SUMMARY

• More than 7 years of experience in Networking, including hands - on experience in IP network design providing network support, installation and analysis.
• Expert level knowledge of troubleshooting, implementing, optimizing and testing of static and dynamic routing protocols such as EIGRP, OSPF, BGP ability to interpret and resolve complex route table problems.
• Worked on Cisco7200, 3800, 3600, 2800, 2600, 1800 series Router,Cisco 2900, 3500,4500, 5500, 6500 series switch.
• In-depth expertise in the analysis, implementation, troubleshooting & documentation of LAN/WAN architecture and good experience on IP services.
• Hands-on experience with Ether Channel,Trunking, ACLs.
• Experience of implementing and troubleshooting complex layer 2 technologies such as VLAN Trunks, VTP Ether channel.
• Configuring Cisco routers and switches to enable and troubleshoot a variety of features such as trunk, VLAN, Ether channel, port security, routing protocols including EIGRP, OSPF and BGP and other related technologies such as multicasting.
• Experience of routing protocols like EIGRP, RIP, OSPF and BGP.
• Configuring and testing Multicast for both IPv4 and IPv6 routing in Data Center Environment.
• Extensive hand on experience with complex routed LAN networks, Cisco Routers and Switches.
• Experience in onsite support maintaining LAN infrastructure (CAT5/fiber) and MPLS WAN (BGP/OSFP) network services in a Cisco environment. Monitor and troubleshoot Cisco WAAS
• Experience of Network penetration testing tools.
• Checkpoint Level3 operations support with hardware operations - fixed all problems and RMA’s, taking any escalations that dealt with the equipment and its connection: interfaces,VLAN’s, routes, etc.
• Involved in Configuration of Access lists (ACL) on checkpoint firewall for the proper network routing for the B2Bnetwork connectivity
• Experience with convert Checkpoint VPN rules over to the Cisco ASA solution. Migration with both Checkpoint and Cisco ASA VPN experience
• Working on ASR routers like 1k, 9K series as a core and configured HSRP for active-active redundancy.
• Expertise in configuration of Cisco Catalyst Switches of 1900/2900/3550/3750/6500 , Cisco Routers of 1800/2500/2600/2800/3600/3800/7200/7600 , Load balancer F5.
• Configuring and troubleshooting Bluecoat SG9000 WAN acceleration appliances including WCCP, CIFSand creating/updating overlays.
• Utilized the following Network monitor tools: BMC Remedy Ticket System, Action Desktop, Action RT Alarm, and Action Turn over 2.0, Smart Chat, Global Service, HP Open View, Assurance, CNOC Scheduled Network and Systems Activities.
• Replaced old 6500 and WAN routers from DR testing site and Installed Nexus 7K and ASR 1006 routers.
• Extensive experience taking copy of Cisco IOS on TFTP server and loading on back on routers and knowledge on HP openview software
• Experience working with JUNOS OS on JuniperRouters and Switches.
• Working knowledge of frame relay, MPLS services, IPSecVPN's, OSPF, BGP and EIGRP routing protocols, NAT’ing, sub-netting, also including DNS, WINS, LDAP, DHCP, HTTP, HTML, HTTPS, TCP/IP, UDP, SNMP, OSPF, RIP, IPSEC, PPTP, VLAN and Multicasting protocols.
• Configuring firewall filters, routing instances, policy options, on Juniper m320 and T640.
• Experience in the setup of Access-lists, RIP, EIGRP and tunnel installations.
• Proficiency in configuration of VLAN setup on various Cisco Routers and Switches.
• Excellent qualities such as Teamwork, Negotiation, Analysis and Communication.
• Hands-on configuration and experience in setting up Cisco routers to perform functions at the Access, Distribution, and Core layers.
• In-depth knowledge and hands-on experience in IP Subnetting, VLSM, TCP/IP, NAT, DHCP, DNS,Firewalls.
• Experienced in trouble-shooting both connectivity issues and hardware problems on Cisco based networks.
• Enhanced level of experience with OSPF, BGPand TCP/IP.
• Excellent leadership with good written and oral communication.
• Great team player and able to work under pressure 24x7 duty rotation.

TECHNICAL SKILLS

Routers: (1800, 2500, 2600, 2800, 3600, 3750, 3800, 7200).

