SUMMARY:

• CCNP and CCNA certified - 7+ years of professional experience in Network Planning,
• Implementing, Configuring, Troubleshooting and Testing of networking system
• In-depth knowledge of deploying and troubleshooting LAN, WAN, Frame-Relay, Ether-channel, IP
• Routing Protocols - (RIPV2, OSPF, EIGRP & BGP), ACL's, NAT, VLAN, STP, VTP, HSRP & GLBP
• Strong hands on experience in layer-3 Routing and layer-2 Switching. Dealt with Nexus models like 7K,
• 5K, 2K series, Cisco router models like 7200, 3800, 3600, 2800, 2600, 2500, 1800 series, Cisco ASR
• Models like 1000, 9000 series and Cisco catalyst 6500, 4500, 3750, 3500, 2900 series switches
• Efficient at use of Microsoft VISIO/Office as technical documentation and presentation tools
• Design and configuring of OSPF, BGP on Juniper Routers (MX960) and SRX Firewalls (SRX240)
• Dealt with monitoring tools like ( Solar Wind, Kiwi-cat tool), network packet capture tools like Wire-shark
• Supported migration projects from old Brocade Foundry, Cisco CSS to F5 load balancers V10.x and 11.x
• Implemented various EX, SRX & J series Juniper devices
• Understanding the JUNOS platform and worked with JUNOS upgrade of Juniper devices
• Strong hands on experience on PIX (506, 515, 525, 535), ASA (5505/5510) Firewalls
• Implemented security policies using ACL, Firewall, IPSEC, SSL, VPN, IPS/IDS, AAA(TACACS+ & (RADIUS).
• Worked on Load Balancer F5 LTM, GTM series like 6400, 6800, and 8800.
• Dealt with the escalation problems for Routing, Switching and WAN connectivity issues using ticketing system remedy
• Expertise in network protocols, Firewalls and Communication Network design.
• In-depth Cisco technology experience/knowledge in design, implementation, administration and support
• Provided 24x7 availability and on-call support as required.
• Excellent working knowledge of TCP/IP protocol suite and OSI layers
• Good knowledge and experience in Installation, Configuration and Administration of Windows
• Servers 2000/2003, Active Directory, FTP, DNS, DHCP, TFTP, Linux OS under various LAN and WAN environments

TECHNICAL SKILLS:

• Cisco & other vendor equipment s Nexus 7K, 5K, 2K & 1K, Cisco routers (7200, 3800, 36002800, 2600, 2500, 1800 series) & Cisco Catalyst switches (6500, 4900, 3750, 3500, 2900 series).
• Cisco ASR 1000, 9000 series, PIX Firewall (506/515/525/535 ), ASA Firewall
• (5505/5510), Cisco ACE Load Balancers
• Routing Protocols: RIP, IGRP, EIGRP, OSPF, IS-IS, BGP, HSRP, VRRP & GLBP
• Infrastructure services: DHCP, DNS, SMTP, FTP, TFTP.
• LAN technologies: Ethernet, Fast Ethernet, Gigabit Ethernet, & 10 Gigabit
• Ethernet, Port: channel, VLANS, VTP, STP, RSTP, 802.1Q
• WAN technologies: Frame Relay, ISDN, ATM, MPLS, leased lines & exposure to PPP, DS1, DS3OC3, T1 /T3 & SONET
• Network Security: NAT/PAT, Ingress & Egress Firewall Design, VPN ConfigurationInternet Content Filtering, Load Balancing, IDS/IPS, URL Filtering - Web-sense, Kiwi Syslog
• Server Logging, SSL, IPSEC, IKE, Static, Dynamic, Reflexive ACL, and Authentication AAA
• (TACACS+ & RADIUS)
• Network Management SNMP, Cisco Works, Kiwi: cat, What's-Up Gold, Ethereal
• Platforms: Cisco IOS(11.x, 12.x), PIX IOS(6.x, 7.x), CAT-OS UNIX, LINUX, Windows XP, NT, 20002003
• Programming: C, C++, HTML
• Documentation: MS Office, MS Visio

PROFESSIONAL EXPERIENCE:

Confidential, San Jose, CA

Sr. Network Engineer

Responsibilities:

• Experience with deploying the Layer 3 MPLS VPN in all the Branches and Campus locations.
• Experience of working with F5 Load balancers and building VIP, SNAT and Migrating applications from one Data Center to another data Center.
• Replace Campus Cisco 6509 End of Life hardware with new 4507/4510 devices.
• Experience with Designing and configuring BGP in the data center environment using different attributes like MED, Community, Local Preference, Next Hop.
• Experience with layer 2 securities which was implemented using a dedicated VLAN ID for all trunk ports, setting the user ports to non-trucking, deployed port security when possible for user ports
• Experience with migrating all the Partner IPSEC VPN tunnels from one data center to another data center.
• Migration Network, Firewall and F5 Load Balancer infrastructure from one data-center to another data centre.
• Experience of working with F5 Load balancers.
• Experience working with Nexus 7010, Nexus 5596, Nexus 2232 in the data center environment
• Experience working with Nexus VPC, VDC in the data center design environment.
• Implement and configured GLBP (on core switching and also for VPN redundancy), HSRP on different location of office on the switched network and managing the entire multilayer switched network
• Configuring, testing, and troubleshooting routing and switching issues and related protocols associated with packet networks including MPLS and traffic engineering (QoS).
• Provide consultancy services to customers on a variety of network security products including firewalls, VPNs, authentication, load-balancing, data loss prevention, security information and event management
• IOS upgrade in Nexus 7010 through ISSU (In service software upgrade)
• Configuring numerous LAN/WAN technologies including leased point-to-point circuits, MPLS, ISDN, various Ethernet speeds/media
• Configuring Virtual Chassis for Juniper switches EX-4200,Firewalls SRX-210
• Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500/PIX security appliance, Failover, DMZ zoning, & Configuring VLANs/routing/NATing with the firewalls as per the design.
• Enabled STP attack mitigation (BPDU Guard, Root Guard), using MD5 authentication for VTP, disabling all unused ports and putting them in unused VLAN and ensuring DHCP attack prevention where needed
• Provided redundancy in a multi homed Border Gateway Protocol (BGP) network by tuning AS-path.
• Worked on Juniper J series j230, M 320 routers and EX 3200 series switch.
• Designing, configuring, implementing and troubleshooting (LAN) VLAN’s, VTP, Spanning Tree (STP), Trunking (dot1q and ISL) and Ether channel.
• Experience working with F5 LTM with Virtual Server, Nodes, IRules, Session Persistence.
• Designing and configuring IP address schemes.
• Deployed the Cisco 3500 Access Points using Cisco Wireless controllers 5500 and 2500 and WCS System
• Configured and supported Cisco firewall PIX 500 series.
• Configuring AAA using TACACS+ and ACS server.
• Key contributions include troubleshooting of complex LAN/WAN infrastructure that include routing protocols EIGRP, OSPF & BGP
• Involved in the redistribution into OSPF on the core ASA firewall.
• Involved in the removal of EIGRP from all devices and making OSPF the primary routing protocol.
• Involved in the modification and removal (wherever necessary) of BGP from the MPLS routers.
• Worked on Solar winds Orion for analysis and monitoring purposes.

Confidential, Lakeville, Massachusetts

Network Engineer

Responsibilities:

• Installation, Configuration and Administration of ADS, DNS, DHCP and Web proxy (ISA) server
• Involved in Configuring and implementing of Composite Network models consists of Cisco7600, 7200, 3800 series and ASR 9k,1k GSR 12K routers and Cisco 2950, 3500, 5000, 6500 Series switches
• Configuring RIP, OSPF and Static routing on Juniper M and MX series Routers
• Manage Cisco Routers and troubleshoot layer1, layer2 and layer3 technologies for customer escalations
• Implemented site to site VPN in Juniper SRX as per customer
• Managing Access list on F5s and check for the ACLs on Firewalls such as CISCO ASA, Juniper, Fortinet-Fortigate.
• Take care of the Logging issues of the F5 load balancer and how it works with the syslog servers making sure the communications through the switches and routers.
• Implemented various EX, SRX & J series Juniper devices
• Implemented Site-to-Site VPNs over the internet utilizing 3DES, AES/AES-256 with PIX Firewalls
• Responsible for layer 2 securities which was implemented using a dedicated VLAN ID for all trunk ports, setting the user ports to non-trunking, deployed port security when possible for user ports
• Taking Regular backups & testing the backups by restoring in test lab frequently
• Managing a TACACS server for VPN user authentication and network devices authentication
• Installation and Configuration of Cisco Catalyst switches 6500, 3750 & 3550 series and configured routing protocol OSPF, EIGRP, BGP with Access Control lists implemented as per Network Design Document and followed the change process as per IT policy It also includes the configuration of port channel between core switches and server distribution switches
• Juniper Contrail SDN Cloud Computing Open Networking Open flow/ODL
• Involved in design and implementation of Data Center Migration, worked on implementation strategies for the expansion of the MPLS VPN networks
• Router/ Microsoft VPN Server in order to access certain limited network resources from customer locations
• Installed and configured four PIX 525 and two ASA 5505 in customer locations. In addition to that, two PIX firewall configured for the Guest access
• Experience in migration of Frame-relay based branches to MPLS based technology using multilayer stackable switch like 6500 series and 2800 series router
• Created engineering configuration, Security Standards, documenting processes and Network documentation using Microsoft Visio
• Troubleshooting the issues with the application owners hosted on the F5 environment in the 3- tier environments
• Installing the F5 TMOS upgrades, Hot-fix installations depending on Business need.
• Experience working with Juniper SRX Series
• Working with Juniper JUNOS operating system and working on M/ MX/ series routers. And SRX devices
• Installed and configured the Cisco routers 2800 in two different customer locations. It includes coordinating with Verizon and AT&T in order to bring the serial interface up for T3 link. Also, configuration includes frame relay, BGP and VPN tunnel on GRE
• Configured IPSec site-to-site VPN connection between Cisco VPN 3000 Concentrator and Cisco 3800

Confidential, Cecil Township, Pennsylvania

Network Engineer

Responsibilities:

• Configured OSPF over frame relay networks for NBMA and point to multipoint strategies
• Designing, Installation and configuration on Checkpoint, ASA, Net Screen and Juniper Firewalls
• Implementing traffic engineering on top of an existing Multiprotocol Label Switching (MPLS) network using Frame Relay and Open Shortest Path First (OSPF)
• Provided redundancy in a multi homed Border Gateway Protocol (BGP) network by tunings AS-path
• Determining the functionality with the DNS naming conventions and migrations from old load balancing environments to the F5 environment both 10.x and 11.x
• Worked on Juniper J series J230, M 320 routers and EX 3200 series switch
• Implemented various OSPF scenarios on networks consisting of 7600 routers
• Configured policy based routing for BGP for complex network systems
• Configured Multiprotocol Label Switching (MPLS) VPN with Routing Information Protocol (RIP) on the customer’s Site
• Experience working with Juniper EX-Series Ethernet Switches
• Tuned BGP internal and external peers with manipulation of attributes such as metric, origin and local Preference
• Cisco Secure Access Control Server (ACS) for Windows to authenticate users that connects to a VPN 3000 Concentrator
• Load Balancing with F5 GTM and LTM across multiple data centers
• Good knowledge on Intrusion Detection and Intrusion Prevention System
• Enabled STP attack mitigation (BPDU Guard, Root Guard), using MD5 authentication for VTP, disabling all unused ports and putting them in unused VLAN and ensuring DHCP attack prevention where needed
• Responsible for day to day management of Cisco Devices, Traffic management and monitoring
• Involved in designing L2VPN services and VPN-IPSEC authentication & encryption system
• Installed and configured Cisco ASA 5500 series firewall and configured remote access IPSEC VPN on Cisco ASA 5500 series
• Experience in HSRP standby troubleshooting & Experience in configuring & upgrading of Cisco IOS
• Knowledge on multiplex techniques such as DWDM
• Experience with Synchronous Optical Networking (SONET) over optical fiber
• Configured networks using routing protocols such as RIP, OSPF, BGP and manipulated routing updates using route-map, distribute list and administrative distance for on-demand Infrastructure
• VLAN Configurations, troubleshooting and Firewall ACLs and Object-Groups configuration and support