SUMMARY:

• CCNP certified network engineer with 8.2 years of experience in IT industry which includes expertise in the areas of Routing, Switching, Firewalls management, VPN management, and Administration and troubleshooting.
• Proficient in configuration & troubleshooting of routing protocols: MP - BGP, EIGRP, HSRP, OSPF, BGP and MPLS.
• Involved in configuration setup and troubleshooting of Cisco and juniper devices to perform functions at the Access, Distribution, and Core layers.
• Experience working with network Automation using Python
• Experience working with Nexus 9200, 9300, 9300-EX (ACI), Nexus 7018, 5020, 2148, 2248 devices.
• Experience working with Cisco Nexus 2148 Fabric Extender and Nexus 5000 series to provide a Flexible Access Solution for datacenter access architecture.
• Experience with configuring Nexus 2000 Fabric Extender (FEX) which acts as a remote line card (module) for the Nexus 5000.
• Hands on experience in troubleshooting and deploying of various IP Routing Protocols OSPF & BGP on Juniper routers.
• Implemented security policies using ACL, Firewall, IPSec, VPN, AAA Security TACACS+, and Radius on different series of routers.
• Extensive knowledge of deploying & troubleshooting TCP/IP, Implementing IPv6, Transition from IPv4 to IPv6, Multilayer Switching, UDP, Fast Ethernet, Gigabit Ethernet, Voice/Data Integration techniques.
• Extensive knowledge of deploying & troubleshooting TCP/IP, Implementing IPv6, Transition from IPv4 to IPv6, Multilayer Switching, UDP, Fast Ethernet, Gigabit Ethernet, Voice/Data Integration techniques.
• Excellent skills to implement VLANS, private VLANS, Voice VLANS, Installing VOIP capable wares, Port security, STP and RSTP (802.1W), standard and extended access lists for managing access based security, creating root views for administrative privileges.
• Extensive knowledge of deploying & troubleshooting TCP/IP, Implementing IPv6, Transition from IPv4 to IPv6, Multilayer Switching, UDP, Fast Ethernet, Gigabit Ethernet, Voice/Data Integration techniques.
• Worked on Juniper devices like EX-2200, EX-4200, EX-4300, MX-80, MX-480, M Series, SRX210 and SRX240.
• Ability to manage all phases of network installation and administration.
• Excellent customer management/resolution, problem solving and debugging skills with good verbal/written communications and presentation skills. Administration of the AWS cloud environments and Working with virtual environments.
• Experience with convert Cisco ASA rules over to the Juniper SRX based solution.
• Responsible for Cisco ASA, Juniper SRX firewall administration across customers networks.
• Excellent skills to implement VLANS, private VLANS, Voice VLANS, Port security, STP and RSTP (802.1W), standard and extended access lists for managing access based security, creating root views for administrative privileges.
• Extensive knowledge of deploying & troubleshooting TCP/IP, Implementing IPv6, Transition from IPv4 to IPv6, Multilayer Switching, UDP, Fast Ethernet, Gigabit Ethernet, Voice/Data Integration techniques.
• Experience in Network Management Tools and sniffers like SNMP, HP-Open view, Wireshark and Cisco works to support troubleshooting issues.
• Adept in preparing Technical Documentation, MOPS and presentations using Microsoft VISIO/Office.
• Well organized, Self-starter, Quick learner, Self-Motivated, Team player with analytical, technical and communication skills.

TECHNICAL SKILLS:

Routers: Cisco 2800,2900,3900, ASR 1K, ASR9K, Juniper M series, MX series, SRX series

Switches: Cisco 3560, 3750,3580, Nexus 7K, 5K,2K, EX-4300, EX-4500, QFX-5100

Load Balancer: Cisco CSS, F5 Networks (Big-IP)

WAN Optimization: Cisco WAAS, PPP Multilink

Routing: OSPF, EIGRP, BGP, PBR, Route Filtering, Redistribution, Summarization, Static Routing

Switching: VLAN, VTP, STP, PVST+, RPVST+, Inter VLAN routing & Multi-Layer Switching, Multicast Operations, Layer 3 Switches, Ether channels, Transparent Bridging

LAN: Ethernet, Fast Ethernet, Gigabit Ethernet, FDDI, CDDI, Frame Relay

WAN: Channelized links (E1/T1/E3/T3), Fiber Optic Circuits(OC-3, OC-12), Frame Relay

Features & Services: IOS and Junos Features, HSRP, GLBP, VRRP, NAT, SNMP, SYSLOG, NTP, DHCP, CDP, DNS, SFLOW, JFLOW TFTP and FTP Management

