OBJECTIVE:

To gain expertise as a Network Designer and Engineer and implement the seasoned experience towards the growth of the organization.

PROFESSIONAL SUMMARY:

• 10+ years of professional experience in a diversified work environment as a Senior Network Engineer and Designer with CCNP and CCNA.
• Widespread knowledge of Routing, Switching, LAN/WAN, F5 load balancers and Firewalls.
• Profound understanding with hands - on experience of Routing Protocols like EIGRP, OSPF, IS-IS, BGP, RIP (both Versions 1 and 2), OSPFv3. Through knowledge of NAT, Route Map, Route Redistribution, Distribute List and IPv6.
• Solid understanding and hands-on experience on F5 Big-IP Load Balancer GTM/BigIP-DNS and LTM Virtual Server, Pool, Pool Member, Health Monitor, Custom Profiles, High-Availability, Gateway-Failsafe and Persistence and SSL Certificates.
• Hands on design, implementation and trouble-shoot on Cisco Nexus 7K, 5K, 3K and 2K FEX - VDC, VPC, VRF, PBR, OTV and VMFex.
• Extensive knowledge and experience of switch functionalities and multilayer switching network like STP, RSTP, CEF, Ether Channel (PAGP and LACP). Redundancy Protocols like HSRP, VRRP and GLBP and Load Balancing using PAGP and LACP and PPP over Multilink.
• In depth experience with Layer 2 and Layer 3 security features such as Authentication, Cryptography, IDS/IPS, IPSec, VPN, Firewalls, Standard and Extended Access Lists, Port Security, AAA, IBNS (802.1x) using RADIUS Server, DHCP Snooping.
• Worked with VLAN and VTP, Voice VLANs, VLAN Security issues and implemented Private VLANs to address VLAN Hopping Attack.

TECHNICAL SKILLS:

Cisco Nexus: 9000, 7000, 7700, 5000, 5672, 3172

Cisco Router Series: 2800, 2900, 3200, 3800, 3900 Branch Routers and 7200, 7600 Data Center Routers.

Cisco Switch Series: 2350, 2360, 2960, 3550, 3750, 3850 Catalyst Access Layer Switches, 2955 Ethernet Switches and 6500 Data Center Switches.

Juniper Router Series: MX-960, MX-480 and QFX

Firewalls: PIX 506e, 515e, 525, 535 and ASA 5505, 5510, 5520.

BigIPs: 2000, 4000 and 7000 and old 6900 and 8900.

Citrix Netscaler:: NS11500, NS17500 and NS21500

Routing Protocols: RIP version 1 and 2, EIGRP, OSPF, OSPFv3, IS-IS, BGP.

Switching Protocols: STP, RSTP and PVST.

Redundancy Protocols: HSRP, VRRP and GLBP.

Multicast Protocols: IGMP, IGMP version 2 and 3, CGMP, PIM-Sparse and Dense Mode. DHCP, FTP, TFTP.

Network Security: Access Lists, Firewalls, IPSec and VPN, Deep Packet Inspection, IDS/IPS, Port Security, DHCP Snooping, Private VLANs.

Network Protocol Analyzer: Network Simulator-2, Wireshark, Ethereal, Packet Tracer.

Operating Systems: Linux (Red Hat, Fedora Core 11 and Ubuntu 9.04 Widows XP, Vista.

PROFESSIONAL EXPERIENCE:

Confidential

Network SME

Responsibilities:

• Layer 3 and Layer 2 Network design, implementation and documentation for Data Center at Public Safety Answering Center. PSAC2 DOITT VoIP and Wireless Network design and documentation. Server Farm Rack Design and Configuration.
• Network design, deployment, implementation and project management for Text-to-911 Service and Out-of-band network for PDU management.
• Design and Configuration of F5 Load Balancers LTM and BigIP-DNS for DoITT Public Safety DEV and Production environment. L4-L7 Application Support from F5 side.
• F5 LTM 2000 and 4000 Design, Installation and Configuration and OS upgrade for basic and advance setting like VS, Pools, Virtual Forwarder, LDNS, Gateway Failsafe, Custom Health Monitor and profiles, iRules from scratch in HA mode. Work with application team and provide solution for Networking Load Balance.
• Working on Nexus 7K, 5K and 3172 VPC, VDC and VRF and PBR. Cisco 6807, 6500 and 4500 and 3850 Stack deployment with routing protocols like BGP, OSPF and EIGRP.
• Design, Configuration and Trouble-shoot Network Layer 2 technologies - Vlans, STP, Port-Channels like LACP.
• Network IT Security tool design and deployment - Riverbed Cascade, QRadar, Firemon and Pala Alto Panorama and PAN 5060 and IPSec site-to-site VPN Tunnel.
• HP DL60 Gen9 Server OS upgrade with SUSE version 12 and iLO configuation, NIC bonding and connectivity for DNS server.
• Leadership in deployment of Network Security monitoring tools, building and co-ordinations between different teams.
• Created Network Documentation and Visio Diagrams to hand-over the network to NOC.

Environment: Cisco Nexus 7K, 5K and 3172. F5 DNS and LTM 2000/4000, Cisco IOS 6800, 6500, 4500 and 3850, Riverbed Net-Profiler and Flow Gateway, HP DL60 Gen9, IBM QRadar SIEM.

Confidential, Hightstown, NJ

Level 3 Network Engineer

Responsibilities:

• Design and Configure Nexus 7K VDC and VPC, SVI, OSPF routing, Static routing. OSPF Peer-Link, Keep-alive Link configuration and trouble-shoot
• Nexus 5K Layer 2 VPC, Port-Channel, vlan configuration and OS upgrade. Support to Cisco 3850 Stack to ASA 5585 connection.
• Migration of Inter Data Center Connection from old AT&T Ring to New AT&T Ring - Creation of new SVI, fine-tuning Vlans, existing route migration and Testing.
• Cisco Nexus OS upgrade from 6.1(4) to 6.2(8b) on Nexus 7010 chassis. Cisco Nexus 5K OS upgrade to address reload due to SNMP Bug. Cisco 3850 IOS Upgrade.
• Work with Linux/Solaris team trouble-shoot their server issue like server routing table.
• Network Support to Server lifting/shifting and Application migrations over 2 months every weekend.
• Big-IP F5 LTM and GTM and F5 ASM design, support for application testing. Cisco ASA 5585 NAT, Rules and Route creation and Tufin Deployment.
• F5 LTM 7000 route creation, Self-IP for backend pool members.
• F5 LTM 7000 Support like tcpdump, VS, pool member tweaking for Application Stress Test and L4-L7 support.
• Worked with WAN Engineer on ASR Internet Routers for BGP.
• TACACS and AAA Configuration on Cisco NX-OS and IOS Devices to get them in TACACS. Configure Users on ACS box for network device access.
• Weekend Oncall Support and Filed as many change tickets to get all the necessary changes done.
• Created Network Documentation and Visio Diagrams to hand-over the network to NOC.

Environment: Cisco Nexus 7000 and 5000, 2000 FEX, Cisco IOS 3850, F5 LTM with 11.2.x, Cisco ASA 5585, Spectrum and HPNA.

Confidential, Seattle, WA

Network Engineer

Responsibilities:

• Troubleshoot routing protocols like OSPF, BGP in high volume data center oriented production and Amazon's EC2 network.
• Design and BGP attribute change to influence routes on Nexus 7000.
• BGP prefix list manipulation with written change process to fine tune traffic on Cisco Nexus 7018 routers.
• Introducing OSPF MD5 authentication between Cisco 4500 router and Citrix Netscaler Load balancers.
• Used Linux based Bastion to configure all Cisco/Juniper devices.
• End to end traffic latency trouble-shoot across WAN.
• Day to Day support to network operational oncalls and worked with Data Center Technicians.
• Day-to-day network operation support including on-call for issues like module swap, Layer 3 Ether-channel, switch replacement, link down, link over utilization, rack down, shifting traffic etc.
• OSPF configuration support on Juniper and Cisco Nexus routers for Carrier maintenance.
• Worked on build project with Load Balancing Team to get Citrix Netscaler Front End and Back End balancers ready from layer 3 networking side.
• Citrix NS11500, NS17500, NS21500 LB OS upgrade to 61.63NC.
• Participated in running network changes with proper approval.
• Day-to-day support to Cisco Nexus 7000 Series, Cisco 6500, 7200, 3750. Juniper MX960, MX480 Juniper QFX routers/switches.

