SUMMARY:

• Network Engineer with over 5+ years of experience in the industry including expertise in the areas of Network Designing, Routing and Switching technology and DNS/DHCP technology.
• Performance Management / Troubleshooting, base system Installation, Core OS services of Application layer protocols viz. FTP, SNMP, TELNET, DNS, DHCP, DHCPv6, ICMP
• Detailed knowledge of critical routing and switching features such as Class of Service/Quality of Service, Traffic and Performance Engineering, High Availability, and IP Services such as FTP, NAT/PAT, and NTP.
• Good working knowledge of protocols viz. PPP, HDLC, ISDN, Frame Relay and MPLS
• Detailed knowledge on Configuration and Troubleshooting OSPFv2 & OSPFv3, EIGRP, DEFAULT & STATIC routes, BGP, Packet Filtering, redistribution, summarization
• Worked on troubleshooting customer issues related to MPLS/VPN related issues involving PE configuration issues, PE - CE link issues such as routing protocol configuration, Layer1 / Layer2 issues, BGP4 address-family related issues, MP-BGP.
• Excessive experience in Configuring and troubleshooting remote access and site-to-site IPSec VPN, IPv6 transition techniques viz. Manual tunnelling, GRE tunnelling, 6to4 tunnelling, NAT64 and ISATAP
• Hands on experience with Troubleshooting of SVI, Inter-VLAN routing, VTP, DTP, STP, PVST+, RSTP, ARP, RARP, HSRP, Switch Port Security, Trunk, Ether-channel
• Cisco Router 2800, 2900, 3700, 3800, 7200, 7600 series, Catalyst Switches C6500, C4500, C4900, C3750, C2900 series.
• Installing and configuring Cisco Security Manager in the server and adding firewall modules to the manager.
• Experience in configuring and troubleshooting BIG-IP F5 load balancer LTM creating virtual servers, nodes, pools and iRules on BIG-IP F5 in LTM module.
• Good understanding of F5 products and technology (LTM, SSL offloading, GTM). Strong knowledge and understanding with IPSec, Juniper SA Remote Access VPN, and Source Fire intrusion prevention systems.
• Experience in VOIP technologies including servers, networking, TCP/IP, routing protocols, PSTN provisioning and SIP integration
• Configure rate limit filter on Juniper MX-960 routers to limit the bandwidth of customers.
• Experience in F5 Load balancing, Cisco ACE 4710 Load balancers, Aruba wireless access points and controllers, Deployed Cisco 2500 and 5800 Series Wireless Controllers and 1xxx and 2xxx series Access Points
• Hands-on experience with Open Systems Interconnection (OSI), T-1 system design, TCP/IP, ATM and various Network Management systems.
• Extensive understanding of Layer 2 and Layer 3 technologies.
• Hands-on experience in providing network support, installation and analysis for a broad range of LAN/WAN/MAN communication systems.
• Hands on Experience configuring and testing F5 iRules using Browser(IE), HTTP watch

TECHNICAL SKILLS:

Tools: Cisco Packet Tracer, Wireshark

Application layer protocols: FTP, SNMP, Telnet, HTTP, DNS, DHCP, ICMP

WAN Technologies: PPP, NAT, Frame Relay and MPLS

Routing technologies: OSPFv2, EIGRP & EIGRPv6, RIP, DEFAULT & STATIC routes, BGP, redistribution, summarization

VPN/Firewall Technologies: Remote access and site-to-site IPSec VPN, ASA firewalls,

Switching technologies: Inter-VLAN routing, VTP, STP, RSTP, ARP, RARP, HSRP, Switch Port Security, Trunk, Ether-channel.

Hardware Platform: Cisco Router 2800, 2900, 3700, 3800, 7200, 7600 series, Catalyst Switches C6500, C4500, C4900, C3750, C2900 series.

