Network And System Engineer Resume
San Jose, CA
SUMMARY:
- An accomplished IT professional work experience as Network Engineer, Network Admin and System Admin. Looking for new opportunities to enhance my skills towards Networking and System Administration.
- Experience in Networking including hands - on experience in providing network support, installation and analysis for a broad range of LAN / WAN communication systems.
- Experienced with Cisco routers and switches, and a good understanding of IP sub netting.
- Detailed knowledge of critical routing and switching features such as Class of Service/Quality of Service, Traffic and Performance Engineering, High Availability, and IP Services such as FTP, NAT/PAT, and NTP.
- Good working knowledge of protocols viz. PPP, HDLC, ISDN, Frame Relay and MPLS
- Experienced in Deploying Wireless OSPF and BGP.
- Extensive experience in Installation, Configuration, management and maintenance of Windows server operating systems ranging from Windows Server .
- Advanced Knowledge in IPSEC VPN design connection and protocols, IPSEC tunnel configuration, encryption and integrity protocols
- Experience in manage multiple security tools Palo Alto, checkpoint, ForeScout, firewall, and Endpoint.
- Detailed technical experience in the installation, configuration and operation of high-end firewall appliances, ideally Palo Alto Networks products. Perform software and firmware upgrades on firewalls.
- Configure all Palo Alto Networks Firewall models (PA-2k, PA-3k, PA-5k etc.) as well as a centralized management system (Panorama) to manage large scale firewall deployments.
- Hands on expertise in DHCP DNS, AD, NIS, NFS, SMTP, IMAP, ODBC, FTP, TCP/IP, LAN, WAN, LDAP, HP RDP, security management and system troubleshooting skills
- Designing and Implementing Active Directory Domains and Forests.
- Expertise in active directory design and support (GPO's, AD Schema, OU's, LDAP, Sites, etc.).
- Implemented Active Directory services for creation and maintaining users and group profiles based on company policies.
- Network Infrastructure and Wireless Survey Best Practices
- Worked on implementation strategies for the expansion of the MPLS VPN networks.
- Strong hands on experience in layer-3 Routing and layer-2 Switching. Dealt with Nexus models like 7K, 5K, 2K series, Cisco router models like 7200, 3800, 3600, 2800, 2600, 2500, 1800 series and Cisco catalyst 6500, 4500, 3750, 3500, 2900 series switches.
- Experience of working on a project to upgrade the Domain Controllers from and increase the domain function level from .
- In-depth knowledge of deploying and troubleshooting LAN, WAN, Frame-Relay, Ether-channel, IP Routing Protocols - (RIPV2, OSPF, EIGRP & BGP), ACL's, NAT, VLAN, STP, VTP, HSRP & GLBP.
- Knowledge of Intrusion Detection, DMZ, encryption, IPsec, proxy services, Site to Site VPN tunnels, MPLS/VPN, SSL/VPN
- Worked Versa SDWAN trouble tickets for dozens of clients. Created a technical MOP for every network change. Assisted with the team's escalations and major projects. Frequently configured firewalls, VPNs, NAT, BGP, and VLANs. Maintained Cisco priv routers with our core team
- Attended Daily meetings and conference calls to report system health and assist different departments with SCCM issues.
- Design and Architecture of F5 LTM, GTM, APM, ASM and application delivery.
- Worked with F5 Access Policy Manager (APM) to implement best security policies. Experience in integrating identity federation with Cloud (SaaS) SAML based applications using F5 APM, ASM, AFM.
- Hands on Knowledge/experience on F5 load balancers, its methods, implementation and troubleshooting on LTM, GTM, APM, ASM, AFM. Worked on software versions including 9.2, 11.4.1, 11.5.3.
- Migrated legacy F5 LTM and GTM appliance to newer version appliances.
- Deployed code upgrade from version 11.5.1 HF4 to version 11.5.4 on the F5 LTMs.
- Configured F5 GTM solutions, which includes Wide IP (WIP), Pool Load Balancing Methods, probers and monitors.
- Strong production experience in managing F5 BIG-IP APM, ASM, AFM and LTM.
- Design and Implementation of F5 GTM based on topology load balancing methods
- Implementation of F5 viprion systems
- Responsible for designing, performing and validating tests of F5 products, alliance partner applications and competitive products to create detailed and accurate documentation with reproducible results.
TECHNICAL SKILLS:
Routers: Cisco 7609, 2600, 2800, 3800, 3640, Cisco 3745, 7200 Series
Switches: Cisco 3500, 5000, 6500 Catalyst Series Cisco 7000, 2000 Nexus Series -2k,5k,7k
Palo Alto PA3050, PA: 5050, CISCO ASA
Routing Protocols: RIP v1&v2, BGP, OSPF, EIGRP, HSRP, VRRP, GLBP, FTP, SMTP, SNMP
Switching Protocols: STP, RSTP, PVSTP, VTP, ARP, and VLAN.
