SUMMARY:

• Cisco Certified Network Engineer with 8+ years of experience in Implementation of networks, network design, administration, troubleshooting and analysis of WAN and LAN.
• Excellent knowledge in VLAN, intervlan routing, Access Control List, NAT, DHCP, OSPF (V2 and V3), RIP, IPV4, IPV6
• Got some experience working with nexus 2k, 5k and 7k switches and router model’s 7200, 3800, 3600, 2800, 2600, 2500, 1800 series and Cisco catalyst 6500, 4500, 3750, 3500, 2900 series switches
• Experience in troubleshooting and reconfiguration in case of any issues in LAN and WAN protocols
• Well Experienced in configuring protocols HSRP, GLBP, VRRP, ICMP, IGMP, PPP, HDLC, PAP, CHAP, and SNMP and Ether channel technology (LACP and PAgP)
• Experience in Cisco: Physical cabling, IP addressing, Wide Area Network configurations (Frame - relay & MPLS), Routing protocol configurations (RIP, EIGRP, OSPF, and BGP)
• Expertise in Implementing and troubleshooting complex layer 2 technologies such as VLAN Trunks, VTP Ether channel, STP, RSTP and MST
• Hands on Experience on security devices and firewall infrastructure under enterprise level network
• Excellent knowledge in implementing IP addressing schemes, LAN/WAN protocols, IP Services, to satisfy the network requisites in different environments.
• Experience in Implementation traffic filters using Standard and Extended access-lists, Distribute-Lists, Route Maps and route manipulation using Offset-list
• Great Experience in troubleshooting network traffic and its diagnosis using tools like ping, traceroute, Wireshark, TCP dump and Linux operating system servers
• Worked in Configuring, Monitoring and Troubleshooting Checkpoint security
• Hands on Experience in configuring security components such as VPN, Cisco ASA Firewalls (ASA 5505, 5506-X, 5585), Palo Alto Network Firewall models (PA-2k, PA-3k, and PA-5 k)., Cisco ACL and Pal Alto Firewalls
• Expertise on Load Balancing and Redistribution
• Good knowledge on configuring access lists. Troubleshooting DNS/DHCP issues within the LAN network.
• Competent in Configuring VLAN’s using Cisco routers and multi-layer Switches and supporting STP, RSTP, PVST, RPVST along with trouble shooting of inter-VLAN routing and VLAN Trunking using 802.1Q.
• Great Knowledge in Implementing and troubleshooting complex layer 2 technologies such as VLAN Trunks, VTP Ether channel, STP, RSTP and MST
• Great Knowledge about F5 load balancers - LTM, GTM series like 6800 and 8900 for the corporate applications and their availability.
• Competent in Cisco IOS for configuration & troubleshooting of routing protocols: MP-BGP, OSPF, LDP, EIGRP, RIP, BGP v4, MPLS.
• Good Knowledge in working on network monitoring and analysis tools like, SOLAR WINDS, CISCO works and RIVER BED and Wireshark.
• Experience in Access Control Server configuration for RADIUS and TACACS+.
• Experience in Configure domain's DNS records, such as an MX record, CNAME record, and so on.
• Experience in conducting Redundancy test, Failover and Recovery Test, Compatibility Test, Regulatory Compliance Test, Installation Test.
• In depth understanding of IPV4 and IPV6 and implementation of Subletting.
• Support in a production 24x7 environment, with rotating on-call duties.
• Configure and Maintain LAN/WAN infrastructure at layer 2 and layer 3 devices.
• Configured security policies including NAT, PAT, and VPN, Route-maps, Prefix lists and Access Control List.
• Conduct Switching tasks include VTP, ISL/802.1q, VLANs, Trunking, STP and RSTP, Port Security, IPSec, Ether Channel.
• In-depth of knowledge with the technologies VPN, WLAN, Multicast.
• Strong hands on experience in installing, configuring and troubleshooting of Cisco 7600, 7200, 3900, 3600, … and 1800 series routers, Cisco Catalyst6500, 4500, …
• Experience in Routing protocol configurations (RIP, EIGRP, OSPF, and BGP).
• Well experienced in configuring HSRP, GLBP, ICMP, PPP, PAP, CHAP and SNMP.