NEXUS Features: VDC, VPC, VRF, FEX, Fabric Path, F & M Series line cards

AAA Architecture: TACACS+, RADIUS, Cisco ACS

Monitoring: Wireshark, Solarwinds, Xenoss

Language: Python

PROFESSIONAL EXPERIENCE:

Confidential, Boston, MA

Senior Network Engineer

Responsibilities:

• Involved in the migration of current datacenter setup from 6500 based data centers to Nexus based data center.
• Involved in Full Lifecycle experience for change and implementation of the network.
• Experience working with Nexus 9300, 7010, 5020, 2148, 2248 devices.
• Configuring VPC (Virtual Port Channel), VDC (Virtual Device Context) in Nexus 7010/7018 devices.
• Implementing of (LAN) VLANs, VTP, Spanning Tree (STP), Trunking (dot1q and ISL) and Ether channel across the distribution/access layer switches.
• Configuration of VDC, VPC, VRF, FEX, and MST on data center infrastructure Nexus 7K, 5K, 2K and supported catalyst switches.
• AWS cloud management - for e.g. creating VPC, installing VM using AMI and creating AMI for different environments. Creating network connectivity and ensuring security parameters are correct. Ability to
• Troubleshoot issues in a cloud hosting environment. Installed, configured multiple operating systems onsite and provisioned similar instances on AWS cloud.
• Configuring Static, IGRP, EIGRP, BGP and OSPF routing protocols on Cisco 1600,2600, 2800, 3600, 7300 series routers.
• Configuring RIP, Static routing, BGP, OSPF on Juniper M and MX series routers
• Built Python Scripts to help our engineers deploy VIPs to our F5's in AWS using F5's REST API, since they were using Apple MACs, also to allow for deployments using Linux hosts.
• Working on a broad range of topics such as routing and switching, dedicated voice access, planning and implementation, large-scale high-visibility outages, change management coordination, proactive monitoring and maintenance, disaster recovery exercise and core network repairs.
• Network Redesign for Small Office/Campus Locations. This includes changes to both the voice and data environment.
• Experience configuring VPC, VDC and ISSU software upgrade in Nexus 7010
• Experienced with deployment of Nexus Switching Platforms (3K, 6K, 7K, 9K)
• Experience working with Juniper devices like EX-2200, EX-4200, EX-4500, MX-480, M Series, SRX650, SRX240.
• Configuring SRX-240 devices as an HA pair for redundancy and Performing JUNOS code upgrades across multiple different branch firewalls.
• Configured Cisco switches 6500, 4500, 3750 to support voice and data with custom QoS policy
• Automated network implementations and tasks and designed monitoring tools using python scripting.
• Developing Python libraries and tools to automate hybrid physical and virtual machines and network infrastructure.
• Developing automated tests in python to verify correctness of libraries and tools .
• Building test plans, test suites and manual or automated test cases for assigned changes.
• Experience with setting up IPSEC VPN on Juniper SRX 3600 Firewalls towards the multiple Customer sites as backup path to the datacenter.
• Configuration of MX-80 routers with OSPF and peer with BGP to service providers for redundancy.
• Designing and implementing OSPF Areas for reliable Access Distribution and for Core IP Routing.
• Involving in configuration of Juniper and Cisco ASA firewalls and applying rules to pass servers and switches through firewall.
• Setting up and Migrating DMZ's from existing setup to an integrated new setup in the environment.
• Experienced in installation and troubleshooting of Nutanix network
• Configuring various advanced features (Profiles, monitors, I Rules, Redundancy, SSL Termination, Persistence, SNATs, HA on F5 BIGIP appliances SSL termination and initiation, Persistence, Digital Certificates, Executed various migration/upgrade projects across F5 and hands on with F5 BIGIP LTMs/EM.
• Worked on F5 LTM series like 7050, 5050, 2200 for several applications and their availability.
• Responsible for the configuration of Virtual Servers, Nodes, and load balancing Pools and configuring load balancing algorithms.
• Configuring Session based persistence and I have leant configuring writing i-Rules for specific redirection purpose and also i-rules for persistence.
• Experience working with Cisco Nexus 2148 Fabric Extender and Nexus 5000 series to provide a Flexible Access Solution for datacenter access architecture.
• Experience with migrating from IOS to IOS-XR on ASR 9K.
• Performing OSPF, BGP, DHCP Profile, HSRP, IPV6, Bundle Ethernet implementation on ASR 9K redundant pair.
• Implementing and configuring GLBP (on core switching and also for VPN redundancy), VRRP on MX 480 devices in a different location of office on the switched network and managing the entire multilayer switched network.
• Working on multiple Port open requests for multiple business units in the organization on ASA and SRX firewalls.
• Experience with Firewall Administration, Rule Analysis, Rule Modification.
• Configuring VLANs, VTP’s, enabling trunks between switches.
• Assisted with deployment of patches, cabling and configuration changes.
• Experience with virtualization applications as Citrix, DPS, Remote desktop, TCR.
• Configuring VLANs with 802.1q tagging. Configured Trunk groups, ether channels, and Spanning tree for creating Access/distribution and core layer switching architecture.
• Involving in the Support of network security and network devices such as routers switches and wireless access points.
• Configuring WLC-5505 and cisco 3502 wireless access points across branches.
• Ensure problems are satisfactorily resolved in a timely manner with focus on providing a high level of support for all customers.
• Coordinating with service providers for WAN link outages.
• Experience in Configuring, upgrading and verifying the NX-OS operation system.
• Responsibilities also include technical documentation of all implementations including visio drawings. Attending meetings and technical discussions related to current project.
• Experience with Project data and voice documentation tools & experience with developing network design documentation and presentations using VISIO
• Task with being the local Tools administration of Network Monitoring tools such as: Net Scout HPNA, Opsware and CA Concord eHealth and working through the integration with Spectrum for reporting the alarms from eHealth.
• Experience using Solarwinds Orion for monitoring/backing up device configurations and monitoring bandwidth.