IP Services: DHCP, NAT, VLAN, DNS, FTP, TFTP, LAN/WAN
WAN Technologies: ATM, ISDN, PPP, MPLS, ATT, 802.11, 802.11a, 802.11b, APLUS.
Remote access and siteto: site IPSec VPN, IPv6 transition techniques viz. Manual tunneling, GRE tunneling, 6to4 tunneling, NAT64 and ISATAP
Networking: TCP/IP, OSI Model, Socket Programming, LAN/WAN, Switches and Routers, IPV4/IPV6 Addressing & Subnetting, Ethernet, STP, VLAN, Trunking, DNS, DHCP, NAT, ACL, HTTP, ATM, ISDN, PPP, MPLS, ATT, 802.11, 802.11a, 802.11b, APLUS Web Services (REST & SOAP), Windows Servers 8 & 12
Windows Administration: Configuration of DHCP and DNS, installation and configuration of VPN client, Windows Server 2003/2008 - installation and configuration, configuration and management of Active Directory. Patch management using SCCM.
Operating Systems: Windows Server 2000/2003/2012 & R2/2016
PROFESSIONAL EXPERIENCE:
Confidential, San Jose, CA
Network and System Engineer
Responsibilities:
- Network engineer providing network design, implementation, and level 3 escalation support.
- Maintaining and Administering Windowsservers 2008/2012/ 2016 R2.
- Configuring & managing around 500+ Network devices that includes Cisco Routers & Switches, Nexus Switches, F5 Big IP Load balancers, Blue Coat proxies and Riverbed WAN Optimizers.
- Troubleshooting of LAN, WAN, WLAN & VoIP networking issues using Wireshark, TCP dump, Netflow, Syslog and other advanced tools and methodologies
- Configured Routing protocols such as OSPF, BGP, static routing and policy based routing.
- Installation, configuration and maintenance of Cisco Routers like 2600, 2800 and 3600 series.
- Experience working with Cisco switching and routing technology mostly on Cisco 2911 and Cisco 3560.
- Configured network using routing protocols such as RIP, OSPF, and BGP and troubleshooting l2/l3 issues.
- I joined the SDWAN team when they started to expand. The new team had to help test processes and documentation.
- General Engineer for Level 3's SDWAN, Wi-Fi and Hybrid WAN solutions; P & L responsibility for a total product portfolio of $60
- Perform design an validating f5 LTM, GTM, Viprion systems
- Performed F5 appliance (LTM, GTM, APM, ASM, AFM) maintenance and system upgrades including hot fixes and security configurations.
- Supported a Large F5 application delivery (LTM, GTM, ASM, APM, AFM) infrastructure of about one hundred nodes.
- Set up and maintained BIG-IQ to centralize more than 150 F5 appliances management and Configure the Static IP routes
- Configuring Virtual Servers on the F5 Local Traffic managers. SSL VPN configuration on F5 Firepass 4300
- Involved in updating the F5 wide IP configurations, persistence profiles, updating the SSL certificates across the F5 devices for the resource updates
- Worked on Cisco Layer 2 switches (spanning tree, GRE Tunnel, VLAN).
- Develop design and implementation engineering for interfaces linking to F5 devices.
- Data Center consolidation and migration of network and applications by migrating the F5 LTM.
- Provided tier-3 escalation support for enterprise technologies.
- Configured crypto-maps, isakmp policies, transform sets for IPSEC-VPN connectivity
- Creating and managing Active Directory sites and services.
- Managing the delegation of control on the Active Directory to various team as per their job functions.
- Migration of resources done in batches of a specific number of resources everyday using Active Directory Migration Tool.
- Worked aggressively on administrative and management platform of Junos space and Palo Alto Panorama
- Supported remote access solutions (Cisco ASA, Palo Alto Global Protect)
- Experience converting Palo alto VPN rules over to the Cisco ASA solution.
- Provided day-to-day administration and support of an OSPF/BGP Palo Alto firewall WAN with dual-stack IPV4/IPV6 environment
- Deployed Zone Based Firewalling and Security Rules on the Palo Alto Firewall
- Configured Palo Alto Firewall models PA-2k, PA-3k, PA-5k as well as a centralized management system (Panorama) to manage large-scale Firewall deployments
- Successfully installed Palo Alto PA 3060 Firewalls to protect Data Centre and provided L3 support for routers/switches/Firewalls.
- Configuration of DHCP, DNS on Windows 2003and 2008 platforms.
- Responsible for the migration of Windows 2003 servers to Windows 2008.
- Perform Active Directory administration including group policy and (moves/adds/changes) of user accounts, security groups, and distribution lists.
- Involved in design and implementation of Data Center Migration, worked on implementation strategies for the expansion of the MPLS VPN networks.
- Participate in all technical aspects of LAN, WAN, VPN and security Internet Service projects including, short and long-term planning, implementation, project management and operations support as required.
- Configured network using routing protocols such as RIP, OSPF, and BGP and troubleshooting l2/l3 issues.
