PROFESSIONAL SUMMARY:

• Over 8 plus years of extensive hands - on experience in Cisco network design, deployment and troubleshooting.
• Experience working on Juniper, Extreme, CISCO, and HP networks in an enterprise environment.
• Good understanding of networking concepts such as routing protocols, VLANs, IP address management, and network security.
• Worked on Cisco 7200, 3800, 3600, 2800, 2600, 2500,1800 series Router and Cisco 2900, 2960 3500, 3560, 3750-x, 3850, 4500, 5500, 6500 series switch.
• Experienced with Juniper: EX-2200, EX-4200, EX-4500, MX-480 and M Series, SRX210 and SRX240. 
• Experienced in Data Center products such as Nexus 7k, 5k, 2k, 1k and Cisco unified Computing System (UCS), and F5.
• Configured and supported F5 and NetScaler load balancer to support corporate internal applications.
• Integrated Palo Alto next-gen firewalls with overlay VMware NSX SDN network
• Configuring and Troubleshooting NetScreen Juniper firewalls 5GT, 208, SSG 5, 20, 140, 550, 550M and high end firewalls like ISG 1000, NS 5200 using NSM, Juniper ScreenOS, Juniper JunOS (SRX).
• Hands-on experience with Ether Channels, Spanning Trees, Trunking, ACLs, Syslog.
• Knowledge about implementation and troubleshooting of complex layer 2 technologies such as VLAN Trunks, VTP Ether channel, STP, RSTP and MST.
• Integrated and evaluated Cisco ACI, VMware NSX, and Arista CVX SDN solutions
• Experience working with Juniper Routers (MX960, MX480, M320) and Switches (EX2400, QFX Virtual Chassis Switches) with BGP, OSPF, VSTP, MST layer 2 and layer 3Technologies
• Design, implementation and use of F5 load balancers, A10 Thunder, BIG-IP, 3-DNS, optimize and control network traffic. Also for cisco ACE load balancers too. 
• Managed wireless users like guests and other groups in the controller models like cisco 5508 series, 4402/WiSM series
• Experience in implementing site-to-site, remote access VPN, DMVPN Technologies using GRE, IPSEC & MPLS
• Good Experience working with Cisco Nexus 9K and Nexus 7K for data center fabric layout and modelling.
• Extensively used TCP/IP tool like TELNET for remote login to the routers and SSH for secure login.
• Configuration of Cisco routers and layer 3 switches to enable and troubleshoot a variety of features such as trunks, Vlans, Ether channels, port security, routing protocols including EIGRP, OSPF & BGP and other related technologies such as multicasting, IP Telephony & IP Video.
• Complete basic configurations on the F5 Big-IP LTMs and GTM load balancer on existing network to split traffic on web-servers. 
• Worked on Riverbed devices for WAN bandwidth Optimization in the data centers for the sensitive market data applications
• Migrated clients to New Juniper Q-Fabric Datacenter on time and with no impact to production
• Knowledge working with SDN test lab on cumulus Linux, Open Stack, Ansible tools
• Experience with convert Checkpoint VPN rules over to the Cisco ASA solution. Migration with Cisco ASA VPN experience.
• Enhancing Network performance by conducting Researches, analysis and recommending the implementation of software or hardware changes to rectify any network deficiencies.
• Efficient at use of Microsoft VISIO/Office as technical documentation and presentation tools
• Working knowledge with monitoring tools like Solar Winds, Riverbed NetProfiler, Smart Net Total Care, Cisco Prime & network packet capture tools like Wire-shark
• Worked on Cisco Routers, Active /Passive Hubs, Switches, Juniper SRX firewall, VP
• Good interpersonal & Communication Skills, working with customers on solving network problems in timely manner.

TECHNICAL SKILLS:

Routing Protocols: Understanding of RIP, OSPFv2 and v3, EIGRP, and BGP

Network Security: Understanding of VPN, RADIUS, 802.1x, Port Security, and Firewalls.

Hardware: Worked on Dell, IBM, HP, Macintosh machines

Switches/Routers: Worked on Extreme Networks (x450e, x650, BD8810 chassis), Juniper MX, M, T, PTX series (EX4550, EX6200), HP Procurve (8212zl, 5412zl chassis), Juniper M & T Series, Cisco 6500, 3600, 2950, CISCO Nexus 2000, 5000, and F5 - BigIP LTM.

LAN Protocols: VLAN, VTP, Inter-Vlan routing, ISL, dot1q, STP, RSTP, PVST, LLDP, HSRP, GLBP, Ethernet, Port security.

