SUMMARY

• Around 8 years of experience in networking, installing, configuring and maintaining network devices.
• Implementing IP addressing schemes, LAN/WAN protocols, IP Services, to fulfill network requisites in different environments.
• Hands on experience in configuring Cisco Catalyst 2960, 3750, 4500, 6500 series, and Cisco 2600, 2800, 3600, 3800, 7200, 7600 series routers, Cisco Nexus 7000 series, 5000 series, 2000 series data center switches, Juniper EX/ MX/ SRX series.
• Proficient in Configuring Virtual Local Area Networks (VLANS) using Cisco routers and multi - layer Switches and supporting STP, RSTP, PVST, RPVST along with trouble shooting of inter-VLAN routing and VLAN Trunking using 802.1Q.
• Implemented redundancy with HSRP, VRRP, GLBP, Ether channel technology (LACP, PAgP) etc.
• Worked extensively on Cisco Firewalls Cisco PIX(506E/515E/525) & ASA 10/5540) series.
• Expertise in OSI layer model/TCP/IP.
• Well versed and experienced in routing and switching protocols RIP, OSPF, EIGRP, BGP and VLAN.
• Expert level Knowledge on working with Wireless LAN Controller’s, Cisco Meraki, Cisco NCS, Cisco AP’s, LWAPS, Standalone AP’s and Mesh AP’s.
• Expertise knowledge on CISCO Prime infra and CISCO LMS tools.
• Working knowledge on configuring access lists. Troubleshooting DNS/DHCP issues within the LAN network.
• Experienced in wireless/RF communications with knowledge and experience in technology integration of Wireless Broadband/Convergence (IEEE 802.11, WiMAX, BYOD, etc).
• Expertise in Cisco ACS, Juniper Steel Belt, Radiator and Cisco ISE Authentication, Authorization and Accounting Protocols. Expert Hands on Experience in Cisco ACS & Cisco ISE for 802.1x, AAA Configurations.
• Involved in troubleshooting network traffic and its diagnosis using tools like ping, traceroute, Wireshark, TCPdump and Linux operating system servers.
• Sound knowledge of Routing and Switching concepts and MPLS design.
• Hands on in deployment of GRE tunneling, SSL, Site-Site IPSEC VPN and DMVPN.
• Managed inventory of all network hardware, Management and Monitoring by use of SSH, Syslog, SNMP, NTP.
• Strong experience onJuniper SSG series Firewalls and Checkpoint R75, 76 Firewalls.
• Strong Knowledge in working with F5 Load Balancers and their Implementation in various Networks.
• Experience with F5 load balancers - LTM, GTM series like 6800 and 8900 for the corporate applications and their availability.
• Extensive understanding of the Application Security Module (ASM) technology.
• Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500/PIX security appliance, Failover DMZ zoning & configuring VLANs/routing/NATing with the firewalls as per the design.
• In-depth knowledge and hands-on experience in Tier II ISP Routing Policies, Network Architecture, IP Subnetting, VLSM, TCP/IP, NAT, DHCP, DNS, FT1 / T1 / FT3 / T3 Sonet POS OCX / GigE circuits, Firewalls.
• Configured and deployed QOS and defined class of service (COS) WRED and WFQ for bandwidth management.

TECHNICAL SKILLS

Cisco Routers: Cisco ASR9k, 7600, 7500, 7200, 3800, 3600, 2900, 2800, 2600

Routing Protocols: OSPF, EIGRP, BGP, RIP v1/v2, MPLS PBR, Route Filtering, Redistribution, Summarization, and Static Routing

Switches: Nexus 2K/5K/7K,9k Cisco Catalyst 6500, 4500, 3850,3560, 3750, 2960

Switching Protocols: LAN, VTP, STP, PVST+, RPVST+, Inter VLAN routing & Multi-Layer Switch, Ether channels.

LAN technologies: Ethernet, Fast & Gigabit Ethernet, VLANS, VTP, STP, RSTP, 802.1W, Cisco Prime.

WAN technologies: ATM, Frame-Relay, ISDN, PPP, HDLC

MPLS: LDP, MPLS L3 and L2 VPN

Load Balancing: Cisco ACE 4700 series, F5 Networks (Big-IP) LTM 8900 and 6400

Firewalls: Cisco ASA 5500, Cisco PIX 500, checkpoint r54, checkpoint r75,76, Palo Alto

Quality of service: CBWFQ, RED/WRED

Wireless Technology: Prime Infrastructure, Ekahau, Air Magnet, Airwatch & WLC’s(8510, 5508, 5706), Cisco Aironet AP’s (2600, 3600,3700), ISE, MSE, Aruba 225, Aruba 3000 controller & Airwave.

