PROFESSIONAL SUMMARY

• CCNA CCNP CERTIFIED professional with over around 8 years of experience in routing, switching, firewall technologies, systems design, administration and troubleshooting.
• F5- CA Certification Which is BIG-IP Local Traffic Manager (LTM) Specialist Certificate.
• Exposure to LAN/WAN setup, installation, configuration and troubleshooting.
• Experience of routing protocols like EIGRP, OSPF, RIP, BGP and IP addressing.
• Experience in testing Cisco & Juniper routers cum switches in laboratory scenarios and deploy on site for production
• Configured syslog-ng for Splunk implementation, Familiar with monitoring tools such as Nagios, Splunk
• Strong experience in Network security using ASA Firewall, Checkpoint, Palo Alto, Cisco IDS/IPS and IPSEC/SSL VPN and implementing security rules
• Knowledge and experience on F5 load balancers and Cisco load balancers ( CSS and ACE ) strategies/techniques
• Excellent hands on Cisco ASA and checkpoint firewall to use multiple security levels and interfaces
• In Depth knowledge of all DNS RFC specifications
• Experience in working with Cisco Catalyst series 2900, 3560, 3750, 4500, 4900, 6500
• Experienced in Troubleshooting for connectivity and hardware problems on Cisco Networks
• Hands on experience in configuring Cisco Nexus2232, 2248, 5548, 6001 and 7018(Sup 2E) and worked on nexus protocols VPC, VRF, VDC and FEX Links.
• IOS/JUNOS upgrade for Cisco & Juniper routers and switches
• Hands on experience in cisco call manager and VoIP.
•   Install Avaya VoIP phones, Polycom and Cisco Codecs.
• VMware ESX/ESXi, VMware vCenter, VMware vCSA and Windows 2008 R2 Hyper-V.
• Implementing, maintaining and troubleshooting switching tasks such as VLANs, VTP, VLAN Trunking using ISL & 802.1Q, STP, RSTP, PVST+, Ether channel using LACP and PAGP, Inter-Vlan routing, CEF and DCEF
• Experience in L2/L3 protocols like VLAN, STP, VTP, ISL, MPLS, 802.1q and Trunking protocols.
• Good knowledge in WAN Technologies like ACL, NAT/ PAT, Ether Channel, IPSec and VPNs.
• Enhanced level of knowledge with, PPP, ATM, T1 /T3 Frame-Relay, MPLS
• Expertise in implementation and troubleshooting of protocols such HSRP, VRRP, GLBP, ACL and tunnel installations.
• Prepared, arranged and tested Splunk core search strings and operational strings
•  Worked with Cisco, Palo Alto, Juniper, Splunk, Force point, Nessus, Stealth watch, Checkpoint, Zscaler and other vendors to provide a stable, high-speed, secure network
• Experience in working with Cisco 2800, 3600, 3800, 3900, 7200 7600 series Routers
• Extensive knowledge in different networking protocols DHCP, DNS, FTP, VOIP (SIP, H.323, MGCP)
• Extensive experience with Cisco IOS, IOS-XR, Nex-OS Windows client/server operating systems, Linux, Networking technologies, Firewalls.
• Troubleshooting & implementation of Vlan, STP, MSTP, RSTP, PVST, 802.1Q, DTP, HSRP, VRRP, GLBP, LACP, PAGP, AAA, TACACS, RADIUS, MD5, VTP & SVI.
• Knowledge on complex Checkpoint, Cisco ASA & Palo Alto Firewalls Environment.
• Experience working with Cisco IOS-XR on the ASR9000 devices for MPLS deployments
• IOS/JUNOS upgrade for Cisco & Juniper routers cum switches.
• Experience working with Nexus 7K, 5K and 2K.
• Install core components of the7.6   XenApp   environment.
• Experience with virtualized ISE deployment across two network enclaves s
• Hands on Knowledge/experience on F5 load balancers, its methods, implementation and troubleshooting on LTMs.
• Experience in design, implementation, and support of F5’s Big-IP Access Policy Manager (APM ) software component in a complex enterprise environment
• Knowledge on F5’s BIG-IP Application security management and Edge Gateway Solution
• Worked extensively on Palo Alto, Juniper Net screen, Fortinet and SRX Firewalls.
• Experience with design and deployment of MPLS Layer 3 VPN, MPLS Traffic Engineering, MPLS QOS, and ITIL.
• Hand-on experience in developing scripts using Perl scripting language.
• Demonstrated success record in managing multiple tasks with proven ability to meet deadlines and proactively identifying the problem to solve complex technical issues.
• In-depth knowledge of network communication technologies and techniques.
• Experience on SONET and deployment of DWDM