Cisco Switches: 2900, 3500, 4000, 4500, 5000, 5800, 6500, 7600 Nexus 2k, 3k, 5k and 7k.

Juniper: E series, J series and M series. Juniper SRX & VPN,T -Series, MX-Series Routers.

Routing Protocol: (BGP, OSPF, EIGRP, IGRP, IGMP, RIP), Routed Protocol TCP/IP, SIP, Multicasting(PIM).

LAN Protocol: VLAN,PVLAN,VTP,IPX, Inter-VLAN routing, ISL,dot1q,STP,IS-IS,HSRP, Ethernet, Port security.

WAN Technology: Frame Relay, WAAS, PPP, E1/T1/DS1/DS3

Network Management: SNMP v2, v3, HP Open View NNM, Netflow Analyzer, Sniffer, Wireshark, Cisco Works, SolarWinds, Orion.

AAA Architecture: RADIUS, Cisco ACS.

Operating systems: Linux, Unix, DOS, WindowsXp/2007,Windows 2003 server and Windows 2008 server

Network Security: Knowledge of Firewall, ASA, Cisco FWSM/PIX/ASDM, Cisco NAC, IPSec

Application Protocols: DHCP, DNS, FTP, HTTP,SMTP, TFTP.

Documentation: Microsoft Office, Visio.

PROFESSIONAL EXPERIENCE

Confidential, Franklin lakes, NJ

Network Engineer

Responsibilities:

• Installed, configured and administered Cisco ASA firewall sand other Cisco technologies
• Worked on Palo Alto Firewall.
• Working and troubleshooting in inter-vendor Palo Alto environments
• Worked on wide range of network technologies in a variety of environments such as LAN, Data Center, WAN, Enterprise voice using IPT & VoIP technologies, Unified Communications, Transport services, security components, security policies, and Mobility.
• Experience with devices Palo Alto Network firewalls such as security NAT, Threat prevention & URL filtering.
• Configuring and troubleshooting Bluecoat SG9000 WAN acceleration appliances including WCCP, CIFS and creating/updating overlays.
• Strong hands on experience on ASA (5510/5580) Firewalls.
• Troubleshoot and Worked with Security issues related to Cisco ASA/PIX, Checkpoint, IDS/IPS and Juniper Netscreen firewalls.
• Bluecoat WAN acceleration appliance hardware/software troubleshooting and configuration

Environment: Cisco ASA firewall, Palo Alto Firewall, IPT, VoIP technologies, Unified Communications, Transport services, security components, security policies, Mobility, Bluecoat SG9000 WAN acceleration appliances,Cisco ASA/PIX, Checkpoint, IDS/IPS and Juniper Netscreen firewalls.

Confidential, Houston, TX

Network Engineer

Responsibilities:

• Work on different networking concepts and routing protocols like BGP, EIGRP, OSPF, Tunnels, L2TP, and VPLSand other LAN/WAN technologies.
• Designing advanced networking solutions including Quality of Service (QoS), Virtual Routing and Forwarding (VRF) and Route redistribution.
• Checkpoint Level3 operations support with hardware operations - fixed all problems & RMA’s, taking any escalations that dealt with the equipment and its connection: interfaces,VLAN’s, routes, etc.
• User admin on the firewalls, adding and deleting users as they come and go.
• Provided proactive threat defense with ASA that stops attacks before they spread through the network.
• Configuring and install hardware and software required to conduct network penetration testing.
• Enabled to create a Positive Enforcement Model control between two networks that have different trust levels.
• Configuring and testing Multicast for both IPv4 and IPv6 routing in Data Center Environment.
• Configuring and troubleshooting IP Multicasting (PIM & DVMRP) & MBGP.
• Implemented standard configuration template scripts in various network devices for SNMP v2, logging, NTP.
• Configuring VLAN’s Trunking and routing part for Cisco Catalyst 6500, 4500, 3750, 2980 switches.
• Assist in the migration from Cisco 6500 equipment to Cisco Nexus 7000 equipment and stacked Catalyst 3850 switches.
• Creating Private VLANs& preventing VLAN hopping attacks & mitigating spoofing with snooping & IP source guard.
• Cisco IOS and Cisco CatOS configuration and backups, Uploading and download IOS andCatOSusing XModem, TFTP and FTP protocols
• Upgrading WAN link using PPP Multilink and by implementing Cisco WAAS.
• Maintaining complex LAN/WAN networks with several VLANS and provided support for routing protocols and also providing secure sessions over internet using IPSec and SSL encryption.
• Configuring and resolving various OSPF multi-area environments, used OSPF as IGP with route filtering and route-redistribution, implemented Stubs/Totally stub areas, implemented features like route summarization and SPF throttling.
• Configuring and maintain access points through CISCO 4400 WLAN controller.
• Implementation of name resolution using WINS & DNS in TCP/IP environment
• Consistent network design deployed across all nodes throughout county consisting of core Cisco 7600 routers, distribution layer Catalyst 6500 switches, WAN aggregation Cisco 7600 routers, and access layer Catalyst 2900/3500/3750/3850 switches.
• Network analysis and capacity planning experience using tools like Sniffer, Ethereal, and Tcpdump.
• Configuring firewall filters, routing instances, policy options, on Juniper m320 and T640.
• Convert Branch WAN links from TDM circuits to MPLS and to convert encryption from IPSec/GRE to GetVPN.
• Dealing with the escalation problems for Routing, Switching and WAN connectivity issues using ticketing system remedy.
• Working on ASR routers like 1k, 9K series as a core and configured HSRP for active-active redundancy.
• Working on deployment/configuration of LWAPs, WLC, WDS and 802.11 wireless devices
• Implement changes on switches, routers, load balancers (F5 and CSS), wireless devices per engineers instructions and troubleshooting any related issues.
• Created standSard access lists to allow SNMP, NTP and logging servers.
• Replaced 6500 from access layer and Installed 3750s Switches.
• Racking and Stacking of Cisco 3750 Switches.
• Configuring Security Policies including NAT, PAT, AAA, ACL’s Standard Access Lists, Distribute-Lists, Route-Maps, VPNConcentrators.
• PS/IDS, (PIX, ASA) firewalls.
• Experience with convert Checkpoint VPN rules over to the Cisco ASA solution. Migration with Cisco ASA VPN experience.
• Experience working Juniper T-Series, M-Series, MX-Series, J-Series and SRX-Series Routers.
• Configuring Voice VLAN’s(VOIP) and Prioritizing the voice traffic over the data traffic
• Configuring, Monitoring and Troubleshooting Cisco'sASA 5500/PIX security appliance, Failover DMZ zoning & configuring VLANs/routing/NATing with the firewalls as per the design.
• Configuring firewall filters, routing instances, policy options, on Juniper m320 and T640
• Co-ordinate with the Data Network and Security team and come up with possible solutions.
• Provide solutions to Tier 1 escalated issues and tickets.
• Performing OSPF, BGP, DHCP Profile, HSRP, IPV6, BundleEthernet implementation on ASR 9K redundant pair
• Efficient in lending support to DSL, DUN, ISP devices for all customers.
• Designing VLAN’s, access lists (ACL), troubleshooting IP addressing issues and Updating IOS images and other hardware installations
• Working on Aruba Wireless LAN Implementation for 11n Infrastructure across the Corporate Network.
• In-depth knowledge and hands-on experience on IP Addressing, Subnetting, VLSM and ARP, reverse & proxy ARP, Ping Concepts.
• Planning and implementation of OSPF protocol and internet IBGP and EBGP peering relationship with other ISP.
• Implementing Cisco Wireless access points using LEAP and Cisco Radius for authentication, greatly increasing Wireless security.
• Experience in creating MOPS (Method of procedures) and get approved from peers for performing configuration changes.
• Responsible for managing the TFTP logs for the VPN and firewall services and troubleshoot the VPN tunnel issues like SA, RSA, ISAKMP encryption and cleared/refresh VPN tunnel issues
• Experience configuring Virtual Device Context in Nexus7010.
• IOS upgrade and router hardening for 2600, 3600, 7200 routers and 6500, 2900, and 3500 series of switches.
• Designing L2VPN services and encryption system and other VPN with IPSEC based services
• Experience in working with Cisco Nexus Switches and Virtual Port Channel configuration.
• Working on Physical site Inventory verification, gather information of various Cisco Network devices and Security Devices to develop Run book and Spec Book.
• Replacing old 6500 and WAN routers from DR testing site and Installing Nexus 7K and ASR 1002, 1006 routers.
• Upgrading IOS on various Cisco Routers and Switches.
• Identify additional Network operations requirement and improvement opportunity.

