SUMMARY:

• A Network Engineering Graduate with 5 years of experience for designing, deploying, maintaining and supporting the network systems in the areas of routing, switching, security, wireless, system administrating.
• Hands on experience in planning, implementing, testing and troubleshooting of static and dynamic routing protocols such as BGP, OSPF, EIGRP on Cisco high end routers ASR 1000, 7200, 4300, 3800, 2900 series .
• Expertise in implementing and troubleshooting complex L2 technologies like VLAN Trunks, VTP, Ether channel, STP, PVST, RSTP on 6500, 4500, 3850, 3750 series & Extreme 3808 .
• Profound knowledge of Cisco NEXUS data center technologies like VXLAN, Fabric Extenders (FEX), Virtual Port Channel (vPC), VDC, FabricPath, Overlay Transport Virtualization (OTV) for Nexus 7k, 5k and 2k.
• Working experience on Check Point Firewalls, ASA Firewalls. Implemented Security Policies using ACL traffic filters, IPSec & SSL VPN, DMVPN, AAA (TACACS+ & RADIUS).
• Adept in configuring and troubleshooting HSRP, VRRP and GLBP for Default Gateway Redundancy and redistribution between routing protocols and PBR (policy based routing).
• Effective familiarity on various WAN technologies like MPLS, VPLS and IPSec VPN, DMPVN.
• Experience with Virtualizing Technologies like VMware, VIRTUALBOX.
• Extensive knowledge and experience of DNS, DHCP, SNMP, FTP, LDAP, AD.
• Technical knowledge for wireless standards, worked on Aerohive & Cisco Wireless LAN implementation for 802.11n Infrastructure across the Corporate Network.
• Experience with Cisco ACI fabric, Cisco ISE, Cisco NAC, Cisco Prime Infrastructure. Worked on Python automation script for configure multiple devices by using Linux.
• In - depth knowledge on IP Addressing, Subnetting, VLSM, ARP, reverse & proxy ARP, and Ping Concepts.
• Working experience in F5 BIG-IP Load Balancer for configuration of iRules, Profiles, NAT/SNAT.
• Hands on experience in network hardware for fully automation/manual Phy qualification tests refer to the next-generation projects, based on IEEE 802.3 standard for 10BaseT, 100BaseT, 1000BaseT and Multi-Gig Switches.
• Proficient in high energy tests like CDE and Hipot as well as power over Ethernet test like Ripple-Noise test.
• Excellent communication skills to interact with team members.

TECHNICAL SKILLS:

Routers: Cisco 2900, 4300, 7200, ASR 1000 series.

Switches: Cisco 3750, 3850, 4500, 6500 series. Nexus 7k, 5k, 2k series. Extreme 3808.

Routing: OSPF, EIGRP, BGP, PBR, Redistribution/Filtering, MPLS, VRFs.

Switching: VLAN, VXLAN, VTP, PVST+, RPVST+, SVI, Ether channels, Bridge.

Data Center: vPC, FabricPath, OTV, VXLAN, VDC, FEX.

Firewalls: CheckPoint R70/R75.45/77. Cisco ASA 5505, 5510, 5515 X, 5500 X.

Wireless: Aerohive APs with Cloud Controller. Cisco Controllers 5500,Wisms and AP 1200, 1300, 1400, 1500.

Load Balancer: F5 BIG-IP.

Tools: SecureCRT, Wire shark, iPerf, Nmap, MTR, EMC NCM, Entuity, Solarwinds, IPAM, LAN Guard, LDAP, AD/DNS/DHCP, Photoshop, MS Project.

Hardware Lab Equipment: Real-time and sampling Oscilloscopes, Frequency Generator, Ixia, Wavecrest, Function Generators, Network Analyzer, Spectrum analyzer.

Virtual Machine: VMware, Virtualbox.

Scripting: Python.

Cisco Environment: Cisco ACI, Cisco ISE, Cisco NAC, Cisco Prime Infrastructure.

PROFESSIONAL EXPERIENCE:

Confidential, Menlo Park CA

Network Design Advisor/ Network Engineer

Responsibilities:

• Travel around the bay area in order to provide support 60+ Stanford Children's Hospital/Clinics and Administrative sites. Responsible for configurations, supporting and troubleshooting network problems like network slowness/congestion, Internet outage, web applications access and power outage.
• Configure, maintain and deployed Cisco ASR 1K, 7200, 4300, 2900, 2800 routers as end WAN routers and implemented BGP with VRF and EIGRP instances running parallel.
• Worked on WAN custom QoS/class maps & policy maps for a unified network with data, voice and video.
• Directly worked with WAN carriers to resolve WAN connectivity issues a nd designed redistribution from Static routes/EIGRP to BGP for AT & T ASE/AT & T Opt-E-MAN/ Confidential IP Sec VPN Static routes to Level 3 MPLS redistribution.
• Created IP SLA for measure network performance for remote locations clinics and added script for EEM (Embedded Event Manager) on remote devices for automatic shutdown primary MPLS/VPLS circuit that results failover to backup link IPSec VPN.
• Manage, support and provision LAN/WAN equipment for a new network IDF deployment pertaining to Cisco 6500 (Sup 720), 4500 (SUP 6) & 3850, 3750 switches for network access.
• Extensively worked on Cisco catalyst 6509 VSS along with VDC and VPC on Nexus 5505, 7010 switches.
• Experience with Cisco Application Centric Infrastructure (ACI) fabric: APIC cluster, Leaf and Spine switches. Knowledge of basic configurations of Tenants, BDs, EPGs, VMM Networking and OOB Management configurations of Leaf and Spine Switches.
• Created automation python scripts for configure multiple devices for update ACL using Linux jumpbox.
• Monitored Network by analyzing network events/alerts using Solarwinds Orion, Entuity and EMC NCM (Voyence). Troubleshoot network issues using tools like Cisco Prime Infrastructure (Wireless), Cisco NAC (Network Access Control) and Cisco ISE (Identity Service Engine).
• WAN infrastructure circuit migration from MPLS (L3) circuits to VPLS (L2) circuits to reduce cost and increase bandwidth from 4.5Mbps to 100Mbps. Troubleshoot latency and throughput issues using iPerf tool.
• Worked on Router Refresh Project for replace existing Cisco 4331 routers with new Cisco 4331 since cisco found known clock bug issue for 30 remote clinics.
• Adherence to processes/administration of ServiceNow ticketing system: Incidents, Requests, Change Control, Service Catalog and SLA. Asset management, problem management, reporting, integration with monitoring services like Entuity.
• Provide technical support assistance and advice for Field Services Technicians.

Confidential, Fremont CA

Network Engineer

Responsibilities:

• Worked as a Network Engineer in Confidential Inc. (SCI) IT department, where I was responsible to design, install, configure, maintain, monitor and secure the network infrastructure.
• IT Technical Point of Contact for 3 sites (Fremont, San Diego and Tempe) of Confidential in US.
• Installed, Configured and troubleshoot switching protocols like HSRP and STP on Switches like Cisco 2950, 2960, 4500 as well as Extreme Networks Alpine 3808.
• Implemented and troubleshoot routing protocols like OSPF, EIGRP on Cisco 2800, 2900 Routers.
• Installed, Configured and currently maintaining Check Point Firewalls (R76 Gaia, R75.40, R75 and R70) in a Distributed Deployment and High Availability Redundancy Scenario.
• Wide range of responsibilities include technical support, supporting IT operations (network/server), executing projects, mitigating network security issues, collaborating with cross functional teams to develop and support custom made systems for internal employee usage, supporting a unique VoIP based system, vendor management, adhering to IT General Controls compliance and participating in IT Global Initiative.
• Worked with cross functional teams to maintain systems that are only for the sole usage of Confidential Inc. employees like Sales Quotation System (SQS) and The Intelligent Enterprise (TIE).
• Maintained & troubleshoot SSL VPN on Citrix NetScalar MPX that can handle 100 concurrent sessions.
• Ordering and managing Leased Lines, Point-to-Point and MPLS connections between various SCI sites.
• Configuring and troubleshooting Site to Site IPSec VPN between Firewalls/Routers connecting various sites.
• Currently maintaining security gateways (clustered firewalls) and completely competent in creating Policy Packages for different gateways using Smart Dashboard. (Security Management Server)
• Append/Modify Firewall Security Rule Bases to support and secure the network infrastructure.
• Installed and currently administering Application Control Software Blade, Identity Awareness Blade and Intrusion Prevention System Software Blade on Check Point Firewalls.
• Configured a hot swap firewall (Checkpoint R70), which is an exact replica of the existing firewall. In case the primary firewall goes down the hot swap firewall has to be manually plugged into the network to start processing the Internet traffic from San Diego and Tempe sites.
• Internet Upgrade in San Diego from 3M to 6M: Ordered and coordinated installation of 6M ISP circuit with vendor in San Diego office and upon installation configured routing on the router to provide connectivity between all SCI sites and Global networks.
• Implementing IP Addressing schemes to accommodate requirements in an enterprise branch office network.
• Administered SCI VMware farm that includes 20 ESX hosts with redundancy enabled.
• Maintaining a unique system called as iPass Roam Server which allows SCI users to connect to free wifi and still encrypt their wireless connection.
• Creating configuration backups for all the network devices and working with vendors to establish service contracts and support contracts for the devices in the network.