Programming Languages: Python, C

PROFESSIONAL EXPERIENCE:

Confidential, Holtsville, NY

Network Engineer

Responsibilities:

• Designing lab network for various customers in lab, configuring firewall and crating IDS, IPS rules in Sourcefire.
• Implemented, configured BGP WAN routing, converting OSPF routes to BGP (OSPF in local routing).
• Configured and deployed LTM for application such as Exchange, 2010, 2013, sharepoint, VM view using iApp and manually.
• Strong understanding of the Global Traffic Manager and query functionality between GTM and LTM.
• Installed and Configured F5 BIG-IP to provide load balancing for servers across multiple Datacentres.
• Experience in writing shell scripts to automate the administrative tasks and management using cron.
• Working knowledge of leveraging F5 devices for web acceleration and caching,
• Experience working with Nexus 7010, 5020, 2148, 2248 devices
• Configured and performed software upgrades on Cisco Wireless LAN Controllers 5508 for Wireless Network Access Control integration with Cisco ISE.
• Deploying and decommission of VLANs on core ASR 9K, Nexus 7K, 5K, 2k and its downstream devices.
• Experience working in VMware ESX (VSphere) 4.x, 5.x hypervisor for virtualization and installed different OS such as Linux (RHEL), SUSE, Windows.
• Experience with converting 6500 to Cisco Nexus in the data center environment.
• Responsible for SNMP Monitoring and Performance Tuning software viz. SolarWinds Orion and LogLogic Security Manager.
• Highly experienced with Cloud Computing technologies especially Microsoft Azure.
• Working on L3 protocols such as BGP, OSPF and EIGRP also includes static routing and route redistribution.
• Troubleshooting of LAN, WAN, WLAN & VoIP networking issues using Wireshark, TCP dump, Netflow, Syslog and other advanced tools and methodologies
• Configured Routing protocols such as OSPF, BGP, static routing and policy based routing.
• Worked on FTP, HTTP, DNS, servers in window windows server-client environment with resource allocation to desired virtual LANs of network.
• Implemented traffic filters using Standard and Extended access-lists, Distribute-Lists, Route Maps and route manipulation using Offset-list.
• Experience in VOIP technologies including servers, networking, TCP/IP, routing protocols, PSTN provisioning and SIP integration.
• Implementation of Site-to-Site VPNs and DMVPN over the internet using IKE Phase 1 and IKE Phase 2 based on traffic with ASA 5500 series Firewalls.
• Cisco Catalyst switches 2900XL, 3505, 3800, 4500, 6509, Cisco routers 2600, 2500, 2800, 3900 and 7200, OSPF, EIRGP, GRE, IPSec, F5 BIG-IP LTM 3500.
• Configuring and resolving various OSPF issues in an OSPF multi area environment.
• Hands on experience in configuring and supporting site-to-site and remote access server, IPSec, VPN solutions using ASA/PIX firewalls, Cisco and VPN client.
• Implementing, configuring, and troubleshooting various routing protocols like RIP, EIGRP, OSPF.
• Creating site to site and remote access VPN setups for different customer deployments.
• Filing defects for the customer issues and Working closely with development team on customer issues to resolve it.
• Involved in design and implementation of Data Center Migration, worked on implementation strategies for the expansion of the MPLS VPN networks.
• In-depth understanding with network management and support tools (i.e. Solar Winds, Netscout, Cisco Works, what’s up gold, NetFlow Analysers, SNMP Management, Sniffers, Wireshark).
• Configuring Routing protocols like OSPF, MPLS, multicast and L2 protocols in ASA to check it is passing through via ASA in customer deployments.
• Implemented a Software Defined Network (SDN) topology on Oracle VMware using Mininet (a virtual network emulator which creates hosts, switches and controller)

Confidential, Acton, MA

Network Engineer

Responsibilities:

• Deployed Cisco routers and switches, and administered network monitoring services
• Configured and troubleshoot issues with VLAN, Inter-VLAN routing, NAT/PAT, Access-List, and IOS Firewall.
• Encouraged implementation of physical security to the access of network and security devices.
• Encouraged network redundancy for backup of network devices in case of disaster recovery.
• Managed network evaluation, and troubleshoot various network problems.
• Replaced multiple Cisco clustered PIX firewalls with checkpoint cluster and deployed High Availability for security management server.
• Monitored firewall work-load using smart view-monitor to enhance checkpoint firewall performance.
• Troubleshoot firewall issues through command-line using CLI commands and GUI interface using smart console.
• Implemented identity awareness using checkpoint software blade to track user activity as company policy demands.
• Periodic policy review to ensure security policy achieves purpose.
• Configured user authentication rules/policies to permit or deny user traffics on role-based access.
• Managed and set up VLANs and deploy new VMware environment.
• Handled the tasks of configuration and deployed wireless solutions.
• Monitored, troubleshoot, configured, and deployed LAN/WAN solution.
• Performed installation and upgrade of new network and desktop application software.
• Network Assessment and Documentation (including technical, operational, and economical assessment).
• Remotely connect to end user computer to help troubleshoot network issues and VPN.
• Drafted documents to outline procedures for IP addressing scheme and network subnet for clients
• Configured BGP, Frame-Relay, IPsec-VPN, SSL VPN, and routing protocols (OSPF, EIGRP, RIP, BGP, eBGP & iBGP).
• PC/LAN support in an Ethernet based TCP/IP (DCHP & STATIC IP allocation).

Confidential

Jr. Network Engineer

Responsibilities:

• Worked with the data center planning groups, assisting with network capacity and high availability requirements.
• Experience in Ethernet Layer 2 devices (switches) and Layer 3 devices (routers).
• Full Command on Cisco IOS Commands and Administration of Cisco IOS 11.x and 12.1 versions.
• Hands On experience with configuration and support of Cisco 19xx, 29xx, 72xx Routers and Cisco 3750, 2960X, ME38xx, 6807 Switches.
• Installing and configuring Cisco Security Manager in the server and adding firewall modules to the manager.
• Experience with Veritas volume manager (VxVM), Veritas File system (VxFS), Veritas net backup, Veritas clustering with SAN, NAS environment.
• Actively involved in planning and administering High availability and high performance clusters using Veritas cluster server.
• Implemented the SPAN ports to facilitate the various network device traffic captures.
• Ability to perform deep packet inspection by differentiating packet flow with size, protocols, ports and flags and tweak different countermeasures to stop malicious traffic.
• Experience with Routing protocols, Networking Layer 1,2 and 3 Switching concepts, LAN/WAN.
• Configured Cisco 3550 Layer3 Switch and supervised equipment installation work.
• Full Command on Cisco IOS Commands and Administration of Cisco IOS 11.x and 12.1 versions.
• Performing security audits of perimeter routers, identifying missing ACL's
• Experience with Ticket Tools like Remedy, ServiceNow.
• Switching related tasks included implementing VLANS, STP and configuring ISL trunk on Fast - Ethernet channel between switches, Configuring CGMP, IGMP and PIM.
• Configuration of EIGRP and OSPF as interior gateway protocol with route filtering and route redistribution, installed and maintained Cisco 3600, 2600 and 7200 backbone routes with HSRP.
• Configuration & Management of VLANs, 802.1q trunks, VTP, Security policies
• Configuring VLANs and implementing inter VLAN routing.
• Hands on experience with Upgrading and troubleshooting Nexus IOS to the Nexus Switches.
• Hands on experience with Ethernet protocols, network design and switch configuration.
• Acquired a vast knowledge in configuring, maintaining and troubleshooting network services.
• Configured the following routing protocols viz. EIGRP, OSPF, RIP, RIPng on Cisco 2700 series routers and switching protocols viz. STP, VLAN Trunking, Switch port security in Cisco 3200 series switches
• Implemented the company dial up networking solution utilizing a Cisco 3600 with 24 digital modems and a PRI.
• Migrated the company from bay networks 100mbit hubs to HP managed switches.
• Incorporated VLANS to segment traffic on managed switches.
• Usage of firewall log for investigative and troubleshooting purposes.
• Configuring VRRP, Static route, BGP, Routing policies, ACL.
• Preparing reports of the daily activities within the datacenter.
• Coordinating with Service providers & Clients on various implementations.
• Managing various activities in setting up Data Centers & Disaster recovery centers.
• Configured VPN with help of two different and remote networks