SUMMARY

• Network engineer with around 5+ years of experience in routing, switching, firewall technologies, system design, implementation and troubleshooting of complex network systems.
• Worked on Cisco Nexus 9000, 7000, 5000, 2000, Catalyst 4500, 6509, 7613 series switch, 6500, 7200VXR, ASR 1002, 1006 router.
• Hands - on configuration and experience in setting up Cisco routers to perform functions at the Access, Distribution, and Core layers.
• Hands on Experience with Back up, upgrade and restring all OS for future disaster recovery purposes.
• Expertise in configuring of MPLS, IP Multicast, VPN, Frame Relay and Policy routing.
• Widespread work proficiency in advanced TCP/IP Management, IP Addressing &Subnetting VLSM, Route Summarization, Route Redistribution and NAT/PAT.
• Worked on Cisco Nexus 9000, 7000, 5000, 2000, Catalyst 4500, 6509, 7613 series switch, 6500, 7200VXR, ASR 1002, 1006 router, Cisco Meraki switches and routers.
• Experienced with route manipulation by using Offset-list and route filtration by using Access-lists, Distribution list and Route Maps.
• Good understanding and hands on experience configuring AAA-authentication, authorization, accounting, SSH, Syslog, SNMP and NTP.
• Experience in configuration Voice over IP (VOIP).
• Expertise in configuring of MPLS, IP Multicast, VPN and Policy Based routing.
• Hands on Experience of BGP (EBGP, IBGP) and MPLS (LDP) protocols.
• Extensive experience in configuring and troubleshooting of routing protocols EIGRP, OSPF.
• Hands on in deployment of GRE tunneling, SSL, Site-Site IPSEC VPN and DMVPN.
• Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500/PIX security appliance, Failover DMZ zoning & configuring VLANs/routing/NATing with the firewalls as per the design.
• Involved in troubleshooting network traffic and its diagnosis using tools like ping, traceroute, Wireshark and Linux operating system servers.
• Proficient in Configuring Virtual Local Area Networks (VLANS) using Cisco routers and multi-layer Switches and supporting STP, RSTP, PVST, RPVST along with trouble shooting of inter-VLAN routing and VLAN Trunking using 802.1Q.
• Experience with Project documentation tools & implementing and maintaining network monitoring systems and experience with developing network design documentation and presentations using VISIO.
• Excellent Verbal, written communication skills and Interpersonal skills with ability to work with large teams as well as independently with minimum supervision & Team Player.

TECHNICAL SKILLS

Firewall: Cisco ASA 5520,5540,5585

Routing Protocols: OSPF, EIGRP, BGP, ISIS, VRF, PBR, Cisco 2600, 3600, 3800, 7200, 7600, Meraki series MX series, Route Filtering, Redistribution, Summarization, Static Route

Switches: Cisco 2960, 3750, 4500, and 6500 and Nexus 2K/3K/5K/7K series, Meraki MS 250, Meraki MS 225

Network Security: Cisco ASA, ACL, IPSEC, SSL, Ixia Breaking Point, Fortigate Firewalls(30D,60D),ACL, checkpoint, Meraki firewall 2.5 version

Protocols: TCP/IP, IPSEC, IKE, SSL, SSH, UDP, DHCP, DNS.

Juniper Devices: Juniper EX Series 2200, 2300, 3300, 2400, 4200, 4300, 4550, 4600, 8200, 9200 QFX Series 5100, 5200, 10000, ACX Series ACX 500, 1000, 1100, 2100, 2200.

LAN: Ethernet, Fast Ethernet, Gigabit Ethernet

WAN: VPN, IPSEC-VPN, MPLS, ATM, Frame Relay

Redundancy protocol: HSRP, VRRP, GLBP, EBGP

Network Management Tools: Wireshark, Net flow Analyzer, SNMP, HP open view.

Security Server Protocols: TACACS+, RADIUS.