Confidential, San Jose CA

Network Hardware Engineer

Responsibilities:

• Performed system testing for the next-generation projects, based on IEEE 802.3 standard for 10BaseT, 100BaseT, 1000BaseT and Multi-Gig Switches.
• Worked with different kind of test fixtures with respective test equipment and followed test strategies and processes for products being introduced to production under lead engineer’s direction.
• Performed automation/semi automation tests using CPP Sequencer software including Lab View and Ixia.
• Experience in create set up for Ripple-Noise test for power over Ethernet Phy.
• Hands on experience for High Energy tests like CDE, Hipot also performed Cable-Diag test.
• Analyze real time component failures to determine and informed to lead engineer. Very familiar with Jitters, Harmonics, Distortion, Return Loss, Common Mode and Differential mode signals.

Confidential

Network Engineer

Responsibilities:

• Experience on configuring Cisco routers such as 7200, 3900, 2900, 2800, 2600 series and switches 5500, 5000, 4500, 3800, 3600, 3500, 2900 series.
• Configured Cisco 2600, 2800 and 3600 series routers with routing protocols BGP, OSPF, EIGRP and RIPv2.
• Configured Cisco Catalyst 3500, 3800 series for implementing VLANs segmentation improve security, port-security, VTP, Rapid PVST+, Vlan trunking as dot1q in inter-Vlan routing.
• Configured and extended VLANs from one network segment to another segment between Different vendor switches like Cisco/Juniper.
• Configured route redistribution between OSPF and EIGRP in a multi-area OSPF network plus route update manipulation using route-maps; distribute lists and AD manipulation and link negotiation.
• Configured HSRP on Cisco 2900, 2800 routers to obtain default gateway redundancy and high availability.
• Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500, PIX security appliance, Failover DMZ zoning & configuring VLANs, routing protocols, NAT with the firewalls as per the design. Configured remote access IPSEC VPN on Cisco ASA 5500 series.
• Designed and implemented DMZ for Web, Mail & FTP Servers using Cisco ASA5500 Firewalls
• Involved in migration from EIGRP to OSPF routing, upgrading legacy 6509 core switches to 4510 .
• Implemented network redesign of enterprise security infrastructure, including firewalls, VPN solutions (trusted site to site, DMVPN, multiple factor authentication remote access systems, log consolidation and monitoring).
• Configured AAA Security (RADIUS and TACACS+) for network access servers and routers.
• Working knowledge of upgrade devices of Cisco Nexus 7000, 5000, 2000, Catalyst 6500, 4500.
• Administered the Network traffic using Wireshark and maintained the efficiency of the network by applying different switching and routing techniques. Implemented and verified WAN links.
• Installed and maintained VMware ESXi Servers on server machines.

Confidential

Network Engineer

Responsibilities:

• Extensive experience on deploying and configuring Cisco routers such as 3900, 3800, 3600, 2600, series and switches 6500, 5500, 4500, 3800, 3500, 2900 series.
• Removed Cisco 3600, 2600 series routers; replaced with Cisco 3745 for configuring BGP, OSPF, RIPv2, EIGRP, Static and default route also worked on HSRP and GLBP for first hop redundancy and load balancing.
• Migrated from Cisco 2900 series switches from the current infrastructure and replaced them with the Cisco 6509 and 3560 L2/L3 switches. Configured RSTP, MST and used VTP with 802.1q trunk encapsulation, Ether channels using PAgP and LACP on Cisco 6509 and 3560.
• Configured, Monitored and Troubleshoot Cisco’s PIX firewall, ASA 5500 security appliance Firewall, integrated firewalls with Gateway Anti-Virus and web filtering applications.
• Configuration of Site-to Site IPSec VPN between two branch offices and also SSL VPN for users accessing corporate applications and servers from various locations
• Designed ACLs, VLANs, troubleshooting IP addressing issues on switches and routers.
• Installed wireless access points (WAP) at various locations in the company. Dealt with Cisco IP phones and VOIP devices and configured Voice VLANs for prioritizing voice on the network.
• Implemented TCP/IP and related services like DHCP/DNS configuration on the servers to allocate, resolute the IP addresses from Subnet.
• Prepared, updated and maintained technical and logistical network documentation and backups plus escalation procedures and customer notifications.

Confidential

Network Support Technician

Responsibilities:

• Installed and configured Active Directory for in Dell 1950 PowerEdge server.
• Installed and configured the Operating systems of Win 7, 8, Windows Server 2008.
• Assisted Lead Network Engineer in the configuration, implementation and operation of Cisco 2811, 2611XM, 2514 routers as well as Cisco 5000, 3550, 2950 switches.
• Configured VLANs, VTP, and RSTP in Cisco Catalyst 3800.
• Assisted in configuration of Cisco Routers for OSPF, RIPv2 and EIGRP.
• Configured the DNS, DHCP on Windows server 2008 R2.
• Provided extensive Desktop/Laptop support on software and hardware.
• Build and setup servers; desktops and laptop for new user.
• Upgrade laptops and Desktops Operating System.
• Prepared, updated, and maintained technical and logistical network documentation.
• Monitored core network services including data sharing, anti-virus and back up.
• Configured Laser printers to be shared across the network.
• Provided testing for network connectivity before and after install or upgrades.