SUMMARY

• Network Engineer with Around 7 years of professional experience in Network engineering, performing Network analysis, design, Implementing, capacity planning with focus on performance tuning and support of large Networks.
• Hands on experience in configuring Cisco Catalyst 2960, 3750, 4500, 6500 series switches and Cisco 2600, 2800, 3600, 3800, 7200, 7600 series routers.
• Worked on network topologies and configurations, TCP/IP, UDP, DS1/DS3, Frame Relay, Token ring, ATM, bridges, routers, hubs and Switches.
• Expertise in the implementation of optimization, analysis, troubleshooting and documentation of LAN/WAN networking systems.
• Experience in layer - 3 Routing and layer-2 Switching.
• Good knowledge of OSI Model and TCP/IP networking standards with protocols such as SNMP, FTP, ICMP and IPv6.
• Well Experienced in configuring protocols, VRRP, IGMP, PPP, PAP, CHAP, ACL SNMP, RIP, EIGRP, BGP, OSPF and tunnel Installing.
• Implemented traffic filters using Standard and Extended access-lists, Distribute-Lists, Route Maps and route manipulation using Offset-list.
• Switching tasks including L2/L3 Protocols like VTP, STP, RSTP, PVST, RPVST, ISL, 802.1q, IPsec and GRE Tunneling, VLANs, HSRP, GLBP, Ether Channel, Trunking, Port Security.
• Expertise in IP subnetting and worked on various designing and allocating various classes of IP address to the domain.
• Managed inventory of all network hardware, Management and Monitoring by use of SSH, Syslog, SNMP, NTP
• Network security including NAT/PAT, ACL, ASA/PIX Firewalls, Cisco IDS/IPS, AAA, IPsec/SSL VPN and L4 - L7 protocol.
• In-depth knowledge and hands-on experience in Tier II ISP Routing Policies, Network Architecture, IP Subnetting, VLSM, TCP/IP, NAT, DHCP, DNS
• Primary responsibility is to design and deploy various network security & High Availability products lick Cisco ASA other security products
• Expert in configuration of new VLANs and extension of existing VLANs on/to the necessary equipment to have connectivity between two different data centers
• Experience with F5 load balancers - LTM, GTM series like 6400, 6800, 8800 for the corporate applications and their availability
• Strong knowledge and experience in implementing, configuring VPN technologies like IPSEC, MPLS.
• Experience in monitoring and analyzing the load balancing of network traffic using Wireshark and Solar winds.
• Experience in Physical cabling, IP addressing, configuring and supporting TCP/IP.
• Efficient at use of Microsoft VISIO/Office as technical documentation and presentation tools.

TECHNICAL SKILLS

Routing: ISIS, OSPF, EIGRP, BGP, RIP, PBR, Route Filtering, Redistribution, Summarization, Static Routing, GSR and CRS1

Switching: LAN, VTP, STP, PVST+, RPVST+, Inter VLAN routing & Multi-Layer Switch, Ether channels, MPLS, Transparent Bridging

Routers: Juniper MX80, MX240, MX 480, MX960, ACX 1000, M120, Cisco 2620, 2901, 3925, 3945E, 7201, 7613

Switches: Juniper EX2200, EX2500, Cisco Catalyst 2232, 2960, 3560, 4507R+E, 5596, 6509-E, 7009, Nexus 2232, 5596, 7009

Network Security: Cisco ASA 5540, Juniper SRX 240, ACL, IPSEC

Load Balancer: F5 Networks (Big-IP) LTM 6400, 1600

LAN/ WAN: Ethernet, Fast Ethernet, Gigabit Ethernet, PPP, HDLC, Channelized links (E1/T1/E3/T3), Fiber Optic Circuits, Frame Relay.

