We provide IT Staff Augmentation Services!

Sr. Network Engineer Resume Profile

OH

SUMMARY

  • Over 10 years of experience in design, implementation, troubleshooting, development and maintaining enterprise date network systems and Implementation of enterprise networks by dealing with Cisco routers, Cisco Catalyst switches, Cisco Firewalls, Load balancers and Palo Alto devices.
  • Installing, configuring and troubleshooting of network devices like Cisco Routers, Nexus and Cisco Switches.
  • Implementation and configuration of F5 Big-IP load balancers 6400- LTM and GTM V9 .
  • IDS/IPS setup and management with tuning.
  • Able to create blue prints for the conversion of cisco to Palo Alto FW's.
  • Convert all the configurations from Cisco to Palo Alto or checkpoint.
  • Wireless installation and configuration of Cisco Wireless controller 4402/4404, Cisco WCS, and LWAPP.
  • Good understanding of 802.11 Wi-Fi, Cisco Controller based Wireless and Freestanding Wireless.
  • Experience in troubleshooting issues on NAT configuring, access lists and DNS/DHCP issues within the LAN network.
  • Implementing QoS Policy with policing and shaping for VOIP applications other queues, PBX, IP Telephone configurations on Cisco Devices.
  • Knowledge on working and security aspects of OSI and TCP/IP model.
  • Extensive knowledge and experience in routing protocols as RIP, OSPF, EIGRP and BGP.
  • Extensive knowledge and experience on MPLS technologies such as L3 VPN, L2 VPN.
  • Hands on experience of firewalls Cisco PIX and Cisco ASA, Checkpoint and Palo Alto.
  • Network sniffing tools like Wire shark/nmap.
  • Experience in preparing Technical documentation using Microsoft VISIO/Office.
  • Excellent problem solving, troubleshooting and written documentation skills.
  • Experience in loading the routers with Cisco IOS from TFTP and vice versa.
  • Configure and maintain Site-to-site VPN and VPN concentrators solution for Remote users.
  • Knowledge on working with multicasting protocols such as IGMP and PIM.
  • Planned and managed Disaster Recovery and Backups.
  • Operate basic WCS and LWAPP.
  • Conduct basic WLAN Maintenance and Troubleshooting.
  • Configuration management of the changes, additions and deletions from the network and administered via direct Interface or on command line Interface CLI to the device.

TECHNICAL SKILLS

Cisco Routers: 2500, 2600, 2800, 3600, 3700, 3800, 4500, 6500, 7200, 7500, 7609, 12000 and nexus 5000 and 7000.

Juniper Routers: E series, J series and M series.

Cisco Switches: 2900XL, 2950, 2960, 3560, 3750, 4500, 6500 access switch/gateway.

Routing Protocols: RIP, OSPF, EIGRP, and BGP.

Switching protocols: VTP, STP, RSTP, MST, HSRP, VRRP, VRRPE, VLANs, PAgp, and LACP.

Load Balancer: Cisco ACE 4700, 6400 series, F5 big ip load balancers LTM and GTM .

Security: Cisco PIX/ASA, Cisco VPN Concentrators, TACACS/RADIUS

Firewalls: Cisco PIX 501, 510, 515E, Cisco ASA 5520, ASA 5585 NG, Checkpoint, Palo Alto 5000, 2000, 500 and 200 series.

Wan Technologies: FRAME RELAY, ATM, MPLS, SONET, SDH, DWDM. Wireless installation and configuration of Cisco Wireless controller 4402/4404, Cisco WCS, and LWAPP and WAAS hardware.

Wireless AP: 1130,1140,1240, wireless LAN controllers. Implemented Cisco Secure Access Control server ACS for Tacacs/Radius.

Cryptographic: DES, 3DES, RSA, MD5, Diffie-Hellman key exchange.

Sniffing tools: Wire shark, nmap.

Operating Systems: Windows2000/XP/Vista/7, Windows Server 2003/2008, Fedora, Ubuntu, Macintosh osX.