Environment: Routing protocols BGP, EIGRP, OSPF, Tunnels, L2TP, VPLS, Quality of Service (QoS), Virtual Routing and Forwarding (VRF), Route redistribution, Network penetration testing, Multicast for both IPv4 and IPv6 routing, IP Multicasting (PIM & DVMRP) & MBGP, Cisco Catalyst 6500, 4500, 3750, 2980 switches, Cisco IOS and Cisco CatOS, PPP Multilinkby implementing Cisco WAAS, IPSec and SSL encryption, OSPF multi-area environments, CISCO 4400 WLAN,WINS and DNS, Cisco 7600 routersCatalyst 6500 switches, Catalyst 2900/3500/3750/3850 switches, Juniper m320 and T640, TDM circuits to MPLS and to convert encryption from IPSec/GRE to GetVPN, ASR routers like 1k, 9K series, LWAPs, WLC, WDS and 802.11 wireless devices, load balancers (F5 and CSS), Cisco 3750 Switches, PS/IDS, (PIX, ASA) firewalls, Juniper T-Series, M-Series, MX-Series, J-Series and SRX-Series Routers, ASA 5500/PIX security appliance, OSPF, BGP, DHCP Profile, HSRP, IPV6, BundleEthernet implementation on ASR 9K, IP Addressing, Sub netting, VLSM and ARP, reverse & proxy ARP, Ping Concepts, LEAP and Cisco Radius for authentication, MOPS, VPN tunnel issues, Nexus7010, 2600, 3600, 7200 routers and 6500, 2900, and 3500 series of switches, L2VPN services, Cisco Nexus Switches,Virtual Port Channel configuration, Nexus 7K and ASR 1002, 1006 routers.

Confidential, Herndon, VA

Network Engineer

Responsibilities:

• Sub-contracted to AT&T, providing ISP services to the Administrative Offices of the US Courts
• Provided technical services, analyzed, and troubleshot IP-driven networks, systems and applications.
• Supported Wide Area Network consisting of 3000 nationwide Cisco routers and switches through remote troubleshooting.
• Monitored network for outages and logs network performance
• Implemented network hardware/software configuration settings
• Utilized the following network monitor tools: BMC Remedy Ticket System, Action Desktop, Action RT Alarm, and Action Turn over 2.0, Smart Chat, Global Service, HP Open View, Assurance, CNOC Scheduled Network and Systems Activities.

Environment: ISP services, Network monitor tools: BMC Remedy Ticket System, Action Desktop, Action RT Alarm, and Action Turn over 2.0, Smart Chat, Global Service, HP Open View, Assurance, CNOC Scheduled Network and Systems Activities.

Confidential, Bethesda, MD

Network Engineer

Responsibilities:

• Troubleshot, operated and maintained over 3000 properties of the Confidential International and Domestic Global Network.
• Configured and modified access control list for security purpose, Cisco ASA 5505 Firewall. Troubleshot various circuits such as T1, T3, Frame Relays, and Virtual Private Network.
• Diagnosed, troubleshot, and resolved various WAN issues with ISP to include AT&T, Telco, Verizon, and IBAHN.
• Maintained, managed, troubleshoot Windows Server 2003 and Windows Server 2008 Active Directory.
• Installed, Configured and troubleshot various protocols such as TCP/IP, BGP, EIGRP, RIP, OSPF, and SNMP.
• Utilized the following network monitor tools like HP Open View, Solar Winds, Cisco Works Orion, Tivoli.
• Utilized Packet Capture for network troubleshooting and analysis
• Utilized Remedy to create, maintain, update, and close tickets

Environment: Cisco ASA 5505 Firewall, Circuits T1, T3, Frame Relays, Virtual Private Network, Windows Server 2003 and 2008, TCP/IP, BGP, EIGRP, RIP, OSPF, SNMP, Network monitor tools likeHP Open View, Solar Winds, Cisco Works Orion, Tivoli.