Gateway Redundancy: HSRP, VRRP, GLBP, IOS and Features, IRDP, NAT, SNMP, SYSLOG, NTP, DHCP, CDP, TFTP, FTP, & Services

AAA Architecture: TACACS+, RADIUS, Cisco ACS

Network Management: Wireshark, SNMP, Ethereal, EMC Smarts

Operating Systems: Windows (98, ME, 2000, XP, Server 2003/2008, Vista, Windows 7)

Tools: used: Python scripting, Shell Scripting

PROFESSIONAL EXPERIENCE

Confidential, New York, NY

Network Engineer

Responsibilities:

• Involved in complete LAN, WAN development (including IP address planning, designing, installation, configuration, testing, maintenance etc.).
• Possess good experience in configuring and troubleshooting WAN technologies like MPLS, T1, T3, DS3 and ISDN.
• Implementing the necessary changes such as adding, moving and changing as per the requirements of business lines in a data center environment.
• Remediation of firewall rules from checkpoint firewalls to Cisco ASA firewalls and their implementation.
• Implemented with Cisco Layer 3 switches 3750, 4500, 6500 in multi VLAN environment with the use of inter-VLAN routing, HSRP, ISL trunk, ether channel.
• Configured IP, EIGRP and OSPF in routers. Configured and installed multi-protocol (IP, IPX) multi-interface Cisco routers.
• Configuring RIP, OSPF and Static routing on Juniper M and MX series Routers
• Provide Tier III Level Load Balancer expertise on F5 BigIP Local Traffic Managers (LTM). Designing F5 solutions/support for migration work of applications and websites from Cisco CSS Load Balancers to the F5 BigIP Load Balancers.
• Checking and configuring Cisco 7600 and 7200 routers at data center for remote sites’ issues.
• Worked on Cisco 6509 and 4507 series switches for LAN requirements that includes Upgraded and updated Cisco IOS from 12.3T to 12.4., Used DHCP to automatically assign reusable IP addresses to DHCP clients.
• Used PIX Firewall and ACLs for authentication of EIGRP to ensure high security on the network.
• Used load balancers ACE and load balancing technique with multiple components for efficient performance and to increase reliability through redundancy.
• Involved in migration from Frame-Relay/ATM network to MPLS-based VPN for customer’s WAN infrastructure.
• Designed and implemented DMZ for Web servers, Mail servers & FTP Servers using Cisco ASA 5500 Firewalls.
• Worked on F5 LTM, GTM series like 6400, 6800, 8800.
• Network redesign and configuration WAN and LAN infrastructure utilizing redundant Cisco ASA firewalls, Cisco switches and routers over MPLS and VPN connectivity.
• Configuration and troubleshooting of Firewalls like ASA 5520, ASA 5510, Nokia Check Point VPN-1 NGX R55/R65/R70 and Juniper firewalls SSG 140 & 550M
• Re-built all security zones using Juniper SXR 5600 and multi firewall approach to meet PCI and other security requirements.
• Implementing, configuring, and troubleshooting various routing protocols like RIP, EIGRP, OSPF, BGP
• Involved in Switching Technology Administration including creating and managing VLANs, Port security, Trunking, STP, InterVlan routing and LAN security.
• Maintenance of layer 2 switching tasks which advocate VLAN, VTP, RSTP, PVST, RPVST, configuring of ether channel with LACP and PAGP along with troubleshooting of inter-VLAN routing.
• Implemented, configured redundancy protocols HSRP, VRRP, GLBP for Default Gateway Redundancy.
• Involved in design and implementation of Data Center Migration, worked on implementation strategies for the expansion of the MPLS VPN networks
• Performing network monitoring, providing analysis using various tools like Wireshark, Solarwinds and Netscout etc.

Environment: Cisco 6506/4948/4510 switches, Cisco 3660/3845/7609 Routers, VLAN, Checkpoint, F5 Load Balancers, OSPF, BGP, MPLS, HSRP, VRRP, GLBP, ASA 5500, Nexus 2K, 5K, 7K.

Confidential, Camden NJ

Network Engineer

Responsibilities:

• Experienced with manipulating various BGP attributes such as Local Preference, MED, Extended Communities, Route-Reflector clusters, Route-maps and route policy implementation.
• Memory upgrades on 5K Nexus, 7K Nexus and 9K Nexus NX-operating system devices.
• Performed and configured VLANs, different Routing Protocols and Bundle Ethernet implementation on ASR 9K.
• Involved in the configuration & troubleshooting of routing protocols: MP-BGP, OSPF, LDP, EIGRP, RIP, BGP v4. Configured IP access filter policies.
• Configuring HSRP between VLANs, Configuring Ether-Channels, Port Channel on 6500 catalyst
• Having Data Center Design Experience, installing and Configuring Network Devices in a Data Center including patching the cables in the Patch Panel.
• Worked Knowledge on bluecoat Proxy like blocking URLs Etc.
• Used IPSec VPN tunneling to provide access to user machines and partners in other network. Provided application level redundancy and availability by deploying F5 load balancers LTM.
• Assisted in MPLS migrations, implemented a backup for the existing WAN connection using site-to-site IP sec VPN tunnels.
• Worked on WAN Optimization devices desired (Cisco, Riverbed, etc.)
• Experienced with Riverbed Steelhead technologies SHA xx50 to CXA platform, Interceptor, CMC, Cascade.
• Configured and installed 6500, 4500 in Campus networks.
• Switches Replace branch hardware with new 2851 routers and 2960 switches.
• Worked on converting WAN routing from OSPF to BGP (OSPF is used for local routing only) which involves new WAN links and Branch WAN links from TDM circuits to MPLS.
• Converting encryption from IPSec/GRE to GetVPN.
• Maintained complex LAN/WAN networks with several VLANS and provided support for routing protocols and also providing secure sessions over internet using IPSec and SSL encryption.
• Worked extensively on Cisco ASA 5500(5510/5540) Series, experience with convert PIX rules over to the Cisco ASA solution.
• Configuring and troubleshooting Juniper Firewalls including UTM features like anti-virus, deep inspection (IDP), URL filtering and screening.
• Worked on migration of existing PIX firewall to ASA firewall, PIX OS upgrade from 6.3 to 7.0.
• Design and Implement DMZ for FTP, Web and Mail Servers with CISCO PIX 506, PIX515
• Design and implementing of the UTP Cabling work-node to rack fixing and patch panel termination
• Involved in Configuration of Access lists (ACL) on ASA firewall for the proper network routing for the B2B network connectivity.
• To secure configurations of load balancing in F5, SSL/VPN connections, Troubleshooting CISCO ASA firewalls and building the VPN tunnel and VPN encryption.
• Worked with CISCO IOS and IOS-XR OS.
• Designed and implemented DMZ for Web servers, Mail servers & FTP Servers using Cisco ASA 5500 Firewalls.

Environment: Cisco 2948/3560/4500/3560/ 3750/3550/3500/ switches and Cisco 3640/ 0/3845/3600/2800 routers, Cisco Nexus 7K/5K, Cisco ASA 500, Checkpoint, windows server 2003/2008: F5 BIGIP LTM, RIP, OSPF, BGP, EIGRP, LAN, WAN, VPN, HSRP

Confidential, New York City, NY

Network Engineer

Responsibilities:

• Worked on Cisco Layer 2 switches (spanning tree, VLAN).
• Configured HSRP and VLAN trucking 802.1Q, VLAN Routing on Catalyst 6500 switches.
• WAN Infrastructure running OSPF & BGP as core routing protocol.
• Configuration and troubleshooting of Cisco 2500, 2600, 3000, 6500, 7500, 7200 Series routers.
• Optimized performance of the WAN network consisting of Cisco 3550/4500/6500 switches by configuring VLANs.
• Design and configuring of OSPF, BGP on Juniper Routers and SRX Firewalls.
• Configuration 7609, 7606 with OSPF and catalyst 6505, 4500, 3550 switches with various VLAN.
• Troubleshooting IOS related bugs based on past history and appropriate release notes.
• Worked on different connection medium like Fiber and Copper Connectivity.
• In-depth expertise in the implementation of analysis, optimization, troubleshooting and documentation of LAN/WAN networking systems.
• Planning and configuring the routing protocols such as OSPF, EIGRP, RIP, and Static Routing on the routers.
• Performed and technically documented various test results on the lab tests conducted.
• Planning and configuring the entire IP addressing plan for the clients' network.
• Assist the certification team and perform configuration of LAN\WAN technologies such as Ethernet, Fast Ethernet, and Gigabit Ethernet.
• Supported networks, which are comprised of 2000+ Cisco devices.
• Supported nationwide LAN infrastructure consisting of Cisco 4510 and catalyst 6513.
• Deployed the switches in high availability configuration with HSRP.
• Configured port-fast, uplink fast and other spanning tree features.
• Support various Series of Cisco Routers like 7200/7600 series.
• Support Complex 0 Series Switches.
• Network Monitoring using tools like Cisco Works 2000 and Netflow Analyzer.
• Troubleshoot network problems using Packet Analysis tools like Ethereal.
• Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500
• Worked on ASA (5540/5550) Firewalls. Implemented Security Policies using ACL, Firewall, IPSEC, SSL, VPN, IPS/IDS, AAA (TACACS+ & RADIUS).
• Understanding of JUNOS platform and worked with IOS upgrade of Juniper devices.
• Efficient at use of Microsoft VISIO/Office as technical documentation and presentation tools.
• Create and test Cisco router and switching operations using OSPF routing protocol, ASA Firewalls, and MPLS switching for stable VPNs.
• Experience working with Nexus 7010, 7018, 5020, 2148, 2248 devices.
• Experience working with High performance data center switch like nexus 7000 series.
• Performed load balancing and application level redundancy by deploying F5 BIG-IP LTM 3900.

