PROFESSIONAL SUMMARY:

• CCNP Certified Professional with 7 years of extensive experience in network design, implementation, troubleshooting, engineering, managing & migration of large - scale enterprise Campus networks and Data Center networks
• Design and configuring of OSPF, BGP on Juniper Routers (MX960, MX480) and SRX Firewalls(SRX240, SRX550)
• In-depth expertise in the implementation of analysis, optimization, troubleshooting and documentation of LAN/WAN networking systems.
• Good knowledge ofIP Addressing, Subnetting, VLSM, ARP, OSI and TCP/IP models.
• Experience with F5 GTM/LTM 8950 and VIPRION configuration/installation/support.
• Expertise in implementing L2 technologies including VLAN’s, VTP, STP, RSTP.
• Expertise in implementing routing protocols EIGRP, OSPF, ISIS and BGP.
• Configuring and Troubleshooting Route Redistribution between static, EIGRP, OSPF & BGP protocols.
• Experience in Configuration and Support ofLAN protocols on Cisco Switches such as (Layer2, Layer3 and Multi Layer).
• Experience working with High performance data center switch like Nexus 7010,7018, 7009, 5020, 2148, 2248 devices
• Dealt with the escalation problems for Routing, Switching and WAN connectivity issues using ticketing system like Remedy Ticketing System
• Experience in layer-3 Routing and layer-2 Switching. Dealt with Nexus models like 7K, 5K, 2K series, Cisco router models like 7200, 3800, 3600, 2800, 2600, 2500, 1800 series and Cisco catalyst 6500, 4500, 3750, 3500, 2900 series switches
• Strong hands on experience on PIX Firewalls, ASA (5540/5550) Firewalls. Implemented Security Policies using ACL, Firewall, IPSEC, SSL, VPN, IPS/IDS, AAA(TACACS+ & RADIUS)
• Efficient at use of Microsoft VISIO/Office as technical documentation and presentation tools
• Working with Cisco for opening TAC Case and resolving issues to meet project deadlines.
• Experience with designing, deploying and troubleshooting LAN, WAN, Frame-Relay, Ether-channel, IP Routing Protocols - (RIPV2, OSPF, EIGRP & BGP), ACL's, NAT, VLAN, STP, VTP, HSRP & GLBP
• Working knowledge with monitoring tools like Solar Winds & network packet capture tools like Wire-shark
• Configured Security policies including NAT, PAT, VPN’s and Access Control Lists.
• A highly organized individual who adopts a systematic approach to problem solving, effectively analyzes results and implements solutions.
• Excellent communication skills, Enthusiastic, motivated and a team player.

TECHNICAL SKILLS:

Cisco & other vendor equipments: Nexus 7K, 5K, 2K & 1K, Cisco routers (7600, 7200, 3900, 3600, 2800, 2600, 2500, 1800 series) & Cisco Catalyst switches (6500, 4900, 3750, 3500, 4500, 2900 series). PIX Firewall (506/515/525/535 ), ASA Firewall (5505/5510), Cisco ACE Load Balancers

Routing Protocols: RIP, IGRP, EIGRP, OSPF, IS-IS, BGP, HSRP, VRRP & GLBP

Network Management: Solar Winds, SNMP, Cisco Works, Wireshark

Infrastructure services: DHCP, DNS, SMTP, FTP, and TFTP

LAN technologies: Ethernet, Fast Ethernet, Gigabit Ethernet, & 10 Gigabit Ethernet, Port- channel, VLANS, VTP, STP, RSTP, 802.1Q

WAN technologies: Frame Relay, ISDN, ATM, MPLS, leased lines & exposure to PPP, DS1, DS3, OC3, T1 /T3 & SONET

Network Security: NAT/PAT, Ingress & Egress Firewall Design, VPN Configuration, Dynamic, Reflexive ACL, and authentication AAA (TACACS+ & RADIUS)

Platforms: Cisco IOS-XR, Cisco Cat OS, Cisco IOS (11.x, 12.x), PIX IOS (6.7.x), CAT-OS UNIX, LINUX, Windows XP, NT, 2000, 2003

Documentation: MS Office, MS Visio

PROFESSIONAL EXPERIENCE:

Confidential, Wilmington, DE

Sr. Network Engineer

Responsibilities:

• Responsible for designing and implementation of customer’s network and Security infrastructure.
• Involved in complete LAN, WAN, Extranet redesign (including IP address planning, designing, installation, pre configuration of network equipment, testing, and maintenance) in both Campus and Branch networks
• Experience working with MPLS on ASR 9006 with IOS-XR
• Experience with converting Cisco 6500 IOS to Cisco Nexus NX-OS in the data center environment.
• Experience working with Nexus 7010, 5020, 2148, 2248 devices
• Experience with configuring Nexus 2000 Fabric Extender (FEX) which acts as a remote line card (module) for the Nexus 5000
• Experience configuring VPC, VDC and ISSU Software upgrades on Cisco Nexus 7010
• Experience in Configuring, upgrading and verifying the NX-OS operation system
• Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500 and FWSM on Cisco 6500 switches,Failover DMZ zoning & configuring VLANs/routing/NATing with the firewalls as per the design.
• Experience working with BGP attributes such as Weight, Local-P, MED and AS-PATH to influence inbound and out bound traffic
• Involved in Switching Technology Administration including creating and managing VLANs, Port security, Trunking, STP, InterVlan routing and LAN security.
• Use and maintain routing protocols EIGRP, OSPF and BGP on the Routers in the network & also worked on BGP Route Reflectors, Confederations
• Deployed a large-scale HSRP solution to improve the uptime of collocation customers, in the event a core router became unreachable.
• Configured and designed LAN networks with Access layer switches such as Cisco 4510, 4948, 4507 switches.
• Experience with convert PIX rules over to the Cisco ASA solution.
• Responsible for Cisco ASA firewall administration across our global networks
• Support customer with the configuration and maintenance of ASA firewall systems
• Design, and configuring of OSPF, BGP on Juniper Routers and SRX Firewalls.
• Configuring IPSEC VPN on SRX series firewalls
• Ability to plan independently and execute producttestingwith quality (White box, Black boxtesting, Scalability, performance, solution and systemtesting)
• Applies test expertise and experience to craft & execute test plans, conduct negative/exception tests, verification, performance and regressiontestingof RIA, HTML, AJAX, Mobile Web client, integration services, enablers & platforms
• Configuring Virtual Chassis for Juniper switches EX-4200,Firewalls SRX-210
• Implemented HSRP on the Cisco 2948G Layer 3 switches and EIGRP, OSPF on 2 Cisco 2610 routers, the Layer 3 switch, 3 Cisco 350XL Switches, Cisco 3524XL switches for load balancing and fail over.
• Configuring ASA Firewall and accept/reject rules for network traffic.
• Extensive knowledge and troubleshooting in data communication protocols and standards including TCP/IP, UDP, IEEE 802.3, Token Ring, Cable Modem, PPPOE, ADSL, Multilayer Switching, DoD standards.
• Provided Load Balancing towards access layer from core layer using F5 Network Load Balancers.
• Upgraded load balancers from Radware to F5 BigIP v9 which improved functionality and scalability in the enterprise.
• Configuration and troubleshooting Citrix NETSCALAR MPX7500, 9500,17550,19550,21550.
• Managed the F5 BigIP GTM/LTM appliances to include writing iRules, SSL offload and everyday task of creating WIP and VIPs
• Other responsibilities included documentation and supporting other teams.
• Monitoring the network for any issues using Cacti, Nagios, OPNET.

Environment: Juniper firewalls, Vulnerability Assessment tools like Nessus, Red Hat, Solaris, Juniper VPN’s, SSL

Confidential, Atlanta, GA.

Network Operations Engineer

Responsibilities:

• Designed, installed, and maintained various WAN technologies and applications connecting remote sites to corporate headquarters.
• Configured, implemented, and troubleshoot routers and switches with various account settings, permissions, and parameters including security firewalls.
• Primary responsibility is to design and deploy various network security & High Availability products like Checkpoint NGX, Provider-I, Nokia appliance, Cisco ASA other security products
• Installed various network hardware including concentrators, bridges, and hubs to establish communication connections with remote locations.
• Configured multiple domain name services (DNS), email services (Exchange Server), web, and file transfer protocol services (FTP) for various platforms including line leasing through DHCP servers.
• Configuring various advanced features (Profiles, monitors, iRules, Redundancy, SSL Termination, Persistence, SNATs, HA on F5 BIGIP appliances SSL termination and initiation, Persistence, Digital s, Executed various migration/upgrade projects across F5 and hands on with F5 BIGIP LTMs/EM.
• Experience with creating VIP(virtual servers), pools, nodes and applying iRules for the virtual servers like cookie persistency, redirection of the URL
• Networking protocols worked with included but not limited to TCP/IP, DNS, WINS, DHCP, VPN, Terminal Services, Routing and Remote Access, Network Design, wiring and cabling.
• Cisco IOS experience on 3600/7200 class hardware in complex WAN environment and experience on Cisco OS and IOS on CAT6500 in a complex data centre environment
• Hands on experience installing Sup720 for Cisco 6509-E series and its Gigabit Ethernet port deployment in the core network
• Configuring IP, EIGRP, OSPF and BGP in routers.
• Experience in deploying EIGRP/BGP redistribution and the changing the metrics for the primary and backup paths for the packet prioritization and EIGRP tuning
• Experience on a mesh 6500 and 5500 series routes and switches to support the core trading system. Involved
• Experience working with Nexus 7010,7018, 5020, 2148, 2248 devices
• Experience working with High performance data center switch like nexus 7000 series
• Configuring IPSEC VPN on SRX series firewalls
• Provided redundancy in a multi homed Border Gateway Protocol (BGP) network by tunings AS-path.
• Configured IPSec site-to-site VPN connection between Cisco VPN 3000 Concentrator and Cisco 3800

Environment: Juniper firewalls, 6500/3750/3550/3500/2950 switches, Juniper (M320, T640), Load balancing, Cisco 7200/3845/3600/2800 routers, TACACS, EIGRP, RIP, OSPF, BGP, VPN, MPLS, Ether Channels.