TECHNICAL SKILLS

Network Protocols: MPLS, VRF, VRRP, Policy Based Routing, Route Redistribution,Static Routing, WCCP, VDC, MPLS, LDP, MAN, ISDN, PPP, VoIP, SIP, VTP, STP, RSTP, VLANs, 802.1q/ISL, CDP, LACP, OSPF, BGPv4, EIGRP, HSRP, RIP, VPC

Cisco Router platforms: 1841, 2611, 2621, 2800, 3600, 3845, 3900, 7206VXR, 7300

Cisco Switch Platforms: 2900XL, 2950, 2960, 3500, 3550, 3560, 3760, 4500, 6500,

Nexus 9k 7k, 5k, 2k : Firewalls

Juniper SRX 3400,3600, ASA 5500 series, 5500-X firepower : FWSM, IX(515,525,535), Checkpoint NGX R-70, Palo alto- 800,2K,3K

LAN Technologies: Ethernet, Port Channel, TCP/IP, Ether channels, VLSM, Cisco/ L2/L3 Switching, Wireless

WAN Equipment: Edge Routers, Silver Peak NX-7xxx WAN Accelerators,OC-192, OC-48, frame relay, PPP, T1/E1, HDLC, MPLS, DS3, Leased Lines, VPLS

Network Management Tools: Silver peak GMS, RSA Security and operationsConsole, VMware vSphere, TFTP, FTP, SSH, IXIA, Spirent, Cisco Prime

Security Access Control/Policy: Cisco Secure ACS, Cisco ISE, RSA, AAA, TACACS+, Radius, MD5, IPsec, GRE, NAT/PAT, ACLs, Juniper SA SSLVPN w/DUO, SSLVPN

Operating Systems : Linux, Unix, Windows server 2012 r2, MAC OS

Network Operating Systems: Cisco IOS, NX-OS, CAT-OS, Aruba , JUNOS, PAN -OS

Documentation Tools: Microsoft Office, Visio, Project, SharePoint.

Load Balancing: F5- BIGIP LTM, Citrix, Cisco ACE 4700 Series

IP Telephony: H.323, MGCP, SCC Cisco SRST, Avaya, SIP, PBX server

EXPERIENCE:

Confidential,Jackson, MI

Sr. Network Engineer

Key Responsibilities:

• Worked as a part of network team where my daily tasks included configuring, monitoring and troubleshooting of TCP/ IP networks .
• Worked on installation, configuration of LAN/WAN Networks, Hardware, Software, and Telecommunication services: Cisco Routers and Switches
• Managed Cisco call manager, Cisco Voice Mail Unity servers. Implemented BGP, OSPF on Cisco Routers and managed VLANS, STP on cisco switches.
• Palo Alto design and installation (Application and URL filtering, Threat Prevention, Data Filtering). Configured and maintained IPSEC and SSL VPN's, Troubleshoot IAP (Internet Access Points) on Palo Alto Firewalls.
• Successfully installed Palo Alto PA-3060 firewalls to protect Data Center and provided L3 support for routers/switches/firewalls.
• Managed AD Domain Controller, DNS and DHCP Servers and configurations 
• Responsible for the IPAM (IP Address management) system for a very large WAN/LAN network (QIP).
• Expertise in configuring and troubleshooting of Palo Alto, SRX Firewalls and their implementation Experience in site-to-site and remote access VPN solutions.
• Experience in Cisco Unified Communication Manager (CUCM), Call Manager Express (CME), Cisco Unity Connection (CUC), Unified Contact Center Express (UCCX), Unified Contact Center Enterprise (UCCE), IM and Presence, SRST and Voice Gateways.
• Worked thru Aruba and Cisco WLAN and Controller config files to help Admin with WLAN troubleshooting
• Design and sessions, installing ICM / UCCE, developing call flows, compose technical documentation & mentoring other team members.
• Worked with Cisco UCCE, IPIVR, Cisco Unified Communication System
• Designing, configuring, and troubleshooting QoS, SIP, H.323, RTP, SCCP, Session Border Controllers, Voice Gateways, Voice circuits IP /TDM, Cisco Telepresence Infrastructure, QoS, NAT, PAT, and multicast.
• Configured (L2 & L3) multi-vendor Routers, Ethernet switches and Load balancers (F5, A10 etc.) to meet application requirements and Project demands.
• Implemented Firewall rules and Nat rules by generating precise methods of procedure (MOPs)
• Implemented F5 load balancers and reverse proxy design and setup and Configured Virtual server, service groups, Session persistence, Health monitors and Load balancing methods in new F5 and A10 LTMs.
• Configured and implemented  voice  gateways  (H323/MGCP/SIP), SRST for remote sites
• Developed MTS software plug-in for Multimedia over Coax Alliance (MoCA) configuration capability on DOCSIS cable modem and gateway products.
• Configured WIDE IP and WIDE IP pool on F5 GTM’s to support load balancing between data centers.
• Worked on configuring the Nexus 5k Aggregation Switch and Nexus 2k Fabric Extenders.
• Installed and Configured new Cisco equipment including Cisco catalyst switches 6500, Nexus 7k, Nexus 5548 and Nexus 2K
• Supported Operations team when complex changes are done by developing MOPs for network devices (routers, switches and A10 Load balancers) code upgrades, VLAN/IP migrations from old to new network topology without any service disruption.
• Regular upgrade and maintenance of Infrastructure, Installing, configuring, and maintaining Cisco Switches (2900, 3500, 7000, 3800 series, 6500 series) Cisco Routers (4000, 3900, 3800, 2800,) Cisco Router and Switches, Juniper Routers and Firewalls, Nexus 7k,5k & 2k, f5 BIG IP, Palo Alto Firewalls, Riverbed Steelhead appliances
• Added and modified servers and infrastructure to the existing DMZ environments based on the requirements of various application platforms
• Assisted in creating network design standards for hardware and software. Developing and maintain Network Documentation (Visio diagrams, Excel spreadsheets, Word documents, etc.) Configure and troubleshoot network elements in a test/dev environment.
• Worked on Inflobox to update the DNS host, Configuring NAT onto the Juniper SRX firewalls and a record to assist the part of the load balancer migration from F5 to A10. .
• Designed, built, and deployed F5 Big IP LTM ADC (8900’s, 6400).
• Provided Tier III Load Balancer expertise on F5 Big IP LTM. Designing F5solutions/support for migration work of applications and websites from Cisco CSS Load Balancers to the F5 BigIP Load Balancers.
• Worked on large scale implementation and maintenance for SSH (Secure Shell), PKI/SSH, VPN, IPSEC Satan, ISS, TCP/IP Monitoring.
• Migration and implementation of Palo Alto Next-Generation Firewall seriesPA-500, PA-3060, PA-5060, PA-7050, PA-7080.
• Assigning RADIUS for new deployments in production environment. AAA for users to implement changes on production devices. Most of these devices are cisco propriety.

Environment: Cisco Routers (4000, 3900, 3800, 2800), switches (7000/6500/3800/3550 3500/2900 ), Nexus 7K,5K &2K, F5 Load balancing (LTM, APM, AFM, ASM), EIGRP , OSPF, Voice   Gateways , BGP , VPN, MPLS, Ether Channels, Cisco Catalyst Switches, Firewalls (Palo Alto), Cisco Voice (CCM, UCCE), Shell Scripting, Avaya Aura.

Sr. Network Engineer

Key Responsibilities:

• Basic understanding of Unified Contact Center Enterprise (UCCE) - Intelligent Contact Management (ICM), Customer Voice Portal (CVP) and Interactive Voice Response (IVR/VRU)
• Worked on BGP routing protocol, configured BGP sessions and troubleshooting on Nexus 1K, 5K, 7K, Juniper MX-960 routers and cisco ASR routers peering with ISP edge routers.
• Installed and maintained production servers for client services (web, dns, dhcp, mail).
• Worked with Juniper devices like EX-2200, EX-4200, EX-4500, MX-480, M Series, SRX650, SRX240 and Juniper J series j230, M 320 and MX960 routers
• Developed security policies for Azure cloud ensured the secure transfer of data from on-premises to Azure and Use of Azure services for HA and DR.
• Responsible for planning, documenting and implementation of complex Firewall and VPN solutions.
• Worked on Citrix Netscale, configured profiles provided and ensured high availability Knowledge in implementation and configuration.
• Worked as part of delivery team where my daily tasks included code upgrades, prefix-list addition, and access-list addition using python script and on Linux platform based on tickets generated by customers.
• Coordinated with the Application Teams to develop effective Application validations involving F5 LTM components.
• Worked on Automation tool called Autopilot an internal tool used for code upgrades and configuring of new devices at different data centers.
• Designed perimeter security policy, Implemented Firewall ACL's, allowed access to specified services, Configured Client VPN technologies including Cisco's VPN client via IPSEC
• Installed and configured LAN/WAN Networks, Hardware, Software, and Telecommunication services- Cisco Routers and Switches.
• Configured firewall rules in Juniper SRX firewall using cli and NSM.
• Developed entire frontend and backend modules using Python on Flask Web Framework
• Created MSI packages using Citrix Installation packager in Citrix
• Worked on configuration of new VXLANs and extension of existing VXLANs on/to the necessary equipment to have connectivity between different data centers.
• Implementing IPv6 addressing scheme for routing protocols, VLANS, subnetting and mostly during up gradation of cisco routers and switches.
• Configuration and deployment of cisco ASA 5550 firewall for internet Access requests for servers, Protocol Handling, Object Grouping.
• Worked on Cisco wireless LAN technologies and Switching. Configured Virtual server, service groups, Session persistence, Health monitors and Load balancing methods.
• Installed & configured of Microsoft Proxy Server 2.0 and Inflobox DNS, DNCP and IP Address Management
• Security configuration on Wireless LAN using protocols PEAP, EAP-FAST.
• Assigning TACACS+ for new deployments in production environment. AAA for users to implement changes on production devices. Most of these devices are cisco propriety.
• Generating audit reports by running automated scripts on various devices to check the layer 2 issues like errors on the links, port flapping’s.
• Analyzing the Audit report and work along with Data center teams to check the optics and troubleshoot issues.
• Built alert & monitoring scripts for applications & servers using Python & Shell Script
• Coordinating along with Global data center teams located at different locations and work along with them for troubleshooting layer 2 issues.
• Worked on Citrix NetScaler load balancer for load balancing and failover across data center and between web servers
• Assisted off-shore teams located in overseas in upgrades, VLANs configurations, in troubleshooting layer 3 issues and routing protocol issues mostly BGP.

Environment: Routers (Nexus 1K, 5K,7K, Juniper MX-960, MX-480), switches (6500/3750/3550 3500/2950 ) Juniper(EX-2200, EX-4200, EX-4500, EX-2200, EX-4200, EX-4500), Citrix Netscale, EIGRP, RIP, OSPF, BGP, VPN, Unified Contact Center Enterprise (UCCE), MPLS, Cisco Catalyst Switches, Firewalls (Cisco ASA, Palo Alto), Cisco Voice (CCM, UCCE, UCCX), Citrix, Python, Shell.

Network Security Engineer

Key Responsibilities:

• Worked primarily as a part of the security team and daily tasks included firewall rule analysis, rule modification and administration
• Worked on configuring and troubleshooting of routing protocols such as OSPF and BGP for effective communication.
• Maintain LAN communication between Servers/Workstations.
• Remediation of firewall rules from checkpoint firewalls to Cisco ASA firewalls, installing and configuring new juniper EX, MX, SRX series firewalls to meet day to day work
• Adding and removing checkpoint firewall policies based on the requirements of various project requirements.
• Installed and configured SSH ( Secure Shell) encryption to access securely on Ubuntu and Red hat Linux.
• Configure and implement voice gateways (H323/MGCP/SIP), SRST for remote sites, CUCME and CUE distributed design.
• Performed troubleshooting, fixed and deployed many Python bug fixes of the two main applications that were a main source of data for both customers and internal customer service team
• Worked on load balancers like F5 10050s, 10250v, GTM 2000s, 2200s to troubleshoot and monitor DNS issues and traffic related to DNS and avoid DDoS
• Deployment of Palo Alto firewall into the network. Configured and wrote Access-list policies on protocol based services
• Configured network access servers and routers for AAA security (RADIUS/ TACACS+)
• Troubleshooting of protocol based policies on Palo Alto firewalls and changing the policies as per the requirement and as per traffic flow
• Worked on DNS server involving configuration and resolving DNS related issues
• Writing rules for NAC servers as per the authentication and authorization of systems within the company.
• Monitoring the network access points with the help of IBM Q Radar and Cisco prime infrastructure.
• Implementing and troubleshooting (on-call) IPsec VPNs for various business lines and making sure everything is in place
• IPv6 is implemented at a larger scale using cisco ASR 7200 and 9000 series routers delivering flexible service
• Installing and configuring new cisco equipment including Cisco 1900, 2900, 3900 series routers, Cisco catalyst switches 6807, Nexus 7010, Nexus 5500 and Nexus 2k as per the requirement of the company
• Worked on regular troubleshooting of BGP, EIGRP routing protocols
• Adding and modifying the servers and infrastructure to the existing DMZ environments based on the requirements of various application platforms
• Developed CTI applications with CTIOS
• Managing and providing support to various project teams with regards to the addition of new equipment such as routers, switches and firewalls to the DMZs
• Working closely with Data center management to analyze the data center sites for cabling requirements of various network equipment

