SUMMARY:

• Network Engineer with 8+years of experience in providing solutions, implementation, network designing, configuration of routers and switches, troubleshooting of complex networking system.
• Experience in designing, configuring, implementing and testing of LAN, WAN, Ethernet, Frame relay and IP routing protocols such as OSPF, IGRP, RIP, BGP, EIGRP.
• Hands - on experience in working with Cisco 7200VXR, ASR1K, 6500, CRS- 1, CRS- 3 Nexus2K/3K/5K/7K/9K and Juniper M, MX, PTX and ACX Series Routers and FX, QFX and QFabric Series Switches.
• Hands on Experience with Cisco 2600, 2800, 3600, 3800, 7200, 7600 series routers, Juniper MX, PTX and ACX Series routers.
• Supported secure connectivity with various firewalls Checkpoint, Juniper, Palo Alto, and Cisco ASA.
• Designed 10 gigabit networks using Cisco Nexus series switches the data center switches, Checkpoint NGX firewall and Cisco 3800 series routers.
• Experience with moving data center from one location to another location, from 6500 based data center to Nexus based data center
• Implemented End to End Quality of Service though out the network infrastructure and was responsible for policy routing.
• Expert in configuration of Virtual Local Area Networks (VLANS) using Cisco routers and multilayer Switches and supporting STP, RSTP, PVST, RPVST along with trouble shooting of inter VLAN routing and VLAN trunking using 802.1q.
• Supported secure connectivity with various firewalls Checkpoint, Juniper, Palo Alto, Cisco ASA.
• Network Services: NTP, GLBP, WCCP, NAT, DNS, DHCP, DHP snooping and Subnetting.
• Redundancy Technologies: Virtual Scale (CISCO VSS), VCP, Virtual Link Trunking (VLT), VRRP, HSRP.
• Experience with F5 load balancers and Cisco load balancers (CSM, ACE and GSS).
• Basic and advance F5 load balancer configurations, including migrating configurations from Cisco ACE to F5 and general troubleshooting of the F5 load balancers.
• Have Extensive knowledge of OSI and various network protocols (DNS, DHCP, TCP/IP, FTP, TFTP, UDP, ICMP, IPv4/IPv6, NFS, HTTP, SMTP etc.).
• Experienced working with Nexus OS, IOS, CATOS and Nexus 7K, 5K & 2K Switches.
• Configured static NAT, dynamic NAT, dynamic NAT overloading.
• Ensure that all system in the domain have McAfee Antivirus Protection Installed.
• Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500/PIX security appliance, Fire Eye, Failover DMZ zoning & configuring VLANs/routing/NAT with the firewalls as per the design.
• Remediation of firewall rules from checkpoint firewalls to Cisco ASA firewalls and their implementation.
• Experience on load balancing strategies/techniques, expertise in application switching/traffic management, knowledge of persistence and SSL certificates.
• Hands on Knowledge/experience on F5 load balancers, its methods, implementation and troubleshooting on LTMs and GTMs.
• Experience with Blue Coat URL filtering with whitelisting and blacklisting URL, creating rules for content filtering.
• Experience in Configuring and implementing VLAN, VTP domains, LAN switching and STP/RSTP, STUN and TURN.
• Worked extensively on Palo Alto, Juniper Net screen and SRX Firewalls.
• Experience with convert Checkpoint VPN rules over to the Cisco ASA solution.
• Migration with both Checkpoint and Cisco ASA VPN experience
• Working configuration of new VLANs and extension of existing VLANs on/to the necessary equipment to have connectivity between two different data centers.
• Administration and diagnostics of LAN and WAN with in-depth knowledge of TCP/IP, NAT, PPP, ISDN and associates network protocols and services.
• Experience through Hand-on Experience with configuring T1.5, Gigabit Ethernet, Channelized T3 and full T3, OCX, ATM, Frame-Relay.
• Experience in Network Management Tools and sniffers like SNMP, HP-Open view, Wireshark and Cisco works etc. to support 24 x 7 Network Operation Center.
• Troubleshooting the Juniper SRX100 and 110 series, Juniper Net Screen routers with Site-Site VPN, and firewalls.
• Great team player with an ability to work under pressure on a 24x7 duty rotation