Environment: Cisco Nexus 7000, Juniper MX960, MX480 and QFX routers, Citrix Netscaler NS11500, NS17500 and, NS21500, Cisco IOS 4500.

Confidential, Lebanon, NJ

Network Service and Support Engineer

Responsibilities:

• Worked on Remedy Incidence, Work Orders and Tasks to trouble-shoot layer 3, layer 2, DNS, DHCP, F5 and wireless issues.
• Trouble-shoot on EIGRP, OSPF to address network slowness issues where one way eigrp traffic was causing inconsistence and same with passive-interface with OSPF.
• Design, implementation and support F5 LTM work for new URL/URI and Web Servers and L4-L7 support and analysis.
• Created VIP, pool and added/removed nodes though F5 GUI on 6900 Big-IP. Worked on customized Health Monitor and Persistence. Supported Application Stress Test.
• Installed SSL certs and cert chain on production and model F5’s (Big IP 6900 and 8900) issued by internal-CA or Verisign.
• DNS entries created and deleted as well for production URL. Network Trace and Packet capture through Infinistream.
• Implemented IPSec VPN tunnel between data center and vendor and worked with firewall team to solve the problem.
• Created static IP, manual DHCP and dynamic DHCP and pushed the same towards DHCP server using IP Management tool from BT Diamond.
• Supported AT&T Metro Ethernet upgrade for field offices with Cisco 3750 Switches.
• Network support for Cisco 6509’s. 4500’s, 3750’s and Nexus 5020, 3750. Configured 3750 switch from scratch.
• Troubleshoot BGP related issues for advertising BGP routes through interior gateway protocols like EIGRP, OSPF and RIPv2.
• Configured layer 2 trunk ports, channel group using LACP and PAGP and layer 3 vlan interface with allowing the new network through OSPF.
• Worked on BPDU error-disable recovery, spanning-tree root bridge, UDLD error disable issues.
• Addressed weak wireless signal issues WCS, Aironet 1250 and 1260 and participated in quarterly Wireless Maintenance by checking wireless vlans, WCS health.
• Created change records and implemented and was On-Call for production network.
• Troubleshooting network connectivity between branch office and regional office with multiple link paths and routers running HSRP, EIGRP in unequal cost load balancing.
• Creating NAT (used ACLs to block unauthorized users) to the VLAN IP and allowing the IPSec traffic.

Environment: Cisco IOS 6500, 4500, 3750, Cisco Nexus 5000, F5 LTM Load Balancer 6900 and 8900, Wireless WCS, Netscout Infinistream packet capture and sniffer, nGenious network tool.

Confidential, Warren, NJ

Network Integration Engineer

Responsibilities:

• Replacing Big-IP’s containing old 4.x OS with newer 10.2.1 OS and 6900, 8900 series hardware.
• Built Big-IP 6900 and 8900 boxes with 10.2.1 OS and new license on Unix platform and VI editor.
• Designed and implemented failover test on Big-IP for their connectivity to cisco 6509 layer 3 switches.
• Network support for refreshing cisco 6509’s with Nexus 5020, 3750 and 3750e for troubleshoot purpose.
• Implemented Cisco 3825 ISR router to support new 6900 Big-IPs for lowering the traffic on terminal servers and remote access.
• Troubleshoot BGP related issues for advertising BGP routes through interior gateway protocols like EIGRP, OSPF and RIPv2.
• Configured layer 2 trunk ports and channel group using LACP and PAGP as a part of network support.
• Created extended access lists to permit and deny desired traffic.
• Configured NAT, Layer 2 security features with Port Security.
• Configured DHCP to automatically assign reusable IPv4 addresses to DHCP clients.
• Set up TFTP server to maintain Cisco router configurations and Cisco IOS images.
• Created RFC’s for required changes using Global Change Management tool and attended change calls.
• Network documentations using Visio diagram and maintaining spreadsheet for various Big-IP pools, applications.