Ticketing software: ConnectWise, Remedy system

Network Management: HP open-view, Solar winds, PRTG Network Monitor

IPSEC/VPN Configuration: PIX to Router, Router to Router, PIX to VPN wildcard client, Router to VPN wildcard client, PIX to PIX, fully meshed configurations

Cabling: CAT 5, CAT 5e, CAT 6, CAT 6a

Operating Systems: Windows Server/8/7/Vista/XP, Nexus OS, Cisco IOS-XR, Linux, Unix (Mac OS)

PROFESSIONAL EXPERIENCE

Confidential, Plano, TX

Sr. Network Engineer

Responsibilities:

• Installing, Configuring and troubleshooting Cisco Routers (ASR9k, 1006, 3945, 3845, 2800, 3600) and Switches to perform functions at the Access, Distribution, and Core layers.
• Experience with configuring routing protocols such as OSPF and Policy based Routing.
• Experience deploying BIG-IP F5LTM Load Balancers for load balancing and traffic management of business application.
• Experience with configuring Load Balancing methods in F5 LTM and configured the virtual server.
• Experience with configuring Hot Standby Routing Protocol HSRP and VLAN Trunking Protocol.
• By configuring VLAN's, optimized the performance of WAN network.
• Configured Cisco 7200, 7600, 3800 and 3600 routers.
• Performed Configuration on ASR 9K Pairs includes HSRP, Bundle Ethernet Config, Assigning DHCP profiles.
• Link state protocols such as OSPF are configured and had experience in troubleshooting them.
• Involved in the removal of EIGRP from all devices and making OSPF the primary routing protocol.
• Experience working in environments with diverge network systems and components like Nexus 5000, Nexus 1000V, Nexus 7000.
• Experience working in Datacenter environment, configuration changes as per the needs of company.
• Designed and implemented F5 Big IP load balancers that resulted in improving application performance.
• Experience in working with LTM and GTM for scaling and securing DNS infrastructure during high volumes.
• Performed load balancing and application level redundancy by deploying F5 BIG-IP LTM 6800.
• Virtual Port Channel(VPC) & Virtual Device Context(VDC) configuration on the Nexus 7000,5000 series.
• Configuring Virtual Chassis for Juniper switches EX-4200, Firewalls SRX-210
• Used Spanning Tree Protocol and configured BPDU Guard, Port-Fast, Up-Link Fast.
• Experience with installing and configuring Spanning Tree Protocol, Trunking (dot1q and ISL) and Ether channel on Campus Network Design Architecture.
• Extensive Knowledge on the implementation of Cisco ASA 5500 series and checkpoint R 75 firewalls.
• Designed & Deployed Cisco ISE 1.2/1.3 for Enterprise RADIUS Authentication with Active Directory,RSA SecureID,Proxy Radius Services to Cisco ACS,Juniper Steel Belted Radius and Radiator Radius.
• Configured Cisco ASA 5510 for VPN Network Access Control integration with Cisco ISE (Inline PEPs).
• Planning, designing and Configuration of various Policy Configurations, Profile Authorizations, End device Profiling, User Identities, Cisco ISE and AD mapping with various attributes and levels of authorizations and Network Access.
• Configured and performed software upgrades on Cisco Wireless LAN Controllers 5508 for Wireless Network Access Control integration with Cisco ISE.
• Installed and configured Cisco ASA 5500 series firewall and configured remote access IPSEC VPN on Cisco ASA 5500 series.
• Implemented Zone Based Firewalling and Security Rules on the Palo Alto Firewalls.
• Configuring IPsec VPN connections, encryption algorithms & VPN domains on Palo Alto PA-4k,5k.
• Experience with implementing and maintaining network monitoring systems such as Cisco works and HP Open view and have experience with developing complex network design documentation and presentations using VISIO.

Environment: Cisco 00 / 00 routers, Cisco 6500 switches, Cisco 3500 Access points, Nexus switches 00v / 7000, Cisco ASA 5500, Load Balancer F5, Cisco ISE.

