SUMMARY:

• Hands on experience with Wide Area Network design, implementation and management
• Expert level hands on experience with BGP, MPLS, OSPF, LDP, RSVP.
• Hands on experience with VLAN configuration, spanning tree, configuring a high availability switched environment.
• Hands on experience with expert level know ledge in Optical, Wireless, Voice technologies
• Valid CCIE written (must provide proof), JNCIS
• Hands on experience with Layer 2 & 3 tunneling technologies, Quality of Service (QOS) design
• Hands on experience implementing IP networks over a variety of transmission mediums to include high - band width fiber optics and low - band width
• Experience with Cisco ACS - Device Authentication
• Experience with HP OpenView, Netscout Sniffers and SolarWinds
• A high level understanding of Wireless technologies and implementation
• A high level understanding of VOIP Technologies
• Knowledge of Firewalls
• Knowledge of Intrusion Detection devices
• Knowledge of LTM and GTM technologies
• Experience with designing and implementation of IP/MPLS protocol switching in an ISP Core Network

PROFESSIONAL EXPERIENCE:

Confidential, Germantown, MD

Network Architect/Manager

Responsibilities:

• Manage data network 100 node for clients.
• Nexus 5k-7k. Load balancing with CSS.
• Performance improvement by using WASS
• Some Cisco VOIP support 2811/3800 Cisco routers.
• ASA 5540/6500 FWSM supports.
• BGP and some IPV6 implementation.
• Data migration for client.
• Data center integration and merge for client.
• Managed network engineers and system admins.
• Implementing QOS requirements in co-operation with local carriers and enabled tunneling.
• Weekly status report, progress and project management report implementation.
• Design for hardware requirements and price margin for datacenter setup and migration.
• MPLS and BGP implementation at different locations of client.
• Proficient and knowledge with TCP/IP network environments and solid background in networking over a variety of transmission mediums to include high-bandwidth fiber optics and low-bandwidth.
• Configuring and Administering the Network using Cisco ACS.
• Responsible for design, development, implementation and customization of HP OpenView.
• Working knowledge of SolarWinds Suite, NetScout Sniffers.
• Configured STP (spanning tree protocol) on switches to provide loop free connection.
• Provides technical and customer support for Confidential ’s dedicated internet access customers, through a variety of troubleshooting and problem solving methods and technologies (BGP, ISIS, MPLS, OSPF, LDP, RSVP, Confidential, VOIP(Voice Over IP), Firewalls, wireless, Optical, T1/T3
• Disaster recovery support like power outage, internet disconnectivity, outside hacking, network slow and disturbing other users and client,
• Knowledge analysis of network traffic to detect intrusions and vulnerabilities
• Data center issue with earthquake, VOIP system disconnected and etc.

Confidential, Herndon, VA

Network Engineer/Architect

• Design and setup End user VPN and Site-site VPN tunnel to multisite
• Virginia, Philadelphia and Portland locations.
• Design and setup of QA environment for SSL connection and load balancing using 11506 CSS-SSL, and 6500 CSM routers .Used 1 6500/6738 core routers, 2 x3800 routers for external internet connection to BGP drop, 5540 ASA firewall with IPS, 3560 switches, etc..
• Cisco VOIP and call manager express with unity.
• Provides technical and customer support for Confidential ’s dedicated internet access customers, through a variety of troubleshooting and problem solving methods and technologies (BGP, ISIS, MPLS, OSPF, LDP, RSVP, Confidential, VOIP(Voice Over IP), Firewalls, wireless, Optical, T1/T3
• Responsible for design, development, implementation and customization of HP OpenView.
• Supported day to day monitoring for daily issue like NAT and PAT mappings, Objects groups changes, and port changes. Monitoring all the traffic and load using Netscout Sniffers and solarwinds. Nbar mapping for web link, https sites .Provided support to BGP gateway with multihoming BGP connection for internet service providers.
• Configuring and Administering the Network using Cisco ACS.
• Implementing QOS requirements in co-operation with local layers and enabled tunneling.
• Migrating the data from previous data center to new data center in Chicago in Nexus 2k, 5k, 7k and nexus 1000V, WAAP cloud environment. Some VMware Support to implement cloud failover with VMware VSphere 4.1 with Cisco ASA 1000V cloud firewall.
• Proficient and knowledge with TCP/IP network environments and solid background in networking over a variety of transmission mediums to include high-bandwidth fiber optics and low-bandwidth.
• Setup MPLS at multi location to connect via service provider and then to our remote sites. Also Used RiverBed/WAAS for to support fast services.
• Migration of PIX firewall to ASA firewall from previous 3 acquired company and merged to central location at Herndon, VA datacenter.
• Configured VTP domain and Spanning tree protocol on L2/L3 switches.
• Supported load balancing on 6500 CSS switch to route the web connection to different apps servers, DB server and Web server.
• Testing of Intrusion detection to control the outside hacking. Used WAAS for WAN speed process.
• Used Big-IP 5000 application switch(F5's family with LTM and LTM) to handle multiple system such as load balancing, traffic management, and Ethernet switching .Provided troubleshooting support like TCP/IP connectivity, TCP/IP routing
• Supported NOC services 24x7 bases, to support network issue and opened tickets.
• Domain Controller, http to https redirect on CSS, hosting domain on private and public IP’s and providing access to outside world.
• BGP Filter for routes from service provider and clients using MED, Local Pref.
• Confidential implementation to existing router for load balancing and high availability.