Load Balancers: F5 Networks (BIG-IP) LTM 5050

Operating Systems: Windows Vista, Windows 7/8, Linux

PROFESSIONAL EXPERIENCE

Confidential, Holtsville, NY

Network Administrator

Responsibilities:

• AS part of network migration team, we started to build a two-new cloud enable datacenter.
• Major responsibility is to standup core network, migrate all current services from production and shutdown current datacenter.
• Installation & Upgradation of Checkpoint firewalls R70, R71, R75 in Open Server & appliances
• Migration with both Checkpoint R77 and Cisco ASA to Palo Alto 7.0 using the Palo Alto Migration tool 3.0
• Experience to troubleshoot and standup various service provider WAN Circuits.
• Responsible for enterprise routing, switching, VLANs, Spanning Tree, Trunking, EIGRP and BGP.
• Responsible for route path control via distribution list, ACL's, redistribution, and route-maps withBGP, and EBGP.
• Configure various BGP attributes such as Local Preference, AS prepend, Next-hop, Community, Extended community using route-map
• Configuring and Administration of Intrusion Prevention System (IPS) developing, maintaining and documentation, IPS backup and Intrusion Detection System (IDS) Fortinet & Checkpoint UTM.
• Configured and migratedDMVPN Tunnels from current environment.
• Working with Cisco, Juniper, F5, for opening TAC case and resolving issues to meet project deadlines.
• Hands on experience with manage all migration issues and collaborate with Juniper TAC until issues.
• Provide connectivity ofvarious network appliances like Voice router, voice gateway, ISE, Answerless controller, Riverbed steel head (WAN optimizer), Infoblox
• Experience to provide Network core device connectivity to big switch, Garland Taps, and Big switch monitor for Network traffic monitoring.
• Configured Site Redundancy using EIGRP, IP SLA, and HSRP.
• Deployed network tools such as Cisco firepower, Fire eye, Cisco Fire Sightmanager, Source Fire, Cisco Prime.
• Knowledge of Fiber, Ethernet Infrastructures using Fluke Network Testers
• Setup network monitoring and alerts for our network and server devices using SNMP, configure authentication using TACAS+ authentication andNTP setup.
• Switching related tasks included configuring VTP, Inter-VLAN Routing, EtherChannel (LACP & PAgP) and RPVST+ for loop avoidance.
• Extensive knowledge working with Service Now ticketing system for incident and change management

Network Engineer

Responsibilities:

• Responsible for service request tickets generated by the helpdesk in all phases such as troubleshooting, maintenance, configuration, upgrades, patches and fixes with all around technical support in complete LAN development
• Good knowledge in configuring and troubleshooting Exterior Gateway protocols such as BGPv4 including internal BGP (IBGP) and external BGP (EBGP).
• Worked on Route-Reflectors to troubleshoot BGP issues related to customer route prefixes also route filtering using Route-maps.
• Managing Firewall products - Checkpoint Appliance 2200 Gateways, Provider-1 and VSX environment. (R77.10 and 77.20) and ASA environments.
• Hands-on experience with network switches from Juniper EX 4550, and Cisco 7609, Cisco ASR 9K.
• Hands-on experience with firewalls Juniper vSRX, SRX 240, 550, Fortinet.
• Configured EBGP for CE to PE route advertisement inside the office environment
• Switching related tasks included configuring VTP, Inter-VLAN Routing, EtherChannel (LACP & PAgP) and RPVST+ for loop avoidance.
• Implemented redundancy / Failover using HSRP
• Designed and implemented DMZ for Web servers, Mail servers & FTP Servers using Cisco ASA5500 Firewalls.
• Configuring Static EIGRP, and OSPF Routing Protocols on Cisco 2600, 2800, 3600, 3800, 7300 series Routers
• Experience working with Nexus 9504, 7010, 5548, 5596, 2148, 2248 devices.
• Experience with configuring FCOE using Cisco nexus 5548
• Experience configuring VPC, VDC and ISSU software upgrade in Nexus 9504
• Worked with Cisco Nexus 2148 Fabric Extender and Nexus 9300 series to provide a Flexible Access Solution for datacenter access architecture.
• Configuring the Voice VLAN's (VOIP) and Prioritizing the voice traffic over the data traffic
• Performing network monitoring, providing analysis using various tools like Wireshark, Solar winds etc.
• Configuring F5 Load balancer LTMs and GTMs to isolate traffic from the web servers.
• Managed the F5 BIG-IP GTM/LTM appliances to include writing iRules, SSL offload and everyday task of creating WIP and VIPs.
• Responsible for managing activities, Upgrading IOS - Upgrading hardware and installing new devices including standardization for the topology.
• Mapped, Network Diagrams and physical identification in MS Visio.
• Be on call rotation and provide 24X7 support in that time and handle Office's branches during this timeframe if a network problem occurs.
• Worked with multiple customers over a period to enhance their network, resolve and do the RCA (root cause analysis) for in service production problems and create work around for known IOS issues.
• Performed load balancing and application level redundancy by deploying F5 BIG-IP LTM 6900.
• Configuring VLANs and implementing Inter VLAN routing.
• Hands-on experience with WAN (ATM/Frame Relay), Routers, Switches, TCP/IP, Routing Protocols (BGP/OSPF), and IP addressing.
• Layer 2 switching technology architecture, implementation and operations including L2 and L3 switching and related functionality.
• This includes the use of VLANS, STP, VTP and their functions as they relate to networking infrastructure requirements including internal and external treatment, configuration and security.
• Responsible for service request tickets generated by the helpdesk in all phases such as troubleshooting, maintenance, upgrades, patches and fixes with all around technical support
• Supporting EIGRP and BGP based PwC network by resolving level 2 &3 problems of internal teams
• Documentation of Managed customer database such as IP addresses, passwords, interfaces, network diagram.
• Responsible for network availability, network redundancy, bandwidth planning, routing issues.

Confidential

Network Engineer

Responsibilities:

• A core member of networking team and provided end client system support.
• Key contributions include troubleshooting of complex LAN/WAN infrastructure that include routing protocols EIGRP, OSPF and BGP.
• Troubleshot complex routing and switching issues in a HSRP and GLBP environment.
• VLAN design and Implementation for new network requirements, including VLAN bridging and multi-port Trunks.
• Responsible for maintenance and utilization of VLANs, Spanning-tree, HSRP, VTP of the switched multilayer backbone with catalyst switches.
• Involved in configuring and troubleshooting Cisco/juniper firewalls.
• Identify and remove security policies that are not needed to reduce checkpoint firewall policy lookup.
• Back up, Restore and upgrade of Checkpoint firewall appliance
• Configure and troubleshooting HA Cluster on Checkpoint Firewall.
• Implemented redundant Load balancing technique with Internet applications for switches and routers.
• Support Network Technicians as they require training & support for problem resolution including performing diagnostics, & configuring network devices.
• Configured and troubleshoot OSPF and EIGRP.
• Configured VLANS using VTP protocol and implemented redundancy using STP protocol in switched Network.
• Implementation of Policies & Rules on Checkpoint firewall
• Configured Access List (Standard, Extended, and Named) to allow users all over the company to access different applications and blocking others.
• Used Network Monitoring tool to manage, monitor and troubleshoot the network.
• Back up a Cisco IOS to a TFTP server and Upgraded and restored a Cisco IOS from TFTP server.
• Was responsible in IOS upgrade of CISCO switches and routers which are owned by our team.
• Configured Cisco IOS Feature Set, NAT and Simple Network Management Protocol (SNMP) for Network Security implementation.
• Received inbound calls of technical nature, independently resolved customer complaints, concerns and inquiries regarding their Internet connection.