Environment: Cisco IOS 4500, 3750, Cisco Nexus 5000, F5 LTM Load Balancer 6900 and 8900, Cisco 3825 ISR Router.

Confidential, New York

Network Deployment Engineer

Responsibilities:

• Migration from old infrastructure to new using 6504, 3560, 3750(both 48 port and 12 port) and 2960 switches.
• Configured the Cisco 6504’s, 3560, 3750 stack and 2960 stack switches from scratch for their layer 3 and layer 2 functionalities.
• Staging and deploying 2811 router for Out-of-Band operation.
• Implementation of OSPF, access-list, SNMP, NTP, vlans in configuration.
• Worked on OSPF neighbor relationship, area type and network type issues, BPDU error-disable issues, ether-channel formation and vlan trunk trouble shooting issues and multicast issues.
• Extensively concentrated on all type of layer 3 and layer 2 testing for the switches before they come on production through console as well as remotely.
• Configuration of switch back-up flex links and testing of the same and installation of 10 Gigcard on 6504’s.
• Worked on BGP especially EBGP for network advertisement of our own autonomous system subnets.
• Implemented HSRP in distribution layer for network redundancy using active and stand-by router and testing of the same.
• IOS upgradation of production switches as well as burn-in switches through console as well as tacacs.
• Router and Switch AAA configuration for utilizing TACACS as well as enable password and testing in every closet for enable password and tacacs password.
• Crypto-key configuration for routers and switches to accept ip ssh for centralized TACACS server and ip subnet scheme and DNS entries.
• Designing racking and stacking, Creation and testing of cable-cutsheet for both copper and fiber links for entire projects and fixed the baud rate issue of line console on 2960s.
• Troubleshooting VLAN and VTP issues for inter-vlan routing, native VLAN mismatch, VTP domain name etc.
• Implemented QoS with DSCP(Diff-Serv Code Point) for qos marking of IP-phone traffic.
• Experience with RTDN(Real Time Data Network) for video, voice and WAP and RTP along with building QoS with CoS .
• Used Wireshark to capture and analyze the dscp value of voice and video call.
• Worked on NAT issue for addressing the management IP address of the access switches.
• Created change ticket with GCM before cut-over and dealt with all kind of change questions.
• Documentation using Visio and entry of production devices using Networker tool.

Environment: Cisco IOS 6500, 4500, 3750, 2811, weekend cutover to new infrastructure, Network Deployment from scratch.

Network Administrator - Graduate Assistant

Confidential, Carbondale

Responsibilities:

• Configuration of 2960, 3550, 3750 Catalyst Access Layer Switches, 6500 Catalyst Core Layer Switches and 2955 Catalyst Ethernet Switches.
• Implementation of ASA 5505 and 5510 firewall rules and object groups.
• Troubleshooting VLAN and VTP issues for inter-vlan routing, native VLAN mismatch, VTP domain name, configuration revision number, password etc.
• Installed Cisco 2960, Netgear Switches in lab environment and simulated network agents.
• Addressing queries regarding the ITIL, Ticketing System, Information System/Software & extending onsite support to the clients including maintenance of hardware/software.

Environment: Cisco IOS 7600,7200, 3750, 2960. Cisco ASA 55xx, PIX firewall.

Confidential

Network Support Engineer

Responsibilities:

• Installed, configured and maintained Cisco Routers.
• Planned and designed network addressing scheme with IP Subnetting.
• Installed & configured LAN & WAN using Cisco 2600, 2800 series Routers and 1900, 2900 series switches.
• LAN/WAN hardware including, Ethernet Hubs, Cisco Switches, switches panel’s installation, configuration and troubleshooting.
• Provided network security administration functions including hardware access, software access, passwords, user privileges and related tasks.
• Cisco router configuration set up routing protocols like RIP, EIGRP and OSPF.
• Implementation of NAT with a pool of public IP addresses.
• Switching related tasks included implementing VLANS and configuring ISL trunk on Fast-Ethernet channel between switches.
• Troubleshoot TCP/IP problems; troubleshoot connectivity issues in multi protocol Ethernet, Environment.

Environment: Cisco IOS 4500, 3750, 2960. Setting up LAN, Test environment for customer.