TECHNICAL SKILLS:

Routers: Cisco 1700, 1800, 2600, 2800, 3700, 3800, 3900 &7200 series& ASR 1K & 9K Series

Switches: Cisco 6500, 4500, 3750, 3500, 2900 series, Nexus 7K, 5K, 2K

LAN Technologies: Ethernet, Fast Ethernet, and Gigabit Ethernet, SMTP, VLAN, Inter-VLAN Routing, VTP, STP, RSTP, NAT/PAT.

WAN Technologies: Frame Relay, PPP, HDLC, (E1/T1/E3T3), DS3, OC192.

Network Security: Cisco ASA, ACL, IPSEC.

OS products/Services: DNS, DHCP, Windows XP), UNIX, LINUX.

Routing Protocols: OSPF, EIGRP, BGP, ISIS, VRF, PBR, Route Filtering, Redistribution, Summarization, and Static Routing.

Gateway Load Balancing: HSRP, VRRP, GLBP, EBGP

Switching: VLAN, VTP, STP, PVST+, RPVST+, Inter VLAN Routing &Multi-Layer Switching, Multicast operations, Layer 3 Switches, Ether channels, Transparent Bridging

Various Features & Services: IOS and Features, HSRP, GLBP, IRDP, NAT, SNMP, SYSLOG, NTP, DHCP, CDP, DNS, TFTP and FTP Management Security Server Protocols

AAA Architecture: TACACS+, RADIUS, Cisco ACS

Facilities: DS0, DS1, DS3, OCX, T1/T3, Cable Modem, xDSL and Wireless.

Load Balancers: Cisco CSS, F5 Networks.

Operating Systems: Windows (98, ME, 2000, XP, Server Vista, Windows 7/8), Linux, UNIX, WINTEL

Firewall & Security: Cisco ASA, Palo Alto

PROFESSIONAL EXPERIENCE:

Confidential, Wilmington, DE

Sr. Network Engineer

Responsibilities:

• Involved in the Configuration & Troubleshooting of Routing Protocols: MP-BGP, OSPF, EIGRP, RIP, BGP v4. Configured IP access Filter policies.
• Configure VRRP & GLBP and VLAN Trucking 802.1Q & ISL, STP, Port Security on Catalyst 6500 switches
• F5 Big-IP load balancer Configuration, layer 7 load balancing using I-Rules (TCL)
• Identify, Design and Implement Flexible, Responsive, and Secure Technology services
• Experience with Firewall Administration, Rule Analysis, Rule Modification
• Implemented Positive Enforcement Model with the help of Palo Alto Networks.
• Innovated with support of Palo Alto for remote and mobile users and for analyzing files for malware in a separate (cloud-based) process that does not impact stream processing.
• Creating and provisioning Juniper SRX firewall policies.
• Created standard access lists to allow SNMP, NTP and logging servers.
• Documented new VPN enrollments in a database and create standard procedures for further improvement.
• Experience with proxy automatic configuration(Pac) and SMTP protocol.
• Troubleshooting with layer 2 and layer 3 devices
• Troubleshoot traffic passing managed firewalls via logs and packet captures
• Managed fast Layer 3 switched/routed LAN/WAN infrastructure as a part of Network team. The LAN consisted of Cisco campus model of Cisco 3550 at access layer, Cisco 6513 at distribution/core layer.
• Analyzed and tested network protocols (Ethernet, TCP/IP) using Wireshark tool.
• Generating RCA (Root Cause Analysis) for critical issues of layer1/layer2/layer3 problems
• Negotiate VPN tunnels using IPsec encryption standards and also configured and implemented site-to-site VPN, Remote VPN.
• Provided proactive threat defense with ASA that stops attacks before they spread through the network.
• Cisco ASA/Checkpoint Firewall troubleshooting and policy change requests for new IP segments that either come on line or that may have been altered during various planned network changes on the network.
• Modified internal infrastructure by adding switches to support server farms and added servers to existing DMZ environments to support new and existing application platforms.
• Responsible for Checkpoint and Cisco ASA firewall administration across global networks.
• Co-ordinated with the Data Network and Security team and came up with possible solutions.
• Work on Physical Site Inventory verification, gather information of various Cisco Network devices and Security Devices to develop Run book and Spec Book.
• Cisco ASA/Checkpoint Firewall troubleshooting and policy change requests for new IP segments that either come on line or that may have been altered during various planned network changes on the network
• Dealt with monitoring tools like Xymon, cacti and solar winds.
• Configuration and troubleshooting of Cisco catalyst 6509, 7613 with supervisor cards.
• Experience with implementing and maintaining network monitoring systems (Cisco works and HP Open view) and experience with developing complex network design documentation and presentations using VISIO
• Estimated Project costs and created documentation for project funding approvals.
• Monitoring and troubleshooting network issues between client site and 85 remote sites with legacy switches and routers
• Performed and presented network analysis as a part of network migration. Involved in knowledge transfer to vendors and provided them network support as required
• Good Experience on ITIL framework
• Worked as a single point of contact for the whole migration.
• Worked on Snort and Suricata detection systems, security devices.
• Configuration and maintenance of EIGRP and BGP network on router 7200 and 6500 MLS.
• Configuration and maintenance of 3750 stack and 6500 VSS for improved efficiency of the data plane.
• Configuration and management of NEXUS network in the existing network infrastructure.
• Configured, installed and deployed Nexus 7K, 5K and 2K series switches.
• Experience on Bluecoat proxy server.
• Dynamic IP Routing protocols (OSPF, EIGRP, BGP, Multicast).
• Lead Engineer for Network refresh project for Multinational insurance company. Providing remote assistance for replacing exiting switches with new Cisco switches.
• Configuring routing protocols OSPF, EIGRP, RIP, MPBGP, LDP and BGPV4

