SUMMARY:

• Around 7 years of experience in Networking and Security, including hands - on experience in providing network support, installation and analysis for a broad range of LAN/WAN/MAN communication systems.
• Detailed understanding of different layer 2 protocols like VLANs, VTP, STP, RPVST, Port Security, and Ether Channels (LACP and PAGP).
• Experienced in Data-Center Nexus 7009, 7018, 5548P, 5596T, 2148T, 2224T and 6000switches.
• Worked on configuring the Nexus 5K Aggregation Switch and Nexus 2K Fabric Extenders.
• Implemented VDC, VPC, VRF and OTV on the Nexus 5505 and 7009 switches and also implemented VSS on Cisco catalyst 6509 and 6513 switches.
• Worked on Cisco 1800, 2600, 3600, 7200 and 7600 routers.
• Experienced and skilled in configuring Routing Protocols RIP, EIGRP, OSPF and BGPV4 on Cisco routers like 2600, 2900, 3600, 3900, 7200 and 7600 series.
• Designed Redundancy Gateways for Campus Network using HSRP/VRRP/GLBP.
• Hands on experience in configuring and supporting site-to-site and remote access Cisco, IPSec, VPN solutions using ASA/PIX firewalls, Cisco and VPN client.
• Experience in deploying Cisco 6900, 7800, 7900, 8800 and 3900 series VoIP phones.
• Knowledge of implementing and troubleshooting complex layer 2 technologies such as VLAN Trunks, VTP, Ether channel, STP, RSTP and MST. Implementation of HSRP, VRRP for Default Gateway Redundancy.
• Involved in troubleshooting of DNS, DHCP and other IP conflict problems.
• Responsible for Check Point and Cisco ASA firewall administration across global networks.
• Experience in working with Cisco Nexus Switches and Virtual Port Channel configuration.
• Worked on F5 LTM, GTM series like 6400, 6800, 8800 for the corporate applications and their availability.
• Experience in testing Cisco routers and switches in laboratory and deploy them on site production.
• DMZ zoning & configuring VLANs/routing/NAT with the firewalls as per the design.
• Working experience with 6500 series switches at layer 2 and layer 3.
• Prepared Heat Maps with Map Info
• Familiar with CATOS, IOS & NX-OS, DOCSIS 3.0, CAT5
• Hands on experience with VPC and FEX configuration on Nexus switches.
• Working experience with Wireless LAN Controller (WLC) and Light Weight Access Point (LWAP).
• Experience in configuring and troubleshooting various layer 3 routing protocols like RIP, OSPF, EIGRP and BGP.
• Expertise is maintaining stable STP topology using protocols such as Port fast, BPDU guard, root guard and UDLD.
• Experience in Trunking protocols 802.1q and ISL.
• Configuring BGP/OSPF routing policies and designs, worked on implementation strategies for the expansion of the MPLS VPN networks.
• Expertise in creating groups and pruning traffic flow using VLAN, VTP, ISL, 802.1Q.
• Familiar with REMEDY for ticket change management process.
• Some knowledge in documentation and updating client’s network documentation using Microsoft Visio.
• Experience in testing Cisco & Juniper routers cum switches in laboratory scenarios and deploy on site for production.
• Responsible for up gradation and maintenance of client website with latest networking products and offerings using HTML 5.0 with some amount of java scripting.
• Expertise in configuring and troubleshooting of Palo Alto, Juniper NetScreen & SRX Firewalls and their implementation.
• Experienced in Cisco IOS, Juniper JUNOS Hands-on experience, specializing in Cisco Environment in Data Center, systems, network and user administration, LAN / WAN and Security.
• Troubleshooting and monitoring application issues using tools like Wire-shark.
• Excellent inter-personal skills with the ability to work in a team of large members with minimum supervision necessary.
• Experienced in Microsoft Visio creating a detail physical and logical network diagrams.
• Supported Large Frame-Relay, MPLS, E1/T1, ISDN, Analog networks.
• Provided input and recommendations for equipment purchasing to maximize added-value and scalability