WORK EXPERIENCE

Confidential

Role: Sr. Network Engineer

Responsibilities:

  • Managed a multisite environment with more than 200 Palo Alto firewalls.
  • Managed Palo Alto devices by implementing security rules and mitigating network attacks.
  • Updated daily schedules to update security, threats, Wild fire update from Palo Alto.
  • Writing MOPS for adding new Firewall rules, running reports on the unused and vulnerable rules.
  • Migration of Cisco ASA to Palo Alto firewall with over 45000 security rules.
  • Creating new S2S VPN for all the sites all across the globe on the new Palo Alto FW's.
  • Working with customers Site-to-Site and Remote Site VPNs using Cisco routers to Cisco routers, ASA Firewall to Palo Alto Firewall, Cisco Router to Palo Alto Firewall and troubleshoot and modify existing VPN.
  • Configuring Azure cloud environment as a Datacenter extension.
  • Building up Subscription, affinity groups and building cloud VPN in Azure.
  • Troubleshooting issues related to L2 protocols - VLAN, STP, RSTP and IGMP Snooping. L3 protocols - RIP, OSPF, BGP, IPv4, IPv6, TCP/IP, DHCP, DNS, Multicast, 1/10 GB and Ethernet SNMP.
  • Cisco Nexus 7000, 5000 series installation and configuration, implementation with Port channel and troubleshooting in a TCP/IP OSPF environment.
  • Developing and maintaining Network Documentation with Visio diagrams.
  • Experience with various Ticketing systems such as Remedy, Solar winds.

Confidential

Role: Sr. Network Engineer

Responsibilities:

  • Prepared equipment orders based on templates. Developed detailed template-based plans including: implementation, testing and back out procedures for all network implementations, upgrades and modifications.
  • Managed corporate Checkpoint and implementing security rules and mitigating network attacks.
  • Writing MOPS for Decommissioning Ports, adding new Firewall rules, adding Vlan Trunks.
  • Migration of servers from one datacenter to another, providing switch connections to the new servers, updating Check point Firewall rules for the new servers, F5 to A10 load balancers Migration.
  • Creating new nodes and Pools in F5 load balancers to support newly added servers in Layer 3 environment.
  • Working with customers Site-to-Site and Remote Site VPNs using Cisco routers to Cisco routers, ASA Firewall to ASA Firewall, Cisco Router to ASA Firewall and troubleshoot and modify existing VPN.
  • Ethernet network design including routing, switching, configuration, performance, and fault tolerance of Servers, Switches, Storage hardware and software architectures.
  • Configuring and Troubleshooting Layer 3 devices in MPLS domain.
  • Assigning IP Addresses, updating Firewall rules, configuring switches connected to servers in Test and Production Environment.
  • WAN Interface, Protocol configuration and WAN Network Troubleshooting, QoS design and implementation for Cisco Switches and Routers for all platforms
  • Troubleshooting issues related to L2 protocols - VLAN, STP, RSTP and IGMP Snooping. L3 protocols - RIP, OSPF, BGP, IPv4, IPv6, TCP/IP, DHCP, DNS, Multicast, 1/10 GB and Ethernet SNMP.
  • Cisco Nexus 7000, 5000 series installation and configuration, implementation with Port channel and troubleshooting in a TCP/IP OSPF environment.
  • Developing and maintaining Network Documentation with Visio diagrams, Excel spreadsheets, Word documents, etc .
  • Experience with various Ticketing systems such as Remedy, Solar winds and creating work orders with web applications.

Confidential

Role: Security/Firewall Engineer

Responsibilities:

  • Configuration of all the firewall rules from multiple data centers.
  • Creation of DMZ and reverse proxy for web applications.
  • Creating new rules based on customer/client requests.
  • Configuring firewalls according to PCI/PI standards.
  • Configured Firewalls from scratch and bring online in the network.
  • Configured and implemented Any-connect VPN and Site-Site VPN.
  • Configured policies for traffic policing and AS2 configurations
  • Extensive use of Cisco ASA 5500 and PIX firewalls.
  • Upgraded the FW from 8.0 to 8.4 NAT Exempt .
  • Configured WCCP for Bluecoat proxy and to prioritize the user traffic/experience.
  • Created multiple instances/contexts on the Firewalls.
  • Creating a Blue print/documentation regarding the conversion.

Confidential

Role: IP Next Generation Network NGN Engineer

Responsibilities:

  • Working on project planning for Service provider Wi-Fi for TWC.
  • Creating the plan for the project.
  • Evaluating all the possible Test Cases.
  • ASR 1k and the WLC 5508 with NCS are used to test this environment.
  • ISG technology is been tested and deployed.
  • Wireless AP's 1142, 1262, 3502 are being used in this environment.
  • Ixia is used as the traffic generator to test the traffic load.
  • UCS with VMware and VSphere are used as back end.
  • Fabric Interconnect as well as VPN solutions are also tested.