Environment: LAN, OSPF, BGP, RIP, EIGRP, Cisco 3640,12000, 7200, 3845, 3600&2800 routers, Cisco ASA5510, Checkpoint, Palo Alto, Cisco Nexus7K and 5K, 2248/3560/5020/6509 , Cisco 3750,3550,3500&2960 switches, ASA, Checkpoint.

Confidential, Detroit, MI

Network Engineer

Responsibilities:

• Performed IOS upgrades on Catalyst 3750, 2950, 1900 switches, and 3600, 2600 and 2500 routers.
• Installed and configured DHCP, DNS Server
• Maintained a Network with more Network devices and end hosts, and the other Network devices like DHCP, DNS Servers, and Firewall Servers.
• Worked with application developers and systems engineer to migrate applications and systems to a new Border Gateway network.
• Responsible for Cisco ASA 5540 administration and checkpoint firewall provider-1 across our global networks
• Good experience with like checkpoint VSX, IDS, IPS as well as encryption techniques.
• Experienced of network monitoring and management utility: Tcpdump and Wireshark
• Troubleshooting and installing of ISR, ASR9000 and Nexus devices.
• Worked on Cisco Routers, Active /Passive Hubs, Switches, Cisco PIX Firewall, Nortel VPN Concentrators TCP/IP, NAT and Checkpoint ESX/GSX firewall.
• Experience working with Nexus 7010, 5020, 5548, 2148, 2248 devices
• Used Kiwi-Cat tools to manage configurations from desktop for network devices, including routers, switches and firewalls.
• Worked on Palo Alto firewalls PA-2050 in creating and implementing the policies required by the company.
• Configured address objects and service objects on Palo alto PA 2050 using panaroma web interface.
• Migrated legacy Cisco ASA firewalls to Palo Alto firewalls using Palo alto migration tool in the enterprise environment.
• Experience on monitoring of QOS and analyze the traffic to troubleshoot any QOS related issues.
• Experience in WAN technologies like T1/T3, DS3, STM1 and STM4 circuit types
• Scripting for automation of processes for Windows Servers. Familiarity with main script languages like Power Shell, PHP, Shell, Perl, Python.
• Hands-on experience in the network management of circuits using TDM and Frame Relay network
• Installed and configured Routers, Bridges, Terminal Servers and CSU/DSU's to support WAN links.
• Experienced with RIP, RIPv2, EIGRP, OSPF, IS-IS, BGP, MPLS.
• Configured F5 GTM solutions, which includes WideIP, Pool Load Balancing Methods and monitors.
• Implemented SNMP on Cisco routes to allow for network management.
• Cisco IPT Migration Projects from legacy PBXs with Nortel.
• Setting up VLANS and configuring ISL trunk on Fast-Ethernet channel between switches
• Worked on Data, VOIP, Security as well as wireless installations and technologies.
• Worked on Solar winds Orion for analysis and monitoring purposes
• Performing SIP call flow & other protocol packets flow using Wireshark.