- Implemented VLANS between different departments and connected them using trunk by keeping one VLAN under server mode and rest falling under client modes.
- Migration from Cisco Firewalls to Palo Alto Firewalls platforms PA 4000 and PA 500 and PA- 200 Firewalls.
- Configured and maintained IPSEC and SSL VPN's on Palo Alto Firewalls.
- Created virtual systems (Firewalls) in the Palo Alto Environment.
- Having good exposure to wild fire feature of Palo Alto.
- Working with different teams to gather info for the new request and troubleshoot for any connectivity issues by capturing traffic using TCPDUMP and smart view tracker.
- Experience in Installation and Configuration of DNS, DHCP, IIS, WSUS Server.
Confidential, Denver, CO
Jr. Network and System Engineer
Responsibilities:
- Configuring and implementing of Composite Network models consists of Cisco 7600, 7200, 3800 series and ASR 9k, GSR 12K routers and Cisco 2950, 3500, 3550, 3750, 5000, 6500, 9300, 9500 Series switches.
- Experience in installation and administration of Windows 2003/2008/2012 Server.
- Experience supporting or testing LANs, VLANs, WLANs, VPNs, NAT devices, and DHCP servers.
- Use Active Directory to reset passwords, manage group policies, add or delete accounts.
- Involved in maintaining the Active Directory and GPO management.
- Configured, maintained, and troubleshot routers and switches ranging from the 1720 series through the 7200 series routers and the 2900 series through the 6500 series switches in a highly redundant dual-homed environment.
- Troubleshooting windows update and performance issues.
- Boot images and DP configurations for OSD, Capture and Deploy OS using SCCM 2012.
- Periodic policy review to ensure security policy achieves purpose.
- Configured user authentication rules/policies to permit or deny user traffics on role-based access.
- Managed and set up VLANs and deploy new VMware environment.
- Handled the tasks of configuration and deployed wireless solutions.
- Monitored, troubleshoot, configured, and deployed LAN/WAN solution.
- Configuring TACACS, LDAP, and RADIUS for CISCO ASA and Palo Alto Firewalls
- Responsible for CISCO ASA and Palo Alto configuration and administration of networks.
- Experience with Firewall migrations from PIX Firewall to CISCO ASA and Palo Alto Firewall appliances.
- Troubleshot security related issues on CISCO ASA/PIX, Palo Alto Firewalls.
- Performed installation and upgrade of new network and desktop application software.
- Installing, configuring and troubleshooting Network Load Balancing (NLB) issues on windows 2008 server.
- Worked on Layer 2 protocols such as STP, VTP, RSTP, PVSTP+, MST and other VLAN troubleshooting issues and configuring switches from scratch and deployment.
- Worked on preparing technical documentations using Microsoft VISIO and Microsoft Office.
- In working with Ethernet trouble, I isolate and correct issues related to burst of traffic, where traffic shaping needs to be implemented also identify QoS issues.
- Performed installation, cabling, and cable testing. Implemented QoS for Voice traffic.
- Configured BGP, Frame-Relay, IPsec-VPN, SSL VPN, and routing protocols (OSPF, EIGRP, RIP, BGP, eBGP & iBGP).
- PC/LAN support in an Ethernet based TCP/IP (DCHP & STATIC IP allocation).
Confidential
IT Support Engineer
Responsibilities:
- Supported various LAN environments consisting of Cisco 6500 switches with Sup-720.
- Configured Access-lists, Distribution-lists, Offset-lists and Route Redistribution.
- Involved in configuration of OSPF Summarization (Summarizing internal and external routes).
- Scalability of OSPF by Filtering of Intra, Inter and External OSPF routes.
- Creation of groups, group policies, task scheduling and various necessary tasks for the maintenance of the whole domain setup.
- Managing and Maintaining DNS, DHCP on Windows 2008 Server.
- Used various BGP Attributes and various Route-filters such as named Access-lists, Prefix lists, Route-maps to permit or deny routes and to change various attribute.
- Experienced in implementation and troubleshooting knowledge of protocols and technologies, especially in the following: BGP4, OSPF, IPv4, and Ethernet.
- Configured DHCP server with different scopes to assign IP addresses to systems.
- Administrating Windows 2008 Server, managing user's account, rights and permissions and allowing Users Registration on the Domain.
- Windows 2000, 2003, 2008 administration and configuration in a distributed, Multi-user environment.
- Upgrade Windows 2003 to windows 2008.
- Configuring and Monitoring of group policies on sites, domains and OUs.
- Design and implement Active Directory service and systems policies.
- Implemented the company dial up networking solution utilizing a Cisco 3600 with 24 digital modems and a PRI.
- Incorporated VLANS to segment traffic on managed switches.
- Usage of firewall log for investigative and troubleshooting purposes.
- Configuring VRRP, Static route, BGP, Routing policies, ACL.
- Installation & troubleshooting of local & network printers, Notebooks and Scanners.