Network Engineer

Responsibilities:

• Had been responsible in the Configuration of EIGRP, OSPF and BGP. Involved in the configuration & troubleshooting of routing protocols on Cisco 2900, 3900, ASR 9010, ASR 1002 devices across locations and datacenters.
• Had been responsible for Firewall Administration, Rule Analysis, Rule Modification on ASA 5585, SRX550 devices.
• Documented new VPN enrolments in a database and create standard procedures for further improvement.
• Troubleshoot traffic passing managed firewalls via logs and packet captures.
• Used Python scripting for automation.
• Experience MPLS connectivity using VRF id and have broad knowledge on multi-protocol label switching for (MPLS-VPN) and traffic engineering (MPLS-TE)
• Implemented automation solution for BIOS validation test cases through Python programming.
• Design, implement and administer IPv4 enterprise network infrastructure utilizing Juniper routers like Juniper MX80, MX 480 and MX960.
• Develop/capture/document architectural best practices for building systems on AWS
• Designing and Deploying dynamically scalable, highly available, fault tolerant and reliable applications on AWS
• Migrated complex, multi-tier applications on AWS
• Migrating the policy from Cisco ASA firewall into Palo Alto.
• Migrating an existing on-premises application on AWS
• Experience with deployment of Palo Alto firewalls for different NAT, video conferencing traffic
• Configured and maintained IPSEC and SSL VPN's on Palo Alto Firewalls.
• Configured ISE tunnels with Palo Alto to enable secure transport and cloud based/site-site VPN to AWS
• Install and maintain voice, video and data communications infrastructure systems and cabling.
• Hand-on Experience with configuring T1.5, Gigabit Ethernet, Channelized T3 and full T3, OCX, ATM, Frame-Relay and VOIP (Voice-Over Internet Protocol).
• Implemented cluster and configuration of SRX-100 Juniper firewall.
• Extensively worked on Juniper modelsEX-2200, EX-4200, EX-4500, MX-480, M Series, SRX210 and SRX240.
• Serve as part of a team of network engineers responsible for base wide network upgrade from Cisco Layer 3 Catalyst switches to Juniper Layer 3 EX4200 & EX3200 switches.
• Managed fast Layer 3 switched/routed LAN/WAN infrastructure as a part of Network team. The LAN consisted of Cisco campus model of Cisco 3750 at access layer, Cisco 6513 at distribution/core layer.
• Created standard access lists to allow SNMP, NTP and logging servers.
• Maintained F5 BIG-IP LTM 6900 for providing application redundancy, load balancing and policies.
• Configured VRRP & GLBP and VLAN Trunking 802.1Q & ISL, STP, Port Security on Catalyst 6509 switches.
• Configured VLANs with 802.1q tagging. Configured Trunk groups, ether channels, and Spanning tree for creating Access/distribution and core layer switching architecture.
• Configured BPDU Guard, port-fast, uplink fast and other spanning tree features.
• Negotiated VPN tunnels using GRE, IPSec encryption standards and also configured and implemented site-to-site VPN, Remote VPN.
• Experience with moving data center from one location to another location, from 6500 based data center to Nexus based data center
• Experience configuring Virtual Device Context in Nexus 7010.
• Experience with converting Cisco 6500 to Cisco Nexus in the data center environment.
• Experience working with Nexus 9300, 7010, 5020, 2148, 2248 devices.
• Deploying and decommission of VLANs on core ASR 9K, Nexus 9K, 7K, 5K and its downstream devices
• DesigningF5 solutions/support for migration work of applications and websites from Cisco CSS Load Balancers to the F5 BigIP Load Balancers.
• Installed and Configured the F5 BIG-IP LTM, configure virtual servers and associate them with pools for internal web servers
• Configuring rules and Maintaining Palo Alto Firewalls & Analysis of firewall logs using various tools
• Migrated from Cisco ASA 5540 firewall to Palo Alto 5250 Firewall
• Used Palo Alto 5250 Firewall for Enterprise Security, configured ACL’s for Internet requests to Server Farm in LAN and DMZ.
• Proactively involved in upgrade, maintenance, monitoring and support for the PA500 Palo Alto devices.
• Modified internal infrastructure by adding switches to support server farms and added servers to existing DMZ environments to support new and existing application platforms.
• Generating RCA (Root Cause Analysis) for critical issues of layer1/layer2/layer3 problems.
• Co-ordinated with the Data Network and Security team and came up with possible solutions.
• Performed Configuration on ASR 9K Pairs includes HSRP, Bundle Ethernet Config, Assigning DHCP profiles.
• Worked on Physical site Inventory verification, gather information of various Cisco Network devices and Security Devices to develop Run book and Spec Book.
• Participated in the review and resolution of security incidents that impact the confidentiality, integrity, or availability of systems.
• Participated in efforts to analyze business impact and exposure based on emerging security threats, vulnerabilities, and risks.
• Conduct risk analysis and/or risk assessments both inside and outside the company (examples include physical threats, Internet attacks, malicious code attacks, national security issues and compliance with regulations) and provide recommendations and/or mitigation strategies to management.
• Configured and troubleshoot of Cisco catalyst 6509, 7613 with supervisor cards.
• Experience with implementing and maintaining network monitoring systems (SolarWinds, Cisco works and HP Open view) and experience with developing complex network design documentation and presentations using VISIO.
• Created MOPS to get approval from peers to perform configuration add/ remove changes following change management process
• Support server infrastructure for VMware environments.
• Supported management and security compliance for the virtual infrastructure software and hardware.