Confidential

Role: Network Engineer

Responsibilities:

  • Project planning, considering requirements for a robust and healthier network and then implementing to connect with existing network is my daily activities.
  • Worked on Cisco Catalyst 6500, Nexus 5000 7000 and Cisco 4948, 7200 series Routers as well as ASR 9k.
  • Making changes to the existing design by following DLA and TOR architecture.
  • Extensive Datacenter experience with the TOR, AGG and Core architectures.
  • Deployed route reflector successfully to make the network redundant.
  • Daily activities as taking requirements from the customer and providing them with the feasible changes to the network and deploying as per the need.
  • Was providing on call support to customers and on escalations.
  • Very familiar with HSRP, VPC, and spanning tree concepts.
  • Extensively worked on OSPF, BGP.
  • Extensive use of Palo Alto Firewalls in deploying administering and maintaining accordingly to customer requests.

Confidential

Role: Traffic Management Engineer

Responsibilities:

  • Implementation of new sites from scratch and projects with phases, like project planning, considering needs and requirements for completion and then implementing to connect with existing network.
  • Worked with Big IP F5 LTM GTM.
  • Worked with versions of 4.x, 9.x and 10.x.
  • Configuration of different URL's to work with both inside and outside the environment.
  • Implementation and configuration of F5 Big-IP load balancers 6400- LTM V9 .
  • Designing the URL's as per the requirements of the customer/client.
  • Able to do both 3dns and fdns types of designs with A record names.
  • Able to do failover and redundancy type of connections for VIP/WIP.
  • Configure the BIG IP boxes with both GUI and CLI with big pipe and tmsh commands.
  • Worked with a group of people in a triage when the online banking was down and was successful.

Confidential

Role: Lead Network Engineer

Responsibilities:

  • Implementation of new sites from scratch and projects with phases, like project planning, considering needs and requirements for completion and then implementing to connect with existing network.
  • Worked with Cisco Catalyst 6500, 4500, 3500, 2900, Nexus 5000 7000 and Cisco 2600, 2800, 3600, 3800, 7200 series Routers.
  • Worked with Routing Protocols of RIP, EIGRP, OSPF, and BGP.
  • Very good experience in implementing the BGP protocol.
  • Worked with IGMP and PIM Multicast protocols.
  • Configuration of various modes of Multicast distribution trees.
  • Router disaster recovery from crashes and checking logs for reason for crash and verifying if hardware or software issues on production routers.
  • Configuration of different routing protocols to work with WAN and LAN.
  • VLAN configuration to differentiate applications with VTP, RSTP, HSRP, PVST, VRRP, GLBP, servers and users.
  • Working knowledge and configuration of Checkpoint Firewall Power-1 5077 appliance.
  • Implementation and configuration of F5 Big-IP load balancers 6400- LTM V9 .
  • MPLS configuration between the company branches with routing protocols.
  • GRE tunneling Site-to Site VPN configuration between other two sites in USA.
  • Configuring VPN to allow Employers applications and machines into our network and vice versa.
  • Wireless installation and configuration of Cisco Wireless controller 4402/4404, Cisco WCS, and LWAPP.
  • ASA 5510/5520 and PIX 525/515e configuration and Implementation for the network.
  • Worked with conversion of Cisco Firewalls to Checkpoint.
  • Creating a Blue print/documentation regarding the conversion.
  • Implemented redundancy for Routers, Switches and Firewalls.
  • Implementing QoS Policy with policing and shaping for VOIP applications other queues, PBX, IP Telephone configurations on Cisco Devices.
  • Carried out performance monitoring documentation of relevant network segments to ensure data integrity environmental safety.