Environment: Routers (Cisco 1900, 2900, 3900, ASR 7200, 9000), Switches (Cisco catalyst switches 6807, Nexus 7010, Nexus 5500 and Nexus 2k), Firewalls (Juniper EX, MX, SRX, Cisco ASA, Palo Alto, AAA), F5 Load balancer, Cisco Voice (H323/MGCP/SIP, CUCME, CUE), protocols BGP, EIGRP, OSPF and DNS server and C programming.

Network Engineer

Key Responsibilities:

• Experience with Firewall administration, Rule analysis, Rule modification
• Experience on F5 load balancer to maintain balance in the network system with application specific usage.
• Troubleshoot traffic passing managed firewalls via logs and packet captures
• Installing and configuring juniper M series router along with juniper switches QFX series
• Configured and resolved various OSPF issues in an OSPF multi area environment mostly on IPv4 and to some extent on IPv6
• Worked with Cisco Contact Center (UCCE) technologies, including centralized ingress, CVP, VXML, ICM and UCCE/UC integration
• Managed fast L3 switched/routed LAN/WAN infrastructure as a part of Network team
• Hands-on experience with WAN (ATM/Frame Relay), routers, switches, TCP/IP, routing Protocols (BGP/OSPF), and IP addressing
• Configured CIDR IP RIP, PPP, BGP and OSPF routing
• Involved in the configuration & troubleshooting of routing protocols: MP-BGP, OSPF, OTV, LDP, EIGRP, RIP, BGP v4. Configured IP access filter policies
• Modified internal infrastructure by adding switches to support server farms and added servers to existing DMZ environments to support new and existing application platforms
• Deployed 7613 as PE and CE router and configured and troubleshoot the edge routers
• Excellent troubleshooting knowledge on T1, T3, OC-3 and OC-12
• Configured egress and ingress queues for ISP facing routers using CBWFQ
• Generating RCA (Root Cause Analysis) for critical issues of layer1/layer2/layer3 problems
• Experience with implementing and maintaining network monitoring systems (Cisco works and HP open view) and experience with developing complex network design documentation and presentations using VISIO
• Worked on SONET and deployment of DWDM
• Estimated project costs and created documentation for project funding approvals

Environment: Switches (Juniper M and QFX series), Routers (Cisco 1900, 2900), F5 load balancer, Protocols BGP, OSPF, ATM, FRAME RELAY, CIDR, RIP, EIGRP, OTV, LDP and Cisco voice (CVP, VXML, ICM UCCE/UC).

Network Engineer

Key Responsibilities:

• Worked on Cisco routers 7200, 3700 and Cisco switches 4900, 2900
• Key contributions include troubleshooting of complex LAN/WAN infrastructure that include
• Configured firewall logging, DMZs, related security policies and monitoring
• Creating private VLANs & preventing VLAN hopping attacks and mitigating spoofing with snooping & IP source guard
• Installed and configured Cisco PIX 535 series firewall and configured remote access IPSEC VPN on Cisco PIX Firewall
• Enabled STP enhancements to speed up the network convergence that include Port-fast, Uplink-fast and backbone-fast
• Responsible for Configuring SITE-TO-SITE VPN on Cisco routers between headquarters and branch locations
• Implemented the security architecture for highly complex transport and application architectures addressing well known vulnerabilities and using access control lists that would serve as their primary security on their core & failover firewalls
• Installation & configuration of Cisco VPN concentrator 3060 for VPN tunnel with Cisco VPN hardware & software client and PIX firewall
• Involved in troubleshooting of DNS, DHCP and other IP conflict problems
• Used various scanning and sniffing tools like Wire-shark
• Hands on experience working with security issue like applying ACL’s, configuring NAT and VPN
• Documenting and Log analyzing the Cisco PIX series firewall