Confidential, Germantown, MD

Network Engineer/Architect

Responsibilities:

• Provide online Cisco CCNA training.
• Setting up ASA firewall 5505/5510 to support access to servers and domain.
• Setting up all the exterior access and failover for internet connected with Confidential and Confidential internet lines.
• Provides technical and customer support for Confidential ’s dedicated internet access customers, through a variety of troubleshooting and problem solving methods and technologies ( ISIS, MPLS, LDP, RSVP, Firewalls, wireless, Optical, T1/T3,
• Setting up remote VPN, site-site VPN, and SSL for secure environment.
• Proficient and knowledge with TCP/IP network environments and solid background in networking over a variety of transmission mediums to include high-bandwidth fiber optics and low-bandwidth.
• Support of different routed protocols eigrp, BGP, OSPF, Rip .Testing network environment connection, ip addtress, tcp connection using tcl script.
• Testing of Intrusion detection to control the outside hacking. Used WAAS for WAN speed process.
• Configuring and Administering the Network using Cisco ACS.
• Responsible for design, development, implementation and customization of HP OpenView.
• Working knowledge of SolarWinds Suite, NetScout Sniffers.
• Used Big-IP 5000 application switch(F5's family with LTM and LTM) to handle multiple system such as load balancing, traffic management, and Ethernet switching .Provided troubleshooting support like TCP/IP connectivity, TCP/IP routing
• Implementing QOS requirements in co-operation with local layers and enabled tunneling.
• Configured STP (spanning tree protocol) on switches to provide loop free connection.
• Confidential implementation to existing router for load balancing and high availability.
• Testing some group of switch in vlan, VTP and STP environment using TCL script.
• Cisco VOIP with 3800/2800 voice router .supported ISDN T1 line with multiple channels to router the VoIP gateway .Setup call manager express.

Confidential, Virginia

Data & Network Architect

Responsibilities:

• Design of Service Provider MPLS, BGP, multicast WAN/LAN/MAN. Sales work for customers, SOW preparation. Supported on Nexus 2k, 5k 7k and nexus 1000V with VMware VSphere 4.1 and as a 1000v could firewall.
• Provide expert-level design and engineering support for major Networking projects.
• Data Center design experience .Experience with Cisco voice with Call Manager express, CCM pub, CCM sub, and Unity voice configuration, PBS, H323 or similar video conferencing technologies.
• Provides technical and customer support for Confidential ’s dedicated internet access customers, through a variety of troubleshooting and problem solving methods and technologies (ISIS, MPLS, LDP, RSVP, Confidential, Firewalls, Wireless, Optical, T1/T3.
• Configuration of voice gateways using Sip gateways, setting up sip server. Registration of sip agent, call routing etc. DNS setup, sip user account registration.
• Responsible for design, development, implementation and customization of HP OpenView.
• Working knowledge of SolarWinds Suite, NetScout Sniffers.
• Configuring and Administering the Network using Cisco ACS.
• Load balancing with POTS and VoIP interfaces on PSTN line and VoIP line, ip phone registration.
• Installation and upgrade of iOS 12.2 to 12.4 of 6500/7600 switches/Routers. CSS load balancing for apps application environment.
• Security control using AAA, radius server, access-l, prefix list, auto command, dynamic list, NTP server, dhcp server maintenance.
• Design of new network infrastructure LAN/WAN for different clients. Use of Solarwinds, DMVPN. Netflow utility servers, Orion, Solarwinds Remedy for ticketing. Used Cisco Works, and MARS for monitoring and performance.
• Testing of Intrusion detection to control the outside hacking. Used WAAS for WAN speed process.
• Failover network on WAN, using standby, vrrp, irdp etc. Accelerating WAN services using WAAS. Design, configuration of WAAS (4.1) for data accelerator and load balancing, and failover.
• Assisted in responding to RFPs, RFIs, and RFQs; Helped in the development of proposals and Statement of Work (SOW).PMP level expertise managing projects.
• DHCP, DNS, SNMP support. Mobile IP support on routers and switches.
• Frame-relay connection too many WAN locations, PPP support, authentication security.LAN network control using VLAN, layer 2 vlan, layer 3 vlan, tunneling. Wireless connection using 802.11 for LAN and wireless network. USE of WAAS in WAN application. strong knowledge of routing protocols with emphasis on OSPF, EIGRP & BGP
• Knowledge of layer 2 protocols, STP, Juniper Firewalls, Checkpoint Firewalls, TACACS server.
• Datacenter design and support using Nexus 5000, 7000 switches.
• Provide day-to-day troubleshooting, design, and maintenance of network
• Tcl /TK scripting to automate the installation, telnet and ssh access control, port-security, Nbar protocol, QOS setting at different level and different interfaces based on requirements. Using Visio software to draw network diagram etc.
• Proficient and knowledge with TCP/IP network environments and solid background in networking over a variety of transmission mediums to include high-bandwidth fiber optics and low-bandwidth.
• Configured VTP domain and Spanning tree protocol on L2/L3 switches.
• Supported sales support, pre-sales agreement (RFI, RFQ, and RFP), client engagement, training, cisco device supply to relevant clients, designing network etc.
• Confidential implementation to existing router for load balancing and high availability.
• Experience with Cisco CSM (content switch module) and SSL modules 6500 switches, testing exp with oracle apps server, oracle RAC environment .F5 load balancer support to provide balanced connection to the servers. Some IPv6 testing and migration from ipv4.
• Cisco firewall pix 500 series, ASA 5500, set up and design network for remote access.VPN Concentrator 3000 series, PDM for VPN. AAA configuration, Radius servers and more. Some VoIP design and configuration on VOIP routers like 1700, 2600xm modules... and switches 3560, 800 modules. Firewall failover configuration.F5 load balancer with GTM and LTM work. Configured Wireless routers 2800, 3800 series.