Confidential

Role: Network Support Engineer

Responsibilities:

  • Responsible for the installation, configuration, maintenance and troubleshooting of the company network. Duties included monitoring network performance using various network tools to ensure the availability, integrity and confidentiality of application and equipment and to provide support for Cisco network
  • Responsible for the Global design, engineering, and level 3/4 support of existing network technologies services and the integration of new network technologies / services
  • Key contributions include troubleshooting of complex LAN /WAN infrastructure that include routing protocols EIGRP, OSPF BGP.
  • Configuration, Testing, Planning and Design of Cisco Routers 2800, 3600, 3800 and Cisco Catalyst 2900, 3570 and 6500 and Nexus 5000 Switches and Cisco Aironet Wireless appliances.
  • Implementing QoS Policy with policing and shaping for VOIP applications other queues, PBX, IP Telephone configurations on Cisco Devices.
  • Implementation and configuration of F5 Big-IP LTM GTM load balancers
  • Migration from Frame-Relay/ATM network to MPLS-based VPN for customer's WAN infrastructure
  • Troubleshooting latency and throughput issues on MPLS and Dedicated Internet Access circuits
  • Configured Cisco 7204 routers which were also connected to Cisco ASA security appliances providing perimeter based firewall security
  • Upgrade Cisco Routers, Switches and Firewall ASA IOS using TFTP.
  • Resource management through deployment of network based monitoring applications to keep bandwidth activity alongside each other.
  • Configured Client VPN technologies including Cisco's VPN client via IPSEC.
  • Installed and Configured a Cisco secure ACS server for AAA authentication RADIUS
  • Manage Cisco Routers and troubleshoot layer1, layer2 and layer3 technologies for customer escalations.
  • Performed switching technology administration including Vlans, inter-Vlan routing, trunking, port aggregation and link negotiation.

Confidential

Role: Network Engineer

Responsibilities:

  • Responsible for implementing, engineering, level 3/4 support of existing network technologies / services integration of new network technologies / services
  • Key contributions include troubleshooting of complex LAN /WAN infrastructure that includes routing protocols EIGRP, OSPF BGP
  • Installed and configured routers including 1800, 2600 along with Cisco switches including 3750 and 6500
  • Migration of existing IPSEC VPN tunnels from Pre-Shared key to Certificate Authority for purpose of scaling
  • Configuring switch for 802.1x port based authentication
  • Designed WAN structure to prevent single point of failure in case of link failure.
  • Maintenance and Troubleshooting of connectivity problems using Ping, Trace route.
  • Planning and Implementation of Subnetting, VLSM to conserve IP addresses.
  • Configured STP for loop prevention and VTP for Inter-VLAN Routing.
  • Troubleshooting issues and outages on Trunks and Router interfaces extensively.
  • Technical assistance for LAN/WAN management and complex customer issues.
  • Performed route redistribution manipulated route updates using distribute lists, route-maps administrative distance
  • Creating applying different types of access-lists for these effects to take place
  • Administered setup Cisco PIX firewalls at multiple sites

Confidential

Role: Network Administrator

Responsibilities:

  • Routing : BGP, OSPF, IS-IS, EIGRP, NAT, MPLS,PIM, GRE tunnels for VPN
  • WAN: Frame Relay, ATM.
  • Security: PIX and ASA firewall, RADIUS, TACACS , VPN, and IPSec.
  • Hands on Experience on Cisco 2600, 3640 routers and catalyst 2950 series.
  • Implemented HSRP on the Cisco 2948G Layer 3 switches, and EIGRP, OSPF on 2 Cisco 2610 routers , the Layer 3 switch, 3 Cisco 3508XL Switches, 2 Cisco 3524XL switches for load balancing and fail over.
  • Converted networks with multiple routing protocols RIP, IGRP, EIGRP into a single OSPF domain, thus providing for future network scalability.
  • Implemented redistribution of protocols from EIGRP to IS-IS level 1 and redistributing IS-IS Level 1 to EIGRP thus avoiding all the networks to be redistributed.
  • Designed a reliable and fully redundant network implementing various routing protocols RIP, OSPF, BGP and EIGRP.
  • Configuration, Implementation, and Management of WAN Network: Frame Relay, ISDN, ATM
  • Implemented VLANS between different departments and connected them using trunk by keeping one Vlan under server mode and rest falling under client modes.
  • Perform planning, testing, evaluate new devices and troubleshooting.
  • Acted as Intranet Webmaster and helped create and administer security policies.
  • Involved with the Systems team to Install, configure, maintain AD, DNS, DHCP on Windows 2000 Server, also Configured FTP server for inside/outside users vendors
  • Project: Planning, designing and implementing the services to provide website load balancing

Hire Now