TECHNICAL SKILLS:

Routers/Routing Protocols: Cisco 7600, 7200, 3800, 3600, 2900, 2800, 2600 - OSPF, EIGRP, BGP, RIP v1/v2, PBR, Route Filtering, Redistribution, Summarization, and Static Routing, IS-IS, ICMP, FTP, SMTP, HTTP/HTTPS

Switches/Switching Protocols: Nexus 2K/5K/7K, Cisco Catalyst 6500, 4500, 3850,3560, 3750, 2960; UCS-C, UCS-D, UCS-M, CUCM - LAN, VTP, STP, PVST+, RPVST+, Inter VLAN routing & Multi-Layer Switch, Etherchannels, Transparent Bridging

Network Security: Cisco ASA 5540, ACL, IPSEC,F5 Load Balancer, Checkpoint, Blue Coat, Palo Alto, SCADA, Process Control Domain(PCD)

Juniper Platforms: SRX, MX, EX Series Routers and Switches

Load Balancer: F5 Networks (Big-IP) LTM 8900 and 6400,GTM, Cisco CSM, APM

LAN: Ethernet (IEEE 802.3), Fast Ethernet, Gigabit Ethernet

WAN: PPP, HDLC, Channelized links (T1/T3), Fiber Optic Circuits, Frame Relay

WLAN: Autonomous AP s, Lightweight AP s, WLC, Channels- 802.11b/g; Air Magnet, Ekahau, Map Info

ARP, Wi: Fi, WiMAX, CDMA, 3G, 4G

Various Features & Services: IOS and Features, IRDP, NAT, SNMP, SYSLOG, NTP, DHCP, CDP, TFTP, FTP.

AAA Architecture: TACACS+, RADIUS, Cisco ACS.

Network Management: Wireshark, SNMP, Solar winds, HP Open View, KTLO, Cisco Prime

PROFESSIONAL EXPERIENCE:

Confidential, Redmond, WA

Senior Network Engineer

Responsibilities:

• Successfully migrated the cisco legacy environment which consist of 6500, 4500 to Cisco Nexus 7k/5k/2k.
• Migrated old Nokia firewalls to standard HP hardware’s.
• Design and configuring of OSPF, BGP on Juniper Routers and SRX Firewalls.
• Security policy review and configuration in Palo Alto and Juniper SRX Firewall in US offices and Datacenter.
• Configuring & managing around 500+ Network &Security Devices that includes Cisco Routers & Switches, Nexus Switches, Juniper and Palo Alto Firewalls, F5 BigIP Load balancers, Blue Coat Proxies and Riverbed WAN Optimizers.
• Regular upgrade and maintenance of Infrastructure, Installing, configuring, and maintaining Cisco Switches (2900, 3500, 7600, 3700 series, 6500 series) Cisco Routers (4800, 3800, 3600, 2800, 2600, 2900, 1800, 1700, 800) Cisco Router and Switches, Juniper Routers and Firewalls, Nexus 7k,5k & 2k, f5 BIG IP, Palo Alto Firewalls, BlueCoat Proxy and Riverbed Steelhead appliances
• Configuring various BGP attributes such as Local Preference, MED, Extended Communities, Route-Reflector clusters, Route-maps and route policy implementation.
• Deployed the Nexus 7000/5000/2000 architecture into production securing competitive advantage across multiple verticals.
• Worked extensively in Configuring, Monitoring and Troubleshooting Juniper security appliance, Failover DMZ zoning & configuring VLANs/routing/NATTing with the firewalls as per the design.
• Converting CatOS to Cisco IOS Config Conversion on distribution layer switches
• Convert Branch WAN links from TDM circuits to MPLS and to convert encryption from IPSec/GRE to Get VPN.
• Conversions to BGP WAN routing. Which will be to convert WAN routing from OSPF to BGP (OSPF is used for local routing only) which involves new wan links.
• Planning, Designing and assisting in deploying enterprise wide Network Security and High Availability Solutions for ASA.
• Involved in Configuration of Access lists (ACL) on Juniper and Palo Alto firewall for the proper network routing for the B2Bnetwork connectivity.
• UDLD, Spanning Tree Protocol 802.1d, 802.1s and 802.1w.
• Experience of IP/MPLS/Optical Transmission network for access transport & back haul network to Facilitate 2/3/4G Network.
• Understanding of mobile backhaul network on IP, Ethernet, ATM, PW & TDM.
• Have completed two Business integrations with a very strict time line and gained some very good knowledge in understanding the road blocks in Network integration and feasible methods to fix it.
• Have maintained Riverbed for the North American offices.
• I maintain a data collection environment build of ISG1000 Clustered environment at the central site and SSG5/SSG20 at the remote site. This is an IPSEC tunnel environment of 600 sites and my primary responsibility is to maintain, install and troubleshoot. I configure and ship out Juniper SSG5/SSG20 for remote sites.
• Also SPOC for the Data center across NA, Canada and Mexico. This environment has a primary Frame-relay link backed up by the IPSEC tunnel built over 5510 and 5505 for remote sites. I configure and ship out devices for any new installation, moves and troubleshoot any day to day issues. I also maintain a F5, Link proof and Checkpoint firewall in addition to 3500 switches and core 6513 switch for the switching environment.