Confidential, Carlstadt, NJ

Network Engineer

Responsibilities:

• Designed and implemented remote dial up solution for clients
• Installed and configured workstations for IP based LAN’s
• Installed and configured DHCP Client/Server.
• Implementation Route redundancy protocols like HSRP,VRRP,GLBP.
• Configured and managed networks using L3 protocol like RIPv2,
• Configured VLANs, Private VLANs, VTP and Trunkingon switches.
• Configured L2 and L3 security features on devices.
• Experience with convert Checkpoint VPN rules over to the Cisco ASA solution. Migration with both Checkpoint and Cisco ASA VPN experience.
• Converted CatOS to Cisco IOS Config Conversion on distribution layer switches
• Recommended Security considerations for the Intranet data center, integrating security, providing solution design details and configuration details
• Worked extensively on Cisco Firewalls, Cisco PIX (506E/515E/525/) &ASA 5500(5510/5540) Series.
• Configuration of Access List ACL (Std, Ext, Named) to allow users all over the company to access different applications and blocking others.
• Designed and implemented support of Cisco WAAS.
• Monitored ticket system for any incident ticket, responded and worked on resolving the ticket within SLA metrics
• Convert Branch WAN links from TDM circuits to MPLS and to convert encryption from IPSec/GRE to GetVPN.
• Experience with design and implementation of Virtual Switching System (VSS) on 6500 Switches.
• Installed Wireless Access Points WAPs at various locations in the company.
• Involved in troubleshooting of DNS, DHCP and other IP conflict problems. Implementation of name resolution using WINS & DNS in TCP/IP environment
• Designed a redundant LAN architecture with multiple VLANS in preparation for VoIP installation.
• Manage a very large DNS environment using manual management of DNS for DMZ/External servers.
• Extensive experience taking copy of Cisco IOS on TFTP server and loading on back on routers
• Broad Hands on Experience in Inter-VLAN routing, redistribution, access-lists and dynamic NAT.
• Efficient in cabling as per co-location contracts with loop-back testing, including all DS1, DS3, T1, T3,CAT 6 and CAT 5 connections as per defined cabling procedures

Environment: DHCP Client/Server, HSRP,VRRP, GLBP, RIPv2, VLANs, Private VLANs, VTP and Trunking, L2 and L3 security, CatOS to Cisco IOSConfig Conversion, Cisco Firewalls, CiscoPIX (506E/515E/525/), ASA 5500(5510/5540) Series, Access List ACL, Cisco WAAS, Virtual Switching System (VSS) on 6500 Switches, Wireless Access Points WAP, DNS, DHCP, WINS and DNS in TCP/IP, VoIP installation, DMZ/External servers, TFTP server, Inter-VLAN routing, redistribution, access-lists and dynamic NAT, DS1, DS3, T1, T3,CAT 6 and CAT 5 connections.

Confidential

Network Field Engineer

Responsibilities:

• Configured network equipments (routers, firewalls, & switches) and installed network cable drops; terminated straight-through and crossover Ethernet connections and installation of fiber optics.
• Completed 10 independent, remote deployments of network hardware to client sites nationwide.
• Troubleshoot remedy tickets to resolve network issues and maintain Clients operational capability.
• Created and updated network designs (LAN and WAN) and rack elevations using Microsoft Visio.
• Conducted site surveys to determine and document requirements for security requirements, wiring, network, and specialized equipment.
• Conducted offsite training for specialized VMware systems for end users and site administrators.

Environment: Network equipments, remote deployments, Microsoft Visio, VMware systems.

Confidential

Network Administrator / Service Acquisitions Specialist

Responsibilities:

• Negotiated contracts for goods and services along with pricing and service level agreements (SLA).
• Procured network services and rack space to support customer requirements.
• Procured Internet lines (T1, Metro Ethernet, Fast Ethernet) and IP subnet blocks.
• Configured routers, switches, and firewalls for deployments.
• Conducted site surveys to determine and document network requirements.
• Assisted help desk resolution of trouble tickets.
• Updated Microsoft Access database to maintain records of network information (rack spaces, IP blocks, POCs, etc.).
• Updated network diagrams using Microsoft Visio.
• Briefed non - technical customers on project progress and milestones.

Environment: Service level agreements (SLA), network services and rack space, Internet lines, Microsoft Access database, network diagrams.