Confidential, Seattle, WA

Sr. Network Engineer

Responsibilities:

• Configuring Static, IGRP, EIGRP, and OSPF Routing Protocols on Cisco 1600, 2600, 2800, 3600, 7300 series Routers.
• Experience in working with Cisco Nexus 2148 Fabric Extender and Nexus 7010, 5000 series to provide a Flexible Access Solution for datacenter access architecture.
• Hands on Knowledge/experience on F5 Load Balancers. its methods, implementation and troubleshooting on LTMs and GTMs.
• Worked on F5 BIG-IP LTM 8900, configured profiles, provided and ensured high availability.
• Implemented application-specific tasks using Server load-balancing utilizing F5 LTM-Big IP, including, APM and ASM modules.
• Solid experience in Design Large scale enterprise Wireless networks with Air Magnet, Visiwave and Ekahau.
• Worked Extensively with Wireless planning and Management tools like Aruba Airwave and Cisco prime infrastructure.
• Expert level WLAN design work, being a subject matter expert with 802.11 concepts, and using AirMagnet for predictive design.
• Experience with Monitoring wireless networks and performing site surveys.
• Deployed the Cisco 3500 Access Points using Cisco Wireless controllers 5500 and 2500 and WCS System.
• Designed and deployed 5508 WLCs for multiple sites with local node and HREAP.
• Configured theClearpassservers to provide secure wireless connectivity for all corporate laptops using two factor, machine and user authentication.
• Providing TACACS authorization, BYOD access, Onboarding andOnguardusing the RADIUS server.
• Design, Implement & troubleshooting of Juniper switches, routers and Firewalls EX-2200, EX-4200, EX-4500, MX-480, M Series, SRX210, SRX240, SRX3600/650.
• Implementation of Site-to-Site VPNs and DMVPN over the internet using IKE Phase 1 and IKE Phase 2 based on traffic with ASA 5500 series Firewalls.
• Configure various LAN switches such as CISCO CAT 2900, 3550, 4500, 6509 switches and Access layer switches such as Cisco 4510, 4948, 4507 switches for VLAN, Fast Ether Channel configuration.
• Experience in migration of VLANS & Configured VLANs with 802.1q tagging, Ether channels, and Spanning tree for creating Access/distribution and core layer switching.
• Hands on experience in installation, configuration and maintenance of Palo Alto PA-4k, PA-5k.
• Firewall technologies including general configuration, security policy, rules creation and modification of Palo Alto.
• Implementation of Site-to-Site VPNs in Palo alto firewalls.
• Worked on migration of existing Cisco ASA to Palo Alto.
• Designed and implemented DMZ for Web servers, Mail servers & FTP Servers using Cisco ASA5500.
• Extensive use of NSM (Network and Security Manager), CSM (Cisco Security Manager) for adding or modifying firewall policies for the firewalls in use.
• Mapped, Network Diagrams and physical identification in MS Visio.
• Worked with engineering team to resolve tickets and troubleshoot L3/L2 problems efficiently.
• Configured Cisco 2800, 3800 routers and 3750, 4500, 6500 switches as part of the implementation plan.

Environment: Cisco 2900/3560/3750/3550/3500/4500/6500 switches and Cisco 1600/2600/2800/ 3600/3800/7300 routers, Cisco Nexus 7K/5K/2K, Cisco ASA 500, Juniper EX-2200, EX-4200, EX-4500, MX-480, M Series, SRX210, SRX240, SRX3600/650, Checkpoint, PA-4k,5k, windows server 2003/2008: F5 BIGIP LTM, RIP, OSPF, EIGRP, LAN, WAN, VPN, HSRP

Confidential, Chicago, IL

Sr. Network Engineer

Responsibilities:

• Troubleshooting the TCP/IP networks for connectivity, outages and slow network issues and recommended appropriate and cost-effective solutions for the congestion.
• Network consists of Heavy Cisco equipment such as: Cisco 2924 switches, Cisco 5500 series Layer 3 switches, Cisco 7200 series routers, Cisco Pix firewall 500 series and Wireless Access points Cisco 1230.
• Configured MR42 meraki access points for 802.11ac wireless deployments.
• Responsible for deploying various network security & High Availability in Checkpoint Firewall
• Configuring routing protocols OSPF, EIGRP, RIP, MPBGP, LDP.
• Configuring HSRP between VLANs, Configuring Ether-Channels, Port Channel on catalyst 6500.
• Build Logical design and Implementation of Wireless Solution.
• Experience with convert Checkpoint VPN rules over to the Cisco ASA solution. Migration with Checkpoint and Cisco ASA VPN experience
• Responsible for Cisco ASA firewall administration across our global networks
• Experience with migration of Checkpoint R54 to SPLAT
• Configured various BGP attributes such as Local Preference, MED, Extended Communities, Route-Reflector clusters, Route-maps and route policy implementation.
• Actively participated in upgrading fast Ethernet, Layer 3 switched/routed LAN infrastructure from Cisco 3640 to Cisco 2811 ISR routers and switches at access level to 2950, 3550.
• Configured Nexus 5020 and 7702 with multiple distributions VDC’s running EIGRP for route propagation between them.
• Experience with configuring Nexus 2000 Fabric Extender (FEX) hitch acts as a remote line card (module) for the Nexus 5000.
• Continual network monitoring of data center support, troubleshoot and diagnose hardware problems.
• Configured various Router interfaces like ATM interface, T3 & Channelized T1 interfaces.

Environment: Cisco 3560/2950/2924/6509/6513/5500 switches, Cisco 3825/3640/7200 routers, Nexus 5020/5548/7010/7702/2000 series, VPN, BGP, OSPF, RIP, EIGRP, VLAN, VTP and Checkpoint.

Confidential

Network Engineer

Responsibilities:

• Configuring and troubleshooting multi-customer network environment.
• Involved in network monitoring, alarm notification and acknowledgement.
• Implementing new/changing existing data networks for various projects as per the requirement.
• Troubleshooting complex networks layer 1, 2to layer 3 (routing with MPLS, BGP, EIGRP, OSPF protocols) technical issues.
• Performing troubleshooting for IOS related bugs by analyzing history and related notes.
• Managing the service request tickets within the phases of troubleshooting, maintenance, upgrades, fixes, patches and providing all-round technical support.
• Commissioning and Decommissioning of the MPLS circuits for various field offices.
• Preparing feasibility report for various upgrades and installations.
• Ensure Network, system and data availability and integrity through preventive maintenance and upgrade.
• Involved in L2/L3 Switching Technology Administration including creating and managing VLANs, Port security, Trunking, STP, Inter-Vlan routing, LAN security.
• Completed service requests (i.e. - IP readdressing, bandwidth upgrades, IOS/platform upgrades, etc.)
• Identify, design and implement flexible, responsive, and secure technology services
• Modified internal infrastructure by adding switches to support server farms and added servers to existing DMZ environments to support new and existing application platforms.
• Configured switches with port security and 802.1 xs for enhancing customer’s security.
• Monitored network for optimum traffic distribution and load balancing using Solar winds.
• Validate existing infrastructure and recommend new network designs.
• Created scripts to monitor CPU/Memory on various low-end routers in the network.
• Handled installation of Windows NT Server and Windows NT Workstations.

Environment: Cisco 2990/3550/6550 switches, Cisco 7200/3845/3600/2800 routers, EIGRP, RIP, OSPF, BGP, VPN, Ether Channels, and Sniffer.

Confidential

System/Network Administrator

Responsibilities:

• Configured and supported TCP/IP networks.
• Monitored the network with Cisco Works 2000.
• Documented the design, implementation and troubleshooting procedures.
• Configured and troubleshoot VLAN, VTP, STP and Trunks.
• Network Administrator responsible for the full Planning, designing, installation and administration of the Corporate WAN (wide area network).
• Configuration, Management, Troubleshooting of Network devices (Routers, Switches, Firewalls, Servers, DSL Modems etc.).
• Maintained the Telecommunication Connectivity using DSL and T1 Lines.
• Maintained complex LAN/WAN networks with several VLANS and provided support for routing protocols.
• Managed IP addressing and implemented IP Access Lists.
• Evaluate and recommend inter-connectivity hardware, software, and services to fulfill various businesses needs as requirements develop.
• Worked on Routers Cisco 2620, 3750 and 2950 Switches & Link sys wireless access points.

Environment: TCP/IP networks, Cisco Works 2000, VLAN, VTP, STP, Trunks H/W, network drives, DSL, T1 Lines LAN, WAN, VLANs, IP Access List, Cisco 2620, 3750, 2950 and Link sys