Environment: Cisco Routers, Cisco Switches, Cisco Nexus 7k/5k/2k, IPSEC, MPLS, VLANS VTP, RSTP, ACL, NAT, IDS/IPS, firewalls, Nokia, HP, Nexus Switches, Palo Alto, F5 BigIP Load balancers, Cisco ACE load balancers, Blue Coat Proxies, Riverbed WAN Optimizers, Data center, Spanning Tree, Checkpoint Juniper Routers, Juniper SRX, Network2/3/4G.

Confidential, Reston, VA

Network Engineer

Responsibilities:

• Involved in Integration, configuration and maintenance of Cisco Router, Catalyst Switches and Firewalls.
• Configuring RIP, OSPF and Static routing on Juniper M and MX series Routers.
• Responsible for all routing, switching, VPN, network security, and server load balancing.
• Using PBR with Route Maps for route manipulation/filtering. Troubleshooting routing issues like suboptimal routing and asymmetric routing
• Implemented various EX, SRX & J series Juniper devices
• Have created lot of site to site IPSEC VPN tunnel with Checkpoint, Juniper Netscreen firewalls and Cisco PIX/ASA firewalls. Completed a project to update the patch HFA50 across all the firewall to overcome the bugs in the existing version of R65.
• Responsible for 6500, 3500, Nexus switching, ASA, FWSM Firewalls, CSS and F5 load balancers, Riverbed WAN accelerators, IronPort Proxy, and Linux/Bind DNS servers.
• Configuring various advanced features (Profiles, monitors, iRules, Redundancy, SSL Termination, Persistence, SNATs, HA on F5 BIGIP appliances SSL termination and initiation, Persistence, Digital Certificates, Executed various migration/upgrade projects across F5 and hands on with F5 BIGIP LTMs/EM.
• Configured PPP, HDLC, BGPv4, EIGRP, MPLS and OSPF routing.
• Configured CIDR, IP, RIP, PPP, BGP and OSPF routing
• Configured Juniper MX480s, EX8200s, EX4500s, EX4200s, from scratch to match design.
• Worked with the Trouble Tickets on F5 Load balancers on LTM module
• Switch experience includes Cisco Catalyst switches: CISCO 3750, 4500, 6500 series switches.
• Configuration and maintenance of OSPF protocol which was the enterprise IGP. Configuration included deploying of new branch locations or new network devices in the existing infrastructure. Creating Stub Areas & configuring Summarization for effective Routing.
• Provided technical support for full setup, debugged the problems of OSPF, switching and HSRP.
• Implemented and used SDM to configure Cisco IOS security features and network connection.
• Network Segmentation-application migrations for enterprise Private Data Firewall and data behind ASA 5585-Xs
• Create and test Cisco router and switching operations using OSPF routing protocol, ASA Firewalls for stable VPNs.
• Configured Object Grouping, Protocol Handling and Code up gradation on ASA Firewalls.
• Implementation and maintained intrusion detection/ prevention (IDS/IPS) system to protect enterprise network and sensitive corporate data. For Fine-tuning of TCP and UDP enabled IDS/IPS signatures in Firewall.
• Design, implement and provide second level support for host load-balancing solutions at SWA.
• Configuration the access-list rules, network object-service group based on well-known port the port i.e. FTP/SFTP, SSH, HTTPS/HTTPS (SSL) etc.
• Switching related tasks included implementing VLANs, VTP and configuring and maintaining multi VLAN environment and inter-VLAN routing on Fast-Ethernet channel.
• Worked with different vendors and implement Site-to-Site VPNs over the Internet.
• Negotiate VPN tunnels using IPSec encryption standards and also configured and implemented site-to-site VPN, Remote VPN.
• Security policy review and configuration in Palo Alto and JuniperSRX Firewall in US offices and Datacenter.
• Worked with Juniper T-Series, M-Series, MX-Series, J-Series Routers.
• Working knowledge of the UNIX and CLI based command to implement the networking tools.
• Configured and monitored Firewall logging, DMZ’s and related security policies.
• Responsible for service request tickets generated by the helpdesk in all phases such as troubleshooting, maintenance, upgrades, patches, fixes, and all around technical support.
• Configuration of ACLs in Cisco 5540 series ASA firewall for Internet Access requests for servers in LAN and DMZ and also for special user requests as authorized by management.
• Involved in L2/L3 Switching Technology Administration including creating and managing VLANs, Port security, Trunking, STP, Inter-VLAN routing, LAN security.
• Implementing, configuring and troubleshooting routing protocols such as OSPF (v3, v2), RIPv2, BGPv4, EIGRP, HSRP, GLBP and MPLS.