TECHNICAL SKILLS:

Routers: Cisco 7600, 7200, 3925, 3810, 3600, 2800 Series, Juniper MX, PTX, ACX, series switches Catalyst 6500, 4510, 4500-x, 3800, 3750x, 3550, 2960s& Nexus 2k, 5k, 7k's, Juniper EX, QFX, QFabric

Firewalls: Cisco ASA, Palo Alto, Check point, Juniper SRX. IP Routing Protocols MP-BGP, EIBGP, EBGP, OSPF, EIGRP, RIP v1 & v2, Route redistribution, Route filtering, IP Services HSRP, DHCP, GLBP, VRRP MPLS LDP/TDP, MPLS VPN, RSVP, VRF, MPLS-QoS

LAN Protocols RSTP,STP, VTP, VLAN & Inter-VLAN routing, Dot1q, QoS

WAN Protocols: Core Frame Relay, PPP, HDLC, Channelized links (E1/T1/E2/T2) NEXUS Features VDC, VPC, ATM, FEX, F&M series line cards

Tools: Zenoss, QRADAR, Algosec, Riverbed(OPNET) Modeler, PUTTY Protocols IPv4, IPv6, TCP, UDP, ICMP, NAT, DHCP, SNMP, IPSEC, HTTP, SSH, DNS, WINS Security Server Protocols TACACS+, Radius Quality of Service Queuing (CBWFQ, LLQ), Traffic haping, RED/WRED Network Monitoring Tools Cisco Works, Solarwinds, Cisco WAN Manager, HP Open view, OpenStack, wire shark, inflobox .

WORK EXPERIENCE:

Sr Network Engineer

Confidential, Columbus, OH

Responsibilities:

• Installed and configured Juniper MX480- 960 Routers, EX2200, 4300 Switches, PTX3000 routers, QFX5100, 3500 and QFabric platforms, SRX200 Branch platforms
• Configured OSPF, BGP protocols on Juniper routers (MX960, MX480) and troubleshooting them.
• Responsible for configuring and troubleshooting the Juniper SRX100 and 110 series, Juniper Net Screen Firewalls like NS50, SSG 550M, SSG520M, ISG 1000, ISG 2000 with Site-Site VPN for client companies.
• Upgraded existing network to Juniper QFX5100 and QFX10k switches, as well as Juniper PTX routers also Provide support installing, configuring, and troubleshooting hardware and software.
• Implementing Juniper MX240, 480, and 960 routers into the IP/MPLS core network, along with EX4200 switches.
• Configuring switches (Cisco 3650) and routers (Cisco ASR1002-x) that will replace the old devices so that they are compliant with PCI DSS.
• Management of Infoblox Grid Manager to manage DNS Forward and Revers Lookup Zones
• Provide informal training and assistance as necessary to Clemson network engineers in the operation, configuration and troubleshooting of Juniper routers and switches.
• Performed Remote Install of Juniper Firewall.
• Configuration 7609, 7606 with OSPF and juniper (EX, QFX, and QFabric) switches with various VLAN.
• Day to Day task when on Jobs has included Network monitoring with Solarwinds, using Solarwinds/Infoblox IPAM, utilizing Solarwinds, NCM for configuration and Solarwinds Netflow to view TCP traffic
• Revitalized project management processes using ITIL and PMP standards through automation and/or training.
• Hardware/Software platforms in production: Cisco, F5, Palo Alto, Infoblox, NetOptics and Solarwinds
• Implementation of Access Lists for allowing/blocking desired traffic.
• Responsible for Cisco ASA firewall administration, Rule Analysis, Rule Modification
• Experience working in Datacenter environment, configuration changes as per the needs of company
• Manage project task to migrate from Cisco ASA firewalls to Check Point firewalls
• Configured and performed troubleshooting on link state protocols like OSPF in single area and multiple areas
• Design and configuring of OSPF, BGP on Juniper Routers.
• Configuring, implementing and troubleshooting VLAN's, VTP, STP, Trunking, Ether channels
• Designing, implementing LAN/WAN configurations on Cisco 5K, catalyst 6500 switches
• Configuring and testing Multicast for both IPv4 and IPv6 routing in Data Center Environment
• Extensive knowledge in implementing and configuring F5 Big-IP Local Traffic Manager 3900, and 6900 Load balancers.
• Configuring Juniper Net Screen Firewall Policies between secure zones exploitation NSM (Network Security Manager).
• Configure, manage, and troubleshoot Palo Alto firewalls to for remote deployment.
• Configure, manage, and troubleshoot Palo Alto firewalls IPSec VPN's.
• Migrated Juniper SRX firewalls to Palo Alto Network firewalls.
• Migration of existing IPSEC VPN tunnels from Pre-Shared key to Certificate Authority (PKI) for purpose of scaling
• Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA/PIX security appliance, Failover DMZ zoning & configuring VLANs/routing/NATing with the firewalls per design.
• Troubleshoot issues with network connectivity and issues related to neighbor relationship and peers.
• Experience configuring Virtual Device Context in Nexus 5k series switch.
• Designed and configured the commands for QoS and Access Lists for Nexus 3K and 5K.
• Implemented, configured redundancy protocols HSRP, VRRP, GLBP for Default Gateway Redundancy
• Working with Juniper JunOS operating system and working on M and MX series routers.
• Worked and automated BigIQ High Availability cluster feature.
• Maintenance and trouble-shooting of LAN, WAN, IP Routing, Multilayers Switching
• Configuration and troubleshooting of many link types i.e. SONET Controllers for sub E1/T1, E3/T3 and POS controllers for STM1 links
• Responsible for service request tickets generated by the helpdesk in all phases such as troubleshooting, maintenance, upgrades, patches, fixes, and all around technical support of 24*7
• Configuration the access-list rules, network object-service group based on well-known port the port i.e. FTP/ SFTP, SSH, HTTPS/HTTPS (SSL) and etc.
• Performing network monitoring, providing analysis using various tools like Wire Shark, Solar winds, TAPs etc.
• Worked on change management documentation of Network infrastructure design using Microsoft Visio.

Environment: s: Juniper EX, QFX series Switches, Juniper ACX, PTX, MX Series routers and Nexus 2k,3k,5k, Checkpoint firewall, Cisco ASA 5500, BGP, EIGRP, OSPF, MPLS, VPN, F5 load balancer, HSRP, QoS, VPN, Wire Shark, Solar Winds.

Network Security Engineer

Confidential, Columbus, OH

Responsibilities:

• Specialized in Security, Networking & System Administration.
• My spectrum of experience covers PIX/ASA Firewalls, VPN Concentrators and Cisco Routers / Switches. Implementing & administering Microsoft Windows 2008/2012, Active Directory, and Microsoft Exchange.
• Excellent working experience with Cisco and Palo Alto Security devices.
• Efficiently exploitation Service Now tool for generation of tickets, distribution severity to incidents, following up with incident standing and troubleshooting incidents.
• Migrated Cisco ASA firewalls to Palo Alto Network firewalls.
• Excellently used Splunk to research and monitor incident management and incident resolution issues.
• Researched, designed, and replaced aging stop firewall design with new next generation Palo Alto appliances serving as firewalls and URL and application review.
• Upgraded and updated Cisco IOS from twelve.3T to 12.4. Accustomed DHCP to mechanically assign reusable information science addresses to DHCP shoppers.
• Configuring and troubleshooting perimeter security devices like stop NGX R77 Gaea, Provider-1/MDM, Secure Platform, Palo Alto and ASA Firewalls.
• Do have experience on Configuring NAT onto the Juniper SRX firewalls using Inflobox.
• Installation & configuration of Microsoft Proxy Server 2.0 and Inflobox DNS, DNCP, WINS and IP Address Management.
• Troubleshoot and configure Palo Alto Networks central management system (Panorama).
• Palo Alto style and installation (Application and URL filtering, Threat bar, information Filtering)
• Configuring rules and Maintaining Palo Alto Firewalls & Analysis of firewall logs exploitation varied tools.
• Successfully put in Palo Alto PA 3060 firewalls to protects information Center and provided L3 support for routers/switches/firewalls,
• Troubleshoot Palo Alto Networks firewall configuration problems.
• Implemented Zone primarily based Firewalling and Security Rules on the Palo Alto Firewall.
• Exposure to wild hearth feature of Palo Alto.
• Maintained and managed networks running EIGRP and BGP routing protocols regularly performed firewall audits around stop Firewall-1 solutions for purchasers.
• Provided tier three support for stop Firewall-1 software system to support customers.
• Installed, managed and monitored IDS, IPS, Firewall, SPAM and Email filtering
• Supported other school system engineers with AIX, RedHat operating systems, Windows server, VMWare and MS Hyper-V, Firewall, Web content filtering and IBM TSM Backups.
• Perform maintenance upgrades, troubleshooting steps, and documentation on all aspects of the current and future Cisco, Checkpoint, ForeScout and NetOptics based network environments.
• Implemented site to site VPN in Juniper SRX as per customer.
• Utilizing OPNET Software assisted in troubleshooting LAN/Application/Network issues in regards to response times, host/network congestion.
• Designed, configured, implemented site-site VPN on cisco ASA 5500 firewall
• Management of replication between Infoblox GridMaster and member appliances
• Received grasp on the PAN OS 7.0 and 7.1 on Physical firewall series (500, 3000, 5000) and VM-100 series and Firewall Migration Tool offered by PANW.
• Configured DNS and DHCP configuration in Inflobox.
• Configuring F5 Load Balancers: Adding virtual IPs, nodes, pools and health observation.
• Planning, designing and configuration of various Cisco ISE deployment strategies (Standalone, Distributed Setups) and rollout to production environment
• Expertise in Cisco ACS, Juniper Steel Belt, Radiator and Cisco ISE Authentication, Authorization and Accounting Protocols. Expert Hands On Experience in Cisco ACS & Cisco ISE for 802.1x, AAA Configurations.
• Backup and restore of stop and Cisco ASA Firewall policies
• Monitoring Traffic and Connections in stop and Cisco ASA Firewall
• Manage project task to migrate from Cisco ASA firewalls to examine purpose firewalls
• Worked extensively in Configuring, observation and Troubleshooting Cisco's ASA 5500/PIX security appliance, Failover demilitarized zone socialization & configuring VLANs/routing/NAT with the firewalls as per the planning

Environment: Palo Alto PA-7000, PA-5000, PA-3000 and PA-500 Series Cisco ASA 5500 and 4100 series Check Point and Juniper SRX firewalls, EIGRP and BGP, Inflobox Juniper switches and routers, F5 BIG-IP ASM, DNS DHCP.

Network Engineer

Confidential, Collinsville, TN

Responsibilities:

• Datacenter Support Assisted agency with best practice related to the network transition and integration for planning, designing, and configuring new network infrastructure systems including Internet, Security, MPLS/WAN, and Cisco NEXUS technologies.
• Supported the Data center network infrastructure consisted of multiple Nexus 9Ks, 7Ks, 5Ks, 2Ks, FWs, Security systems, F5, and VMware environment by maintaining and deploying new technologies.
• Worked with F5 Balancers and their Implementation in various Networks.
• Providing Level 3 support to customers, resolving issues by attending to conference calls.
• Translating Cisco IOS Route maps to Cisco IOS XR routing policies.
• Working with Cisco Nexus 2148 Fabric Extender and Nexus 5500 series to provide a Flexible Access Solution for datacenter access architecture.
• Evaluate, Plan, Test, and Deploy migration of DNS and DHCP to Infoblox Appliances.
• Installation of Palo Alto (Application and URL filtering, Threat Prevention, Data Filtering).
• Successfully installed Palo Alto PA-3060 firewalls to protects Data Center
• Implemented Positive Enforcement Model with the help of Palo Alto Networks
• Configuring RIP, OSPF and Static routing on Juniper M and MX series Routers
• Providing Level 3 Engineering and Support to other internal network engineers and contractors.
• Designing and installing new branch network systems, resolving network issues, running test scripts and preparing network documentation.
• Setup Inflobox for local DHCP & DNS configuration.
• Implemented Positive Enforcement Model with the help of Palo Alto Networks.
• Deployed Palo Alto Networks PAN-5050.
• Working with Cisco Nexus 7000, Nexus 5000, and Nexus 2000 platforms.
• Working with BGP, OSPF, EIGRP protocols in MPLS Cloud.
• Hands-on experience with iBGP & EBGP.
• Replace branch Cisco routers with new Juniper MX-80, MX-104 routers as a part of branch network refresh project.
• Worked with network services like DNS, DHCP, DDNS, IP4, IP6, IPsec, VPN etc.
• Assisted in a global firewall software upgrade project for 100+ Cisco ASA firewalls
• Used VLAN Trunk Protocol (VTP) while configure a new VLAN on one VTP server
• Establishing VPN Tunnels using IPSec encryption standards and also configuring and implementing site-to-site VPN, Remote VPN.
• Performing OTV to extend L2 VLANs between data centers over IP on Nexus7018 switches.
• Worked extensively on BGP4 routing protocol, and configuring BGP, route maps.
• Support third party technologies within the ACI ecosystem such as VMware ESX, OpenStack.
• Integration of Cisco Identity Services Engine (Cisco ISE) within Greenfield environments, or with limited production.
• Configuration of routing protocols EIGRP and BGP4 for little to medium sized branches supported company branch standards, together with distribution and route maps.
• Migration of ACS product line onto ISE.
• Integration of Cisco ISE with client AD, LDAP, RSA, and Token Servers.
• Providing documentation including but not limited to High Level Design (HLD) and Low Level Design (LLD).
• Tested and automated Device licensing feature of BigIQ.
• Providing daily network support for national wide area network consisting of MPLS, VPN and point-to-point site
• Configuring GLBP, VLAN, VTP's, Trunking 802.1Q, STP, Port security on Catalyst 6500 switches.
• Responsible for service request tickets generated by the helpdesk in all phases such as troubleshooting, maintenance, upgrades, patches and fixes with all around technical support
• Configuring, Monitoring and Troubleshooting Cisco's ASA 5500/PIX security appliance, Failover DMZ zoning and configuring VLANs/routing/NATing with the firewalls as per the design
• Converting Cisco IOS to Cisco IOS XR configurations.
• Configuring BGP4, MPLS in Cisco IOS XR.
• Involved in L2/L3 Switching technology administration including creating and maintaining VLANs, Port security, Trunking, STP, Inter VLAN Routing, LAN security.
• Working on security levels with RADIUS, TACACS+.
• Configuring multiple route reflectors within a cluster.
• Gained a high level understanding and operated a multitude of different software, such as (but not limited to): Solarwinds NPM, Solarwinds TFTP Server, Cisco Prime Infrastructure, VSphere client, VMWare Client, Wire Shark, Secure CRT, and FileZilla FTP Client.
• Working on HP open view map for Network Management System and Ticketing.
• Working experience with CITRIX NetScaler MPX 17500 & 7500 devices
• Experienced working with Cisco Virtual Switching System (VSS)

Environment: Cisco Nexus 9Ks,7Ks, 5Ks, 2Ks, Cisco and Juniper Routers, Switches, BGP, OSPF, EIGRP, Application Visibility and Control (AVC), Netflow, Access Control Server (ACS), DMVPN, VPN, MPLS, LAN, WAN, Solarwinds, Cisco Prime, VMware, Cisco ISE, Inflobox.