Confidential, Cleveland, OH

Network Engineer

Responsibilities:

• Involved in Configuration of Cisco 7206 router with VPN and Configuration of Catalyst switches.
• Maintain responsibility for the network engineer, including Cisco routers and firewall configuration, deployment, maintenance and troubleshooting.
• Configured Routing protocols such as OSPF, BGP, static routing and policy based routing.
• Configured and performed troubleshooting on link state protocols like OSPF in single area and multiple areas.
• Installed and tested Cisco router and switching operations using OSPF routing protocol, ASA Firewalls, and MPLS switching for stable VPNs.
• Redesigned Internet connectivity infrastructure for meeting bandwidth requirements.
• Configured HSRP and VLAN trucking 802.1Q, VLAN Routing on Catalyst 6500 switches.
• Optimized performance of the WAN network consisting of Cisco 3550/4500/6500 switches by configuring VLANs.
• Configured VLANs with 802.1q tagging. Configured Trunk groups, ether channels, and Spanning tree for creating Access/distribution and core layer switching architecture.
• Configured BPDU Guard, port-fast, uplink fast and other spanning tree features.
• Configuration and troubleshooting of Cisco Nexus switches 2000, 3000, 6500, 7004, 7009, 7700 Series.
• Continually monitored, assessed and improved network security along with testing and implementing new security technologies.
• In depth knowledge of voice gateway configuration (ISR Cube, IPIPGW, 38XX series) and deployment as well as interoperability and troubleshooting
• Developed strong understanding of a network infrastructure & familiarity with congestion avoidance techniques to ensure high voice quality Installation, design, configuration, and integration of the CUCM

Confidential

Network Engineer

Responsibilities:

• Involved in configuring of Static, IGRP, EIGRP, and OSPF Routing Protocols on Cisco 1900, 2600, 2800, 2900, 3600 series Routers.
• Design OSPF areas for reliable Access Distribution and for Core IP Routing.
• Configured various LAN switches such as CISCO CAT 2900, 3750 switches.
• Performed IPv4 addressing using FLSM, VLSM for allocating subnets, CIDR and in allocating private addresses.
• Implemented IGMP, IGMPV2 protocols for IP multicast traffic distribution
• Supported Multi-Protocol Layered Switched (MPLS) WAN to enhance inter-office connectivity between Hyderabad and Bangalore sites.
• Worked on operating Protocol independent multicast routing in sparse mode.
• Configured inside ACL and interfaces, outside ACL and interfaces, NAT and PAT policies.
• Monitored network for optimum traffic distribution and load balancing using Solar winds.
• Real-time network monitoring using HP Open View by implementing policies and creating custom events.
• Configured BPDU Guard, port-fast, uplink fast and other spanning tree features.
• Configured Site-to-Site IPsec VPN tunnels to peer with different clients and each of client having different specifications of Phase 1 and Phase 2 policies using Cisco ASA 5505 series firewall.
• Analyzed network traffic using analyzer using Wireshark.

Environment: Cisco 2900, 3600 routers, Cisco 2900, 3750 switches, Cisco ASA Firewalls, STP, VLAN, VTP, VPN, NAT, OSPF, BGP, EIGRP, Cisco Switches, HP open view, Wireshark, Solar Winds

Confidential

Jr. Network Engineer

Responsibilities:

• Worked on migrating of RIP V2 to OSPF, BGP routing protocol.
• Perform daily maintenance, troubleshooting, configuration, and installation of all network components.
• Configuration of CISCO Routers (2800, 3600 Series) and 2900, 3750 series switches.
• Enabled SNMP traps for our Cacti Monitoring tool to monitor traffic and check the regular health of Servers and Network Devices
• Implemented and Configured IP Routing Protocols: OSPF, EIGRP, and RIPv2
• Created network diagrams under senior supervision using MS VISIO.
• Implemented and configured LAN Protocols: Ethernet, VLANs, VTP and STP.
• Worked with Remedy Ticketing tool in maintaining and keep a track of logs/monitor
• Designed and implemented IP Addressing, Subnetting, Route Summarization and Route Distributions

Environment: Cisco 2800, 3600 routers, Cisco 2900, 3750 switches, LAN, WAN, Subnetting, VLAN, VTP, VPN, NAT, OSPF, BGP, EIGRP.