Confidential, Phoenix, AZ

Sr. Network engineer

Responsibilities:

• Set up the Pix firewall for 3 interfaces using DMZ for security. Restricted access to telnet, HTTP and other protocol. migration from Checkpoint FW to Cisco FWSM multi-context mode
• Migrated ipv4 to ipv6 version.
• Configuration of routers (2600, their interfaces and setting up backup server. Configuration of switches 5000, 6000, 7000 series.
• Provides technical and customer support for Confidential ’s dedicated internet access customers, through a variety of troubleshooting and problem solving methods and technologies (BGP, ISIS, MPLS, OSPF, LDP, RSVP, Confidential, VOIP(Voice Over IP), Firewalls, wireless, Optical, T1/T3.
• Configuration of security to provide restricted session control through the use of access-class, access-group and route-map, Security on user level, exec level on different media such as telnet, console and modem etc. PMP and network diagram support using Visio.
• Testing of Intrusion detection to control the outside hacking. Used WAAS for WAN speed process.
• Configuring and Administering the Network using Cisco ACS.
• Used Vlan, VTP server to facilitate the hosts on different vlans among 8-10 switches (3560/3550, 2900, 6500).
• Network monitoring and data capturing using MARS and Cisco works.
• Implementing QOS requirements in co-operation with local layers and enabled tunneling.
• Facilitate the service on router to have internet connection from public network to private network (192.168.0.0 ) using NAT between BGP and Rip 2 routing protocol.
• Configured STP (spanning tree protocol) on switches to provide loop free connection.
• Providing the support from FRAME-RELAY to ISDN backup for 2-3 different datacenter.
• Implementation of some VoIP line on FXS switches .VPN and MPLS for Voice and security through network. Some pre-sales and SME work was also involved related to router and switches to sell off existing equipment.
• Proficient and knowledge with TCP/IP network environments and solid background in networking over a variety of transmission mediums to include high-bandwidth fiber optics and low-bandwidth.
• Confidential implementation to existing router for load balancing and high availability.
• Configuring the AAA, and TACACS+ to implement username verification through central server station.
• Creating some VPN channel for user level security and 1-1 mapping of network.
• Testing of security checks at different levels like IOS, OSPF area, AS, Domain level, IPSec, Firewall. Authentication thru layer 2 protocol like PPP etc. to prevent any unnecessary access to highly invested Company.
• Created test plans and performed necessary troubleshooting to improve those problems. Used TCL/TK and Perl to make process faster and automated.
• Installed and upgraded 6500 switches and 7800 routers iOS ver. 12.4

Confidential, Chandler, AZ

Network Engineer /Network admin

Responsibilities:

• Designing the class B network /18 and distributed then in VLSM and FLSM so that more hosts can be adjusted into the system in orderly manner.
• Configured Frame-Relay on Cisco R2610, R3640 in multipoint, point-point, and broadcast, non-broadcast env. Configured Cisco Frame-Relay switch R2522 to map the interface with the dlci.
• Developed, executes salad strategy and account planning focused on sales growth.
• Layer 3 protocol like Rip2, EIGRP, OSPF, BGP were implemented over layer 2 (FR).Setup was done with summarization, redistribution, default network, load balancing, authorization, NAT and virtual links.
• Configuring and Administering the Network using Cisco ACS.
• Provides technical and customer support for Confidential ’s dedicated internet access customers, through a variety of troubleshooting and problem solving methods and technologies (BGP, ISIS, MPLS, OSPF, LDP, RSVP, Confidential, VOIP(Voice Over IP), Firewalls, wireless, Optical.
• ISDN was configured for dial backup purpose for the time when Frame-Relay goes down and to support some VoIP in some network. Used interface such as T1, E1 BRI/PRI and dialers. Configured dialer maps, dialer filter, dialer watch, multilink PPP and was primarily used with dialer profiles.
• ATM was accessed thru R3640 over Atom interface and was distributed with Frame-Relay service.
• Proficient and knowledge with TCP/IP network environments and solid background in networking over a variety of transmission mediums to include high-bandwidth fiber optics and low-bandwidth.
• Used BGP protocol to connect to autonomous system .Synchronization, configuration of peers, big, begs, and loopback interfaces was implemented on different routers. Used attribute like AS PATH, local preference, automic aggregate and MED for route selection process. Used well-known communities such as local-as and no-export and custom community. Used regular expression to select the specific route.
• Provided support to bridging connecting services among different network devices like token ring and Ethernet. Configured transparent bridging, route-source bridging, remote route-source bridging (RRSB), with fest, tcp, and direct encapsulation with FR. Configured feature like acknowledgment and keep lives. Configured for concurrent routing and bridging(CRB),integrated routing and bridging(IRB) with BVI interface .provided support to cross SNA and NetBIOS traffic across WAN in bridged Ethernet environment using DLSw. Configured DLSw with translation bridges and fst encapsulation, direct encapsulation. Defined local and remote peers mapped MAC address to remote peers. Configured cost, bridge-group, ring-list, virtual ring, pseudo ring queuing and DDR.
• Experience with Federal Sales, Consulting, and the Cisco portfolio of products and solutions; knowledge of competitor solutions.
• Provided support with ACL for traffic filter, routing process, queuing traffic, happing and policy, encryption and IPSec, dialing application, NAT and PAT. Configured SAP access list, IPX access list and extended IPX access list, MAC access list (non-routable) etc.
• Configured routers to provide services like DNS, HTTP, Confidential, NTP and proxy ARP etc. Some pre-sales training was involved to support Confidential clients to deliver speedy sales of hardware. Configured and applied route filter and policies using distributed list, prefix list, route mapo, and policy based routing, filter list, group list, community, and AS PATH etc.
• To improve the network quality and efficiency we configured QoS used with RSVP,MPLS and QoS (802.1p).Policy map included with service-policy .Used queuing method FIFO, priority queue, weighted fair queue(WFQ),WRR,CBWFQ,LLQ. Used traffic shaping and policy like frame relay traffic shaping (CIR, MinCIR, BC, Be, Tc, BECN). Used generic traffic shaping and frame relay compression.
• Provided support on network security using AAA, TACAS+ and RADIUS. Used RADIUS on security server and provided on a domain .Also security server was connected to syslog sever on UNIX server. Also used the logging for telnet and consol. IOS firewall was installed to inspect TCP, UDP, FTP, H323, SMTP, SQLNET, TFTP traffic.
• Support for IP multicasting (flooding, grafting) to ethernet. Used CGMP in PIM dense mode and PIM space mode and NBMA env. Voip was configured for some phone lines on IP with dial peer, private line automatic ring down and MPLS.
• Configured VTP domain and Spanning tree protocol on L2/L3 switches.
• Configured 1900, 3550, 5000/6500, 7000 switches with application of VTP server and Vans (10-13 grouping).configured trucking on faro for vlans, and tunneling over IP with ipx.
• Used Big-IP 5000 application switch(F5's family with LTM and LTM) to handle multiple system such as load balancing, traffic management, and Ethernet switching .Provided troubleshooting support like TCP/IP connectivity, TCP/IP routing(Rip1,Rip2,Igrp,EIGRP,OSEF),switched Ethernet, ISDN, Frame-relay, BOOTP, DHCP.etc .Used Cisco network management software like ciscoworks2000, SNMP,CWSI(Cisco view, traffic director, vlan director), NetSys, Cisco Call manager, and Cisco secure etc. Managed network topology and solved the problem using 7 steps of Cisco network troubleshooting methodology