Jr. Network Engineer

Confidential, Seattle, WA

Responsibilities:

• Served as part of a team of network engineers responsible for base wide network troubleshooting of Cisco Layer 3, Layer 2 devices
• Design, implement and administer IPv4 enterprise network infrastructure utilizing Cisco routers
• Experience working with design and deployment of MPLS Layer 3 VPN cloud, involving VRF, Route Distinguisher (RD), Route Target (RT), Label Distribution Protocol (LDP) & MP-BGP.
• Implemented antivirus and web filtering on Cisco devices
• Implementation and operational support of routing protocols and topologies including BGP, OSPF, MPLS, DMVPN.
• Created test data in Datacom and uploaded data using the ETL data load utility configured SSID's on WLC 5502 wireless LAN controllers and experience troubleshooting using WCS.
• Installed and configured Juniper QFX3500 switch.
• Implemented EIGRP, OSPF & BGP and configured security policies- NAT, PAT & Access Control Lists (ACL).
• Experience working with cat 6000, 6500, 7600 devices.
• Configured RIP, OSPF and Static routing on Juniper M and MX series Routers.
• Configured VLAN, Spanning tree (STP), VSTP, SNMP on Juniper EX series Switches.
• Experience in Configuring, upgrading and verifying NX-OS operation system with OSPF, BGP
• Experience converting Cat OS to Cisco IOS on the Cisco 6500 switches
• Experience with deploying PIM Sparse-mode/Dense-mode multicasting in Campus locations
• Tested various networks, which works on the protocols like of TCP/IP (IP, TCP, UDP, SNMP, DNS, WINS, DHCP, FTP, HTTP, HTTPS, ICMP, SMTP, ARP, IPSEC and NAT).
• Involved in design and implementation of Data Center Migration, worked on implementation strategies for the expansion of the MPLS VPN networks
• Implemented Positive Enforcement Model with the help of Palo Alto Networks
• Troubleshooting of complex LAN/WAN infrastructure that include routing protocols EIGRP, OSPF & BGP, MPLS.

Environment: s: Cisco 2600, 2800,3600,4000,6506, 4948E, 4510 and Juniper EX, QFX Series Switches and Cisco 3660, 3845, 7609 and Juniper MX, ACX series Routers and Palo Alto and Juniper SRX Firewalls.

L1 Engineer

Confidential, Deerfield, IL

Responsibilities:

• Worked on installation, maintenance, and troubleshooting of LAN/WAN (ISDN, Frame relay, NAT, DHCP, TCP/IP)
• Configured Routing protocols such as OSPF, EIGRP, RIP, static routing and policy based routing
• Experience in implementing F5 BIG IP load balancers.
• Responsible for Internal and external accounts and, managing LAN/WAN and checking for security under server mode and rest falling under client modes
• Configuration of Cisco Routers 3600, 4000 Series and 3550, 4500 series switches.
• Implementation of Virtual LANs across Routers and Switches.
• Implemented and Configured IP Routing Protocols: OSPF, EIGRP, and RIPv2
• Implemented and configured LAN Protocols: Ethernet, VLANs, VTP and STP.
• Worked with Remedy Ticketing tool in maintaining and keep a track of logs/monitor
• Designed and implemented IP Addressing, Subnetting, Route Summarization and Route Distributions
• Monitoring the Servers and Networks.

Environment: s: RIP, OSPF, and VLAN, HSRP Spanning tree, IP Sec tunnels, Windows Server, Cisco routers and switches.