protocols HSRP, GLBP, VRRP, ICMP, IGMP, PPP, HDLC, PAP, CHAP, and SNMP.
• Cisco ACE, Juniper Firewall SRX Series Services Gateway, BigIP F5 LTM GTM, Checkpoint hardware installations.
• In depth understanding of IPV4, implementation of Subnetting, VLSM and ARP, reverse & proxy ARP, Ping Concepts.
• Moderate knowledge in configuring and troubleshooting Cisco Wireless Networks: LWAPP, WLC, WCS, Standalone APs, Roaming, Wireless Security Basics, IEEE 802.11 a/b/g, RF spectrum characteristics.
• Use of Microsoft Excel Pivot tools to analyze SNMP traps captured from a LinkSys EtherFast DSL router.
• In depth knowledge of Cisco Iron port web security environments with web servers.
• Provides technical leadership forproblem escalation and resolution.
• Highly motivated with the ability to work independently or as an integral part of a team and committed to highest levels of professional.
• Hands on experience on up - gradation of Cisco IOS & Firmware of different Cisco devices & modules.

TECHNICAL SKILLS:

Operating Systems: Windows (98, ME, 2000, XP, Server 2003/2008, Vista, Windows 7), Linux programming

Routers: Cisco 17XX, 18XX, 26XX, 28XX, 37XX, 38XX, 39XX &72XX series

Switches: Cisco 3550, 3750, 45XX, 65XX series

Routing: OSPF, EIGRP, BGP, RIP-2, PBR,IS-IS, Route filtering, Redistribution, Summarization, Static routing

Switching: LAN, VTP, STP, PVST+, RPVST+, Inter VLAN routing & Multi-Layer SwitchMulticast operations, Layer 3 Switches, Ether channels, Transparent Bridging

Network Security: Cisco (ASA, PIX) 5510, ACL, IPSEC

Load Balancer: Cisco ACE load balancer, F5 Networks (Big-IP)

LAN: Ethernet (IEEE 802.3), Fast Ethernet, Gigabit Ethernet

WAN: Leased lines 64k - 155Mb (PPP / HDLC), Channelized links (E1/T1/E3/T3), Fiber optic circuits, Frame relay, ISDN, Load Balancing

Various Features & Services: IOS and Features, HSRP, GLBP, IRDP, NAT, SNMP, SYSLOG, NTP, DHCP, CDP,TFTP and FTP management, Hyper-V, MRTG

AAA Architecture: TACACS+, RADIUS, Cisco ACS, Cisco CSM

Network Management: SNMP, Cisco works LMS, HP open view, netIQ, Etherenal

Reports and Scripting languages: Microsoft(Visio pro.), Checkpoint(Eventia reporter, Smart view),Wire shark, Putty, Pivot Tables,HP c1700 devices.

PROFESSIONAL EXPERIENCE:

Confidential, Thousand Oaks, CA

Sr. Network Engineer

Responsibilities:

• Experience with converting campus WAN links from point to point to MPLS and to convert encryption from IPsec/GRE to another data center
• Experience working with Nexus 7018/7010, 5020, 5548, 2148, 2248 devices
• Experience with configuring Nexus2000 Fabric Extender (FEX) which acts as a remote line card (module) for the Nexus5000
• Experience working with OTV & FCOE on nexus between the datacenters
• Design, and configuring of OSPF, BGP on Juniper Routers and SRX Firewalls
• Configuring IPSEC VPN on SRX series firewalls
• Configuration and troubleshooting on HSRP, VRRP, GLBP, RSTP, MST related issues coming in network environment
• Configuration and extension of VLAN from one network segment to their segment between different vendor switches (Cisco, Juniper)
• Configured L2 and L3 security features on devices
• Configuration of F5 LTM 8950, 6900, VIPRION 2400 models.
• Maintaining Hub and Spoke type of networks with the concept of SPOC
• Provided Cisco Iron port S-series web services that brought in much security and scalability to the network.
• Conversions to BGP WAN routing, which will convert WAN routing from OSPF to BGP (OSPF is used for local routing only) which involves new WAN links.
• Implement and configured GLBP (on core switching and also for VPN redundancy), HSRP on different location of office on the switched network and managing the entire multilayer switched network and load balancing.
• Perform Configure Corporate, Wireless and Lab Devices which includes Bandwidth Upgrade, Adding New Devices, Decom the Devices, Testing( Pilot )
• Providing daily network support for national wide area network consisting of MPLS, VPN and point-to point site.
• Configuring various advanced features (Profiles, monitors, iRules, Redundancy, SSL Termination, Persistence, SNATs, HA on F5 BIG-IP appliances SSL termination and initiation, Persistence, Digital Certificates, Executed various migration/upgrade projects across F5 and hands on with F5 BIG-IP LTMs/EM.
• Experience working with Cisco 1000v in collaboration with VM ware in data center environment and HP VSR1000 series.
• Troubleshooting and installing of CRS, ISR, GSR, ASR9000 and Nexus devices.
• Engineering the configurations for the different branches, campus locations
• Knowledge of implementing and troubleshooting complex layer 2 technologies
• Worked on the redistribution of connected routes on all OSPF devices so that all connected subnets are advertised via OSPF
• Conversion of F5 LTM Version 10 to Version 11.
• Used Kiwi-Cat tools to manage configurations from desktop for network devices, including routers, switches and firewalls.
• Experience with ASR 1000 series and ISR routers (2800/2900/3800/3900)Cat(6500/3700/6800)
• Generate network device configuration reports, such as port, MAC, APR and version details
• Worked on a migration project which involved the removal of all static routes from core devices
• Responsible for the Global engineering and support of existing network technologies / services and the integration of new network technologies / services
• Key contributions include troubleshooting of complex LAN/WAN/WLAN infrastructure that include routing protocols EIGRP, OSPF & BGP
• Worked on commissioning and decommissioning of the MPLS circuits for various field offices.
• Involved in the redistribution into OSPF on the core ASA firewall.
• Involved in the removal of EIGRP from all devices and making OSPF the primary routing protocol.
• Involved in the modification and removal (wherever necessary) of BGP from the MPLS routers.
• Worked on Orion for analysis and monitoring purposes
• Provided load balancing towards access layer towards core layer using F5 load balancers and used SPOC for troubleshooting.
• Also prepared documentation for various Vlans and voice subnetworks and worked on Visio for the same.
• Configuration and extension of VLAN from one network segment other segment between different vendor switches (Cisco, Juniper)
• Used Juniper firewall SRX 3600,SRX 650 for VAN edge routers and also chassis clusters with SRX 249
• Migration of existing IPSEC VPN tunnels from Pre-Shared key to Certificate Authority for purpose of scaling
• 3 years hands on experience with F5 GTM/LTM installation/support and used HA proxy for Layer 4 load balancing.
• Replace branch hardware with new 2851 routers and 2960 switches.
• Implemented WLAN Aruba Wireless Access Points and its Controllers at various corporate sites fort 11n Infrastructure and its legacy technologies.
• Responsible for layer 2 securities which was implemented using a dedicated VLAN ID for all trunk ports, setting the user ports to non-trunking, deployed port security when possible for user ports
• Enabled STP attack mitigation (BPDU Guard, Root Guard), using MD5 authentication for VTP, disabling all unused ports and putting them in unused VLAN and ensuring DHCP attack prevention where needed
• Performed basic security audit of perimeter routers, identifying missing ACLs, writing and applying ACLs
• Use of Microsoft Pivot table and Excel sheets for analyzing the net flow and creating graphs based on that information obtained.
• Experience with convert PIX rules over to the Cisco ASA solution.
• Responsible for Cisco ASA firewall administration across our global networks

Confidential, Reston,VA

Network Engineer

Responsibilities:

• Designated, validated and implemented LAN,WLAN&WAN solution to suite client's needs.
• Negotiate VPN tunnels using IPSec encryption standards and also configured and implemented site-to-site VPN, Remote VPN.
• Configuring STP for switching loop prevention and VLANs for data and voice along with configuring port security for users connecting to the switches.
• Working on Network design and support, implementation related internal projects for establishing connectivity between the various field offices and data centers.
• Good experience with using ASA 1600V firewall with Cisco virtual switches and provide security to the data centre and with Cisco CSM.
• Ensure Network, system and data availability and integrity through preventive maintenance and upgrade.
• Experience working with design and deployment of MPLS Layer 3 VPN cloud, involving VRF, Route Distinguisher(RD), Route Target(RT), Label Distribution Protocol (LDP) & MP-BGP
• Installed and configured of Juniper J-Series (J2350) and M-Series (M10) routers
• Experience with Juniper SRX 240 Firewalls
• Configured Client-to-Site VPN using SSL Client on Cisco ASA 5520 ver8.2
• Configuring virtual servers, configure nodes and configuring the load balancing pools and also worked with configuring load balancing algorithms.
• Responsible for service request tickets generated by the helpdesk in all phases such as troubleshooting, maintenance, upgrades, patches and fixes with all around technical support
• Experience with converting WAN routing from EIGRP/OSPF to BGP (OSPF is used for local routing only) which also involved converting from Point to point circuits to MPLS circuits.
• Designed and implemented Cisco VoIP infrastructure for a large enterprise and multi-unit office environment. Met aggressive schedule to ensure a Multi-office reconfiguration project which was successfully delivered
• Worked on Data, VoIP, security as well as wireless installations and technologies
• Installing and configuring F5 load balancers and firewall using F5 load balancers with LAN/WAN/WLAN configuration.
• Involved in L2/L3 Switching Technology Administration including creating and managing VLANs, Port security, Trunking, STP, Inter-Vlan routing, LAN security.
• Worked on the security levels with RADIUS, TACACS+ and could establish secure identity management using Net IQ identity manager.
• Worked on commissioning and decommissioning of MPLS circuits for various field offices.
• Completed service requests (i.e. - IP readdressing, bandwidth upgrades, IOS/platform upgrades, etc)
• Supporting EIGRP and BGP based PwC network by resolving level 2 &3 problems of internal teams & external customers of all locations.
• Providing daily network support for national wide area network consisting of MPLS, VPN and point-to point site.
• Configuring HSRP between the 3845 router pairs for Gateway redundancy for the client desktops.
• ConfigureVRRP & GLBP andVLANTrunking802.1Q & ISL, STP, Port Security on Catalyst 6500 and 6800 switches.
• Implemented an IP telephone network with 100+ IP phones and 4 Alcatel 7000 L3 switch. Configured data network to support voice including VoIP VLAN, interVLAN routing and QoS tagging. Included 4 PCX system, voice mail server, my teamwork server and a management server. This project included 7 wireless AP and LAN bridging through a wireless link
• Updated the HP open view map to reflect and changes made to any existing node/object
• Use of Microsoft Excel Spread Sheets for analyzing the Netflow and its type especially to monitor according to the requirements.
• Handled SRST and implemented and configured the Gateways, Voice Gateways.
• Manage Cisco Routers and troubleshoot layer1, layer2 and layer3 technologies for customer escalations
• Worked on a broad range of topics such as routing and switching, dedicated voice access, planning and implementation, large-scale high-visibility outages, change management coordination, proactive monitoring and maintenance, disaster recovery exercises, and core network repairs.
• Network Cabling, dressing, labeling and troubleshooting various network drops onsite.

Confidential, Dallas,TX

Network Administrator

Responsibilities:

• Configured the BGP as a WAN protocol, and OSPF/EIGRP as interior routing protocol.
• Provide technical support for clients with dial-up internet issues.
• Configuration of Access List ACL (Std, Ext, Named) to allow users all over the company to access different applications and blocking others.
• Used Cisco ACE load balancer between the servers inside the network and in the DMZ.
• Responsibilities also include technical documentation of all upgrades done
• Monitoring the NMS system for different Network Alerts
• Ensure problems are satisfactorily resolved in a timely manner with focus on providing a high level of support for all customers.
• Once trouble ticket has been created keep customer informed of status of ticket and estimated time to repair.
• Layer 2 switching technology architecture, implementation and operations including L2 and L3 switching and related functionality
• Installed and configured DNS and DHCP server.
• Configuring virtual chassis for Juniper switches EX- 4200, firewalls NS 5200
• Involved in the modification and removal(wherever necessary) of BGP from the MPLS routers
• Involved in troubleshooting of DHCP and other IP conflict problems.
• Performed switching technology administration including VLANs, inter-VLAN routing, Trunking, STP, RSTP, port aggregation & link negotiation.
• Designed and installed new branch network systems. Resolved network issues, ran test scripts and prepared network documentation.
• Expert in using the Microsoft Pivot tables for exported Firewall or Web Proxy logs customers used to send, to display network traffic from specific client or specific IP address.
• Checking and configuring Cisco 7613 routers at data center for remote sites’ issues.
• Working on Cisco 6509 and 4507 series switches for LAN requirements, that includes managing VLANs, Port Security and troubleshooting LAN issues
• Attending meetings and technical discussions related to current project.

Confidential

Network Engineer

Responsibilities:

• Maintained redundancy on Cisco 2600, 2800 and 3600 router with HSRP and VRRP.
• Implemented and configured routing protocols like EIGRP, OSPF.
• Monitor the operability and reliability of the network.
• Implemented site to site VPN in Juniper SRX as per customer
• Responsible for SNMP Monitoring and Performance Tuning software.
• Designed WAN structure to prevent single point of failure in case of link failure.
• Maintenance and Troubleshooting of connectivity problems using PING, trace route.
• Planning and Implementation of Sub netting, VLSM to conserve IP addresses.
• Monitor the operability and reliability of the network.
• Configuring MPLS, VPN (IPSEC, GRE) in VPN concentrators and QOS in integrated networks
• Configured STP for loop prevention and VTP for Inter-VLAN Routing.
• Configuration and troubleshooting of EIGRP, OSPF, BGP.
• Configuration of Standard and Extended ACLs for Security and Cisco ACS.
• Troubleshooting the issues related to routing protocols.
• Analysis of network traffic using Wire shark, Solar winds and Nicksun packet capture.
• Experience with Juniper SRX 240 Firewalls
• Managing, troubleshooting and monitoring the network using Network Monitoring tool.
• Network Security implementation with Cisco IOS Feature Set, NAT, and Simple Network Management Protocol.
• Provided support for troubleshooting and resolving Customer reported issues.
• Performed IOS upgrades on Catalyst 3550, 2950, 1900 switches, and 3600, 2600 and 2500 routers.
• Provided support for global network including T1/T3, ATM connections using HDLC and Frame Relay on 2600, 4000 series Routers.
• Installed wireless access points (WAP) at various locations in the company.
• Technical assistance for LAN/WAN management and complex customer issues.

Confidential

Jr. Network Engineer

Responsibilities:

• Troubleshoot Cisco hardware: Inspected devices, Read device LEDs, loose connections, interior IOS upgrade, Cisco CLI, switch port configuration, port monitoring, watch over Flooding Control/Network port.
• Strategies include operating systems, virus protection, mail systems and Internet services.
• Updated the anti-virus, spam blockers, and other security software so that the systems are always secured and dealt with network security using firewalls.
• Resolved all computer related problems, monitored and maintained system functionality and reliability by identifying ways to prevent system failures
• Worked on configuration and installation of new desktops for users using GHOST, EZ copy and Dist-to-Disk copy
• Installed and configured DHCP, DNS Server.
• Identifying technical problems and debugged hardware and software related to LANs/ WANs.
• Switching related tasks included implementing VLANS, VTP and configuring ISL trunk on Fast - Ethernet channel between switches.
• Involved in troubleshooting of DNS, DHCP and other IP conflict problems
• Designing and deploying EIGRP, OSPF, BGP, MPLS-VPN protocols and routing technologies for connecting data center to remote locations
• Supporting EIGRP and BGP for problems of L2/L3 in internal teams & external customers
• Develop and implement strategies to support the current and future needs of the company.
• Monitoring the data flow on the equipment using network analysis tools.
• Configured Cisco Routers 2600 series using RIP, OSPF, and EIGRP.