Network Security Administrator

Responsibilities:

• Involved in the configuration of BGP as a WAN protocol, and OSPF/EIGRP as interior routing protocol.
• Monitored the NMS system for different Network Alerts.
• Ensured tickets are satisfactorily resolved in a timely manner with focus on providing a high level of support for all customers.
• Configured policies on PA-5050 for layer7 filtering.
• Involved in troubleshooting of DHCP and other IP conflict problems.
• Performed switching technology administration including VLANs, inter-VLAN routing, Trucking, STP, RSTP, port aggregation & link negotiation.
• Establish AWS technical credibility with customers and external parties
• Help customers build scalable, resilient, and high-performance applications and services on AWS
• Implemented Access lists and policy mapping on Juniper router installed in each branch across all the states
• Worked on Network Monitoring tools such as Ethereal, Wireshark, and SNMP monitoring.
• Was responsible for Checkpoint firewall management and operations across our global networks.
• Worked with Checkpoint Support for resolving escalated issues.
• Configured EBGP/IBGP policies also tested BGP attributes such as Local preference, MED, AS-PATH, Community and Weight.
• Actively involved in Switching technology Administration including creating and managing VLANS, Port security- 802.1x, Trucking 802.1Q, RPVST+, Inter-VLAN routing, and LAN security on Cisco Catalyst Switches4507R+E, 6509-E and Cisco Nexus Switches 2232, 5596, 7009
• Experience in working with Cisco Nexus 2148 Fabric Extender and Nexus 5000 series to provide a flexible Access Solution for a data center access architecture.
• Worked with convert Checkpoint VPN rules over to the Cisco ASA solution. Migration with both Checkpoint and Cisco ASA VPN experience
• Used Cisco ASA 5540 Firewall for Enterprise Security, configured ACL’s for Internet requests to Server Farm in LAN and DMZ.
• Worked with Load balancing device like F5 Big-IP local traffic manager (LTM) 1600.
• Configured EIBGP load balancing and ensured stability of BGP peering interfaces.
• Resolved network issues, ran test scripts and prepared network documentation.
• Worked on Cisco 6509 and 4507 series switches for LAN requirements, that includes managing VLANs, Port Security and troubleshooting LAN issues.
• Configured of Access List ACL (Std, Ext, Named) to allow users all over the company to access different applications and blocking others.
• Dealt with NAT configuration and its troubleshooting issues related access lists and DNS/DHCP issues within the LAN network.
• Was responsible for technical documentation and Visio Drawings for the implemented projects.
• Involved in Attending meetings and technical discussions related to current project.
• Completing service requests or incidents tickets in support of the VMware infrastructure.