WAN Technologies: Frame Relay, X.25, E1/T1/DS1/DS3

Firewalls: Worked on Cisco ASA 5500, Fortigate 40c.

Security Technologies: Cisco FWSM/PIX/ASDM, Nokia Checkpoint NG, TACACS+, RADIUS, Juniper SRX, ACE Module and F5 Load Balancers, A10 Thunder Load Balancers

Services: Done configuration for VLANs, STP, LLDP, SNMP, ELRP, DMZ and redundancy protocol (HSRP & VRRP)

Wireless Networks: Worked on MERU, HP, Juniper access points and wireless controllers.

Platform: Windows 98/2000/NT/XP/Vista/7, Ubuntu, Mac IOS

WORK EXPERIENCE:

Confidential, Cypress, CA

Lead Network Engineer

Responsibilities:

• Project lead for site move and refresh. Configured Cisco 4331 and 2911 as primary and secondary routers following company standards, Brocade switches, Kronos Clock and Cisco wireless APs.
• Worked on project to migrate Cisco ASA firewalls to Palo Alto firewalls. Responsible for configuring and supporting the PA Firewall.
• Responsible for configuring and documenting the process for backup over LTE for all sites using a Cradlepoint CBA850 or Opengear.
• Created a step by step documents to enable end users to set up Cradlepoint CBA850 at remote sites.
• Configured and supported VIPs on F5 load balancers. Responsible for SSL Certificate renewals for SSL handoff on the load balancer and managed the SMTP whitelist for the company.
• Configured and replaced end of life Cisco switches with the company standard Brocade ICX7250.
• Monitoring, Troubleshooting and upgrading network hardware at multiple company sites throughout USA.
• Onsite support for user issues and troubleshooting connectivity issues in branch network environment.
• Health check/Site survey for newly acquired companies, for integration into the main network.
• Configured Vlans, port security, TACACs etc. on Cisco 3560 switch for lab environment for VoIP testing.
• Configuring DMVPN, EIGRP, BGP, Policy routing based on the site requirements and connectivity available to datacenters.
• Troubleshooting connectivity issues with Cisco ASA 5505.
• Managed user access based on policies on cisco ASA for VPN connectivity to company network.
• Training and assisting entry level Network Engineers to help understand company standards for Network infrastructure.
• Responsible for documentation and management of Router and switch inventory.
• Responsible for updating network diagrams for remote locations using Visio.

Confidential, Monterey Park, CA

Sr. Network Engineer

Responsibilities:

• Migrated cisco3550 switches to 3750 POE switches to provide support to Wireless APs.
• Installed cisco 5508 WLAN controllers and configured Access points.
• Configure Cisco 43xx and 28xx routers, Nexus 3048 switches, 5508 wireless LAN controllers, and 37xx wireless access points.
• Upgrading network equipment like Juniper (MX960, MX480, M320, EX45, M120).
• Experience with Cisco Nexus Switches (NXOS) 1000, 3000, 5000, 6000, 7000, & 9000
• Managing and troubleshooting of Juniper M320 routers including installation, upgrade, configuration and network management.
• Responsible for creating network configurations for Cisco ASR9k, CRS, Nexus 9000,7000, 7609, 7613, 6509, 4509, 5500, 3550, 2620, 2621, 1720, Junipers MX960, M320.
• Configured Aruba WAP and Wireless controller 66xx/57xx on Cisco Prime, VMWare NSX for proper access of Boingo wireless internet
• Design and implementation of Data Centre Core based on Juniper Q-Fabric, SRX3600 & Brocade ADX 4000
• Performed Assessment, Installation and configuration of remote sites to allow connection to the Core network.
• Configure F5 Load balancer BIGIP to provide Load Balancing for server farm. 
• Maintain a high level of functionality and availability of all VPN links, routers, Gateways, switches, firewalls, load balancers, and WAN links (Cisco, Cisco Call manager, (UCM), UCCX, Check point and Foundry hardware).
• Designed 10 gigabit networks using Cisco Nexus 7000 series switches, Checkpoint NGX firewall and Cisco 3800 series routers
• Configuration and troubleshooting of BGP, OSPF, VRF-liteon ASR1K, Nexus7K/9K, Juniper MX960 routers/switches.
• Configuring IPv6 and implementing OSPFv3. Maintaining and troubleshooting the network.
• installation using Cisco 7500, 8500, 5508 Wireless LAN controllers, Cisco Prime Infrastructure equipment and Cisco Identity Services Engine (ISE).
• Configured, maintained and troubleshot F5 LTM and A10 Thunder load balancer for load balancing, redirect purposes. 
• Designed and deployed a Cisco Identity Services Engine (ISE) solution (wired, wireless, and
• VPN users) for a commercial client with converged access switches and ASA firewalls
• Experience in working with Nexus 7010, 5548, 5020, 2148, 2248 devices
• Network Security: Internet Content Filtering, Knowledge of Firewall, ASA, Cisco FWSM/PIX/ASDM IPSec, IPS/IDS (snor), Cisco NAC, NAT/PAT, Ingress &Egress Firewall Design and VPN Configuration.
• Designed and Implemented ASA5550 firewall’s interfaces with FTP, DNS, HTTP servers on DMZ with different security levels.
• Provisioning and implement MPLS VPN CE routers for Telefonica US TOP VIP Clients.
• Successfully managed clients' network MPLS VPN solution
• Configure and Manage BGP-MPLS VPN networks between the Corporate office and the other VPN locations of the enterprise.
• Installed and configured Virtual Center, VMware SAN and NAS based data stores, virtual networking devices, HA, VMotion, DRS, and ESX clusters in a boot to SAN environment.
• Extensive experience in virtualization platforms with hypervisors related to VMware vSphere 5.x, ESX/ESXi4.x, 5.x, VMware Workstation, played key role in handling critical issues and supporting all aspects of projects lifecycle through ITIL framework.
• Maintaining network performance by performing network monitoring and analysis, and performance tuning; troubleshooting network problems
• Responsible for network management including network performance tuning, security monitoring, file server backup, and email server administration
• Working experience on F5 load balancer for load balancing, redirect url, managing url for servers. 
• Configure Data Centers with hardware including Cisco ASA & Firepower components
• Configure and maintain Cisco Firepower IPS/IDS and Imperva WAF
• Experienced in Plan, Build, and Deliver of core infrastructure solutions LAN/WAN/WLAN
• Provided user-troubleshooting services for LAN connections to the network and SSL troubleshooting via smart cards and alternate tokens.
• Used multiple network monitoring tool Solar Winds, Cisco Prime for supporting the existing core network environment and Network edge devices
• Hands on experience in configuring Cisco Prime 2.1 and WCS wireless platforms
• Experience in Citrix NetScaler application delivery controller
• Configuring Virtual Chassis for Juniper switches EX-4200, Firewalls SRX-210
• Designed 10 gigabit networks using Cisco Nexus 7000 series switches, Checkpoint NGX firewall and Cisco 3800 series routers
• Creating and updated network shares, adding permissions software and groups for users through Active Directory.
• Configuration and verification of redundancy protocols HSRP on Cisco Layer 3 devices for load balancing and fail over.
• Troubleshoot and Worked with Security issues related to Cisco ASA/PIX, Checkpoint, IDS/IPS and Juniper Netscreen firewalls.
• Created documents for various platforms including Nexus 7k, ASR9k, and ASR1k enabling successful deployment of new devices on the network.

Confidential, Washington DC

Network Engineer

Responsibilities:

• Assisted in troubleshooting LAN connectivity and hardware issues in the network of 100 hosts.
• Studied and analyzed client requirements to provide solutions for network design, configuration, administration, and security.
• Responsible for overall standards, design, implementation, testing and ongoing operations of IPSEC VPN setup for customers and 3rd party accounts
• Involved in troubleshooting IP addressing issues and Updating IOS images using TFTP.
• Maintained redundancy on Cisco 2600, 2800 and 3600 routers with HSRP.
• Hands-on expertise with routers 2600, 2900, 3600, 3900, 7200, 7600, ASR-901, ASR-903, ASR 5500, ASR-9010 and Juniper ACX, E, M, MX960 series.
• environment for Juniper Q-Fabric and load testing, post result analysis. This project includes configuring
• Installation and Administration of Fail over cluster in Windows 2000/2003/2008 environment.
• Migrated vmware production infrastructure into a hyper v infrastructure with High Availability configuration.
• Designed, Implemented and Maintained OSPF L3 Solution of scalable for SUNY Levin environment including: NetApp, Blade Center, Server 2008, Hyper-V, VMware, Exchange 2007/SharePoint 2007
• Co-ordinate with the Data Network and Security team and come up with possible solutions.
• Provide solutions to Tier 1 escalated issues and tickets.
• Build various network technologies from the ground up specifically Bluecoat Web proxies
• Configuring VRRP & GLBP and VLAN Trunking 802.1Q, STP, Port Security on Catalyst 6500 switches.
• Work on Physical site Inventory verification, gather information of various Cisco Network devices and Security Devices to develop Run book and Spec Book.
• Configuring network access servers for AAA Security Using Juniper IC (Infranet Controllers) MAG-SM360, MAG-4610.
• Virtualize datacenter utilizing VMware or Hyper V depending on budget requirements
• Servers, SQL Server 2008 R2, Server 2008 R2 Core for Hyper-V environment and Windows 7 desktops
• Involved in communication to be testing, patch activity on Hyper V,
• Creating VM on hyper v host servers and on cluster, building physical servers and performing server hardening and decommissioning
• Stood up the Disaster recovery Netscalers, tested and validated.
• Troubleshooting and installing of CRS, ISR, GSR, ASR9000 and Nexus devices
• Used multiple network monitoring tool NetProfiler by Riverbed and Smart Net Total Care for supporting the existing core network environment and Network edge devices
• Design and configuring of OSPF, BGP on Juniper Routers (MX960, MX480) and SRX Firewalls (SRX240, SRX550)
• Upgrade Junos manually as well as using Junos Space on MX960, MX480
• Installed ESX VMware 5.0/5.5, configure, and maintain server and database store systems.
• Created a backup and recovery policy for software application and verified peripherals are working properly.
• Monitor performance of network and servers to identify potential problems and bottleneck and configured IOS.
• Responsible for complete datacenter layout and migration, configured ACI after migration of datacenter using nexus 9k, 7k.
• Exposure of large complex Checkpoint, Cisco ASA & Palo Alto Firewalls Environment.
• Checkpoint, Cisco ASA Firewalls, Catalyst 6509 Switch/Routers, Palo Alto & Juniper SRXs. Routed/Routing Protocols: BGP, OSPF, and MPLS
• Daily support of Cisco platform devices including Nexus 9K, 7K, 5K and 2K, Catalyst 4500 and 6500 series, 1800, 2800 and 3800 series routers, ASA 5500 series, 3500 and 2900 series
• Configured VPC, FEX and VDC's on Nexus 5K, 7K
• Performed OSPF, BGP, DHCP, Bundle Ethernet implementation on ASR 9K redundant pair.
• Migrated SAP based applications from old Cisco ACE load balancers to new VMware NSX edges.
• Worked with Cisco Call Manager Express, CUCM and Cisco Unity Express. Also with CUE Voicemail system and configured VOIP phones in network.
• Upgrading VOIP Call Manager and by implementing Cisco WAAS
• Configuring Cisco Catalyst 2960, 3750, 4500, 6500 and Nexus 3000, 5000, 6000, 7000 series switches and Cisco 2600, 2800, 3600 series routers, Load Balancers & Cisco Firewalls
• Monitoring Traffic and Connections in Checkpoint and ASA Firewall.
• Configuring Checkpoint Firewall in IPSO, Secure Platform and GAIA platforms. 
• Interacted with support services to reduce the downtime on leased lines.
• Monitor the operability and reliability of the network.
• As a Team member also worked with F5 load balancer and SONET technology.
• Responsible to help team for troubleshoot, configure and resolve the issues regarding F5.
• Support design and planning of Juniper MX, EX and TX Series network routing products within the Customer infrastructure.
• Good working experience on F5 load balancer configuration, HA configuration, maintenance. 
• Support ongoing efforts in defining best practice policies for Juniper product applications used by Customer.
• Proactively perform corrective maintenance for IP/MPLS network.

Confidential

Network Engineer

Responsibilities:

• Configuring various advanced features (Profiles, monitors, iRules, Redundancy, SSL Termination, Persistence, SNATs, HA on F5 BIGIP appliances SSL termination and initiation, Persistence, Digital Certificates, executed various migration/upgrade projects across F5 and hands on with F5 BIGIP LTMs/EM.
• Troubleshoot and Worked with Security issues related to Cisco ASA/PIX, Checkpoint, IDS/IPS and Juniper Net screen firewalls
• Involved in Switching Technology Administration including creating and managing VLANS’s, Port security, Trunking, STP, InterVlan routing, LAN security etc.
• Troubleshoot and Worked with Security issues related to Cisco ASA/PIX, Checkpoint, IDS/IPS and Juniper Netscreen firewalls, TACACS+ and RADIUS servers.
• Managed two divisions of 70 Juniper SRX firewalls and 200 Juniper/Cisco switches
• Implemented and supported fully redundant, fault tolerant LAN and WAN configurations involving redundant Cisco hardware and connectivity, load-balanced configurations, and failover configurations using network protocols including OSPF, BGP, HSRP, VRRP, and other high-availability standards
• Improved client productivity by solving performance issues in production
• Monitoring the Cisco Prime LMS for different Network Alerts and troubleshoot networking issues.
• Monitor /maintain network connectivity and traffic using network monitoring tools Like Cisco prime LMS to ensure optimal performance.
• Designing, planning, implementation and support of exiting Cisco CUCM 8.5 server migration in to CUCM 11.X.
• Maintain and configure all the Cisco Voice Over IP phone system, deploying Cisco 7962, 7942 IP phones
• Following the QoS standards in managing the WAN links
• Developed Layer 2 QoS support for the Provider Backbone Bridging (L2VPN services) on the Cisco ASR9K devices
• Experience working with Nexus 7K, 5K, 2K devices.
• Deploying and decommission of VLANs on core ASR 9K, Nexus 9K, 7K, 5K and its downstream devices and also configure 2k, 3k, 7k series Routers
• Hands-on experience in working with Cisco 7600VXR, ASR1K, 6500, Nexus7K/9Kand Juniper MX960routers and switches
• Participated in the installation, configuration, and post installation daily operational tasks and configuration of the deployment of Cisco Nexus equipment
• Created a flexible SNMP client to get SNMP data such as BGP/QoS/Interface/System Health from customer's router
• Assisted with installation of Juniper firewalls to replace existing Firewalls which increased network uptime.
• Deploying and decommissioning the VLANs on core Nexus 7K, 5K and its downstream devices.
• Performed OSPF, BGP, DHCP, Bundle Ethernet implementation on ASR 9K redundant pair.
• Configured F5 Load balancers and monitored the Packet Flow in the Load balancers.
• Converting Cisco ACE load balancer to F5 LTM load Balancer in data center environment 
• To secure configurations of load balancing in F5, SSL/VPN connections, Troubleshooting CISCO ASA firewalls, and related network security measures. 
• Experience with Juniper JUNOS operating system and working on M and MX series routers
• Design and Configuration of user policies and group policies on Active directory.
• Performed daily Server backups on all servers in my department LAN, using Veritas Backup Exec.
• Configuring and Troubleshooting NetScreen Juniper firewalls 5GT, 208, SSG 5, 20, 140, 550, 550M and high end firewalls like ISG 1000, NS 5200 using NSM.
• Used DHCP to automatically assign reusable IP addresses to DHCP clients.
• Implemented ACLs and authenticated (EIGRP, BGP) to ensure high security on the network.
• Installed Cisco Wireless NIC’s (network interface cards) for Desktop PC’s and installed Cisco WAPs (wireless access point) and Cisco Routers.

Confidential

Network Support Engineer

Responsibilities:

• Designed and implemented remote dial up solution for clients.
• Installed and configured workstations for IP based LAN’s.
• Installed and configured DHCP Client/Server.
• Installed and configured CISCO ASA and Checkpoint firewall.
• Configured and managed firewall networks using L3 protocols like RIPv2
• Configured VLANs, Private VLANs, VTP and Trunking on switches.
• Configured L2 and L3 security features on network devices.
• Troubleshoot and Worked with Security issues related to Cisco ASA/PIX, Checkpoint, IDS/IPS and Juniper Netscreen firewalls.
• Utilized Network Instruments for packet analysis and to monitor network
• Configuring Cisco routers and switches to enable and troubleshoot a variety of features such as trunk, Vlan, Ether channel, port security, routing protocols including EIGRP, OSPF & BGP and other related technologies such as multicasting, IP Telephony & IP Video.
• Administer and maintain DNS, DHCP, WINS and group policy
• Configuring, implementing and troubleshooting F5 load balancer in the enterprise network. 
• Worked with F5 Load balancing, IDS/IPS, Bluecoat proxy servers and Administrating. 
• Implemented Positive Enforcement Model with the help of Palo Alto Networks
• Hands-on work in Inter-vlan routing, redistribution, access-lists and dynamic NAT
• Configured IT LAN/WAN elements and held responsibility of maintaining and monitoring network performance
• Performed Configuration on ASR 9K Pairs includes HSRP, Bundle Ethernet Config, Assigning DHCP profiles.
• Deployed all Sonus equipment in Data Centers and customer POP's
• Provided Tier1 technical support; assisted users facing network problems. Performed advanced troubleshooting, diagnostics and provided tier/level-1 solutions to network failures
• Performed Network Migration from RIP to OSPF and EIGRP
• Provided Network infrastructure support to routing and switching equipment
• Redistributed routing protocols and Frame-Relay configurations
• Designed the layout for cable installations
• Monitoring and analyzing the flow of packets using packet capture tool Wireshark.