Environment: Cisco 3750/3550/3500/2960 switches and Cisco 3640/ 0/3845/3600/2800 routers, Cisco ASA5510, Checkpoint, Palo Alto, Cisco Nexus7K/5K.

Confidential

Network Engineer

Responsibilities:

• Worked on Cisco routers 7200, 3700 and Cisco switches 4900, 2900
• Key contributions include troubleshooting of complex LAN/WAN infrastructure.
• Configured Firewall logging, DMZs & related security policies & monitoring
• Creating Private VLANs & preventing VLAN hopping attacks & mitigating spoofing with snooping & IP source guard
• Installed and configured Cisco PIX 535 series firewall and configured remote access IPSEC VPN on Cisco PIX Firewall.
• Enabled STP Enhancements to speed up the network convergence that include Port-fast, Uplink-fast and Backbone
• Establishing VPN Tunnels using IPSec encryption standards and also configuring and implementing site-to-site VPN, Remote VPN.
• Configured network access servers and routers for AAA Security (RADIUS/ TACACS+)
• Responsible for Configuring SITE TO SITE VPN on Cisco Routers between Head Quarters and Branch locations
• Implemented the security architecture for highly complex transport and application architectures addressing well known vulnerabilities and using access control lists that would serve as their primary security on their core & failover firewalls
• Installation & configuration of Cisco VPN concentrator 3060 for VPN tunnel with Cisco VPN hardware & software client and PIX firewall
• Involved in troubleshooting of DNS, DHCP and other IP conflict problems
• Used various scanning and sniffing tools like Wire-shark.
• Hands on Experience working with security issue like applying ACL’s, configuring NAT and VPN
• Documenting and Log analyzing the Cisco PIX series firewall
• Configured BGP for CE to PE route advertisement inside the lab environment
• Spearheaded meetings & discussions with team members regarding network optimization and regarding BGP issues.

Environment: Cisco routers 7200, 3700 and Cisco switches 4900, 2900, LAN/WAN infrastructure, Cisco VPN, BGP.

Confidential

Network Engineer

Responsibilities:

• Involved setting up the TFTP server for backing up the IOS images and configuration files of Cisco Routers and Switches and troubleshooting the file servers.
• Responsible for network evaluations, troubleshooting a variety of network problems, and implementing various software and hardware upgrades efficient performance.
• Troubleshoot Cisco hardware: Inspected devices, Read device LEDs, loose connections, cards, dirty devices, interior IOS upgrade, switch configuration usage of Visual Switch Manager, switch port configuration, port monitoring. Watch over Flooding Control/Network port.
• Designed IP addressing schemes, VLAN’s, subnetting and Trunking to meet requirements.
• Preformed installation, cabling and cable testing.
• Setup Access list and configured Firewall.
• Designed and implemented IT security policies and networked backup systems.
• Documented and maintained technical diagrams, documented logical and physical topology, and other IT procedures.
• Reviewed, approved, procured various IT hardware and software products to fulfill strategic and operational needs of various departments.
• Worked with management and various departments to develop procedures and troubleshoot problems as they arose.

Environment: Cisco Routers, VLAN, Subnetting, Trunking, TFFP, Cisco Switches