Network Engineer

Responsibilities:

• Performed design and implementation of Network Management and Security policies in the Campus Network.
• Worked on implementing security policies using Access-list, Cisco ASA, and Routers as per the customer requirements.
• Configured on BIG IP (F5) Load balancers and also monitored the Packet Flow in the load balancers.
• Experienced in installing & configuring of Cisco PIX, ASA & FWSM (Firewall service module).
• Implemented Site-to-Site VPNs over the Internet utilizing 3DES, AES/AES-256 with ASA Firewall 5505.
• Configured Protocol Handling, Object Grouping and NAT on ASA Firewalls (5505).
• Maintained complex LAN/WAN networks with several VLANS and provided support for routing protocols.
• Configured and troubleshoot VLAN, VTP, STP and Trunks.
• Worked on RADIUS and 802.1x/EAPMD5, TLS and PEAP methods for Network Access Control.
• Worked on Configuration and testing of various security features such as ACLs, Receive ACLs, Control Plane Policing, and LPTS on Cisco CRS-1, and 7200 GSR.
• Worked with Cisco ACE 4710 Load balancers.
• Experienced with moving data center from one location to another location, from 6500 based data center to Nexus based data center.
• Configured RIP, OSPF and Static routing on Juniper M and MX series Routers.
• Worked on IP address Management, Subnetting, VLSM, ARP, RARP and SNMP, also troubleshooting network problems with TCP/IP.
• Worked on Routing protocols such as OSPF and EIGRP on Cisco/Juniper routers.
• Worked on servers such as AAA, DNS, DHCP and FTP for maintenance and troubleshooting.
• Experienced in configuration and support of LAN protocols on Cisco Switches (Layer 2, Layer 3), HP open view, and configuring QoS policies, Frame Relay, MPLS, and VPN site-to-site.
• Worked on wireless networking hardware such as Cisco Wireless LAN Controller and AP 1200.
• Generated Root Cause Analysis for critical Layer2/Layer3 problems.
• Worked on preparing technical documentations using Microsoft VISIO and Microsoft Office.

Jr. Network Engineer

Responsibilities:

• Worked on troubleshooting customer related issues related to router Configuration, Layer 1/Layer 2 issues.
• Configured Virtual-link between discontinuous backbone areas in the network also established authentication between all OSPF routers using MD5 authentication.
• Worked on WAN Troubleshooting for circuits like T1, T3 etc.
• Monitored network performance accompanying company service level agreements (SLA’s) using Network management tools such as Cisco works and also provided necessary recommendations to improve network performance.
• Involved in configuration and management of different Layer 2 switching tasks which includes address learning, efficient switching etc.
• Involved in HSRP standby troubleshooting and load balancing protocol GLBP, Port channel management of the network.
• Provisioned and troubleshoot Ethernet services, Gigabit networks and Connectivity issues with WAN types (T1, E1 and DS3) for WAN issues.
• Installation & configuration of Cisco VPN concentrator 3060 for VPN tunnel with Cisco VPN hardware & software client and PIX firewall.
• Dealt with the escalation problems from Level1 for routing, switching and WAN connectivity issues using ticketing system Remedy.
• Designed VLAN’s, access lists (ACL), troubleshooting IP addressing issues and Updating IOS images and other hardware installations.
• Experience in troubleshooting VLAN, STP (Spanning tree protocol), & Switch Trunk and IP subnet issues
• Dealt with NAT configuration and its troubleshooting issues related access lists and DNS/DHCP issues within the LAN network.
• Involved in Configuration of Access lists (ACL) on checkpoint firewall for the proper network routing for the B2B network connectivity.
• Experience in routing protocols like OSPF, BGP, and standby protocols like HSRP and VRRP application in the routers.