Confidential

Network Support Engineer

Responsibilities:

• Installation and Configuration of Cisco Catalyst switches 6500, 3750 & 3550 series and configured routing protocol OSPF, EIGRP, BGP with Access Control lists implemented as per Network Design Document and followed the change process as per IT policy It also includes the configuration of port channel between core switches and server distribution switches
• Involved in the modification and removal (wherever necessary) of BGP from the MPLS routers.
• Involved in designing L2VPN services and VPN-IPSEC authentication & encryption system.
• Tuned BGP internal and external peers with manipulation of attributes such as metric, origin and local P.
• Cisco Secure Access Control Server (ACS) for Windows to authenticate users that connects to a VPN 3000 Concentrator.
• Responsible for turning up BGP peering and customer sessions, as well as debugging BGP routing problems.
• Router/ Microsoft VPN Server in order to access certain limited network resources from customer locations
• Involved in the redistribution into OSPF on the core ASA firewall.
• Experience on HSRP for load balancing.
• Involved in the removal of EIGRP from all devices and making OSPF the primary routing protocol.
• Designing and Implementation of (LAN) VLANs, VTP, Spanning Tree (STP), Trunking (dot1q and ISL) and Ether channel.
• Installed and configured two ASA 5505 in customer locations. In addition to that, two PIX firewall configured for the Guest access
• Key contributions include troubleshooting of complex LAN/WAN infrastructure that include routing protocols EIGRP, OSPF & BGP
• Scripting experience with Pearl.
• Involved in Configuring and implementing of Composite Network models consists of Cisco7600, 7200, 3800 series and ASR 9k outers and Cisco 2950, 3500, 5000, 6500 Series switches.
• Implemented various OSPF scenarios on networks consisting of 7600 routers.
• Configured policy based routing for BGP for complex network systems.

Environment: CISCO routers and switches, Access Control Server, VLAN, Trunk Protocols, CISCO ASA, DHCP, DNS, Spanning tree, Nimsoft.

Confidential

Network Engineer

Responsibilities:

• Provided port binding, port security and router redundancy through HSRP.
• Designed ACLs, VLANs, troubleshooting IP addressing issues and taking back up of the configurations on switches and routers.
• Provided testing for network connectivity before and after install/upgrade
• Switching related tasks included implementing VLANS and configuring ISL trunk on Fast-Ethernet and Gigabit Ethernet channel between switches.
• Configured Cisco Routers for OSPF, IGRP, EIGRP, Static and default route.
• Worked on HSRP for hop redundancy and load balancing.
• Configured the Cisco router as IP Firewall and for NATing Configured RSTP, MST and used VTP with 802.1q trunk encapsulation.
• Experience in Cisco switches and routers: Physical cabling, IP addressing, Wide Area Network configurations.
• Responsible for Internal and external accounts and, managing LAN/WAN and checking for Security
• Settings of the networking devices (Cisco Router, switches) co-coordinating with the system/Network administrator during any major changes and implementation
• Routing protocols OSPF, RIP & BGP
• Implementation of name resolution using WINS & DNS in TCP/IP environment
• Configured FTP server for inside/outside users & vendors

Environment: Cisco 7200/3845/3600/2800 routers, TACACS, EIGRP, RIP, and Vulnerability Assessment tools like Nessus, Red Hat, Solaris, Juniper VPN’s, and SSL.

Confidential

Network Administrator

Responsibilities:

• Worked on Cisco routers 7200, 3700 and Cisco switches 4900, 2900
• Key contributions include troubleshooting of complex LAN/WAN infrastructure that include
• Configured Firewall logging, DMZs & related security policies & monitoring
• Creating Private VLANs & preventing VLAN hopping attacks & mitigating spoofing with snooping & IP source guard
• Installed and configured Cisco PIX 535 series firewall and configured remote access IPSEC VPN on Cisco PIX Firewall
• Enabled STP Enhancements to speed up the network convergence that include Port-fast, Uplink-fast and Backbone-fast
• Configured network access servers and routers for AAA Security (RADIUS/ TACACS+)
• Other responsibilities included documentation and change control
• Responsible for Configuring SITE TO SITE VPN on Cisco Routers between Head Quarters and Branch locations
• Implemented the security architecture for highly complex transport and application architectures addressing well known vulnerabilities and using access control lists that would serve as their primary security on their core & failover firewalls
• Installation & configuration of Cisco VPN concentrator 3060 for VPN tunnel with Cisco VPN hardware & software client and PIX firewall
• Involved in troubleshooting of DNS, DHCP and other IP conflict problems
• Used various scanning and sniffing tools like Wire-shark
• Hands on Experience working with security issue like applying ACL’s, configuring NAT and VPN
• Documenting and Log analyzing the Cisco PIX series firewall
• Configured BGP for CE to PE route advertisement inside the lab environment
• Spearheaded meetings & discussions with team members regarding network optimization and regarding BGP issues.

Environment: Netrep, Solar winds, Windows XP.