Environment: Cisco Routers, Cisco Switches, Nexus, Routing protocols, Palo Alto, F5, Load Balancer HSRP, VRRP, IPSEC VPN, VPN, QOS, ASA firewall, Load balancer, MPLS, VLANS, VTP, RSTP, ACL, NAT, IDS/IPS, SIP, RTP, RADIUS, TACACS+, Juniper SRX, Juniper M, MX, ASR 9000, Catalyst 6500, CRS, Cisco ASR, UNIX, Firewall FWSM.

Confidential, South Windsor, CT

Network Engineer

Responsibilities:

• Involved in configuring Site-to-site and remote access VPN solutions.
• Installed and configured Cisco 7200 series router and Cisco 2950, 4500, 6500 Series switches.
• Configured network using routing protocols such as RIP, OSPF, and BGP and troubleshooting L2/L3 issues.
• Worked on multiple projects related to Branch networks, Campus networks, extranet clients and Data Center Environments involving in data center migrations from one data center to another.
• Provided estimated bandwidth requirements for data replication, to best determine adequate timing for migration service levels
• Created data migration strategies to help with completion of migration of data center from one point to another.
• Configuration of Cisco 6500 (sup 720), 4500 (SUP 6) & 3750 Catalyst Switches for network access.
• Worked extensively on Cisco Firewalls, Cisco PIX (506E/515E/525/) & ASA 5500(5510/5540) Series, experience with convert PIX rules over to the Cisco ASA solution.
• Configuring RIP, OSPF and Static routing on Juniper M and MX series Routers
• Configuring VLAN, Spanning tree, VSTP, SNMP on EX series switches
• Time to time upgrade network connectivity between branch office and regional office with multiple link paths and routers running HRSRP, EIGRP in unequal cost load balancing to build resilient network.
• Design and implement Catalyst/ASA Firewall Service Module for various LAN’s.
• Key contribution includes troubleshooting of complex LAN/WAN infrastructure that include routing protocols EIGRP, OSPF, & BGP.
• Troubleshoots in Cisco Aironet 2700 and 600 series.
• Configured Client VPN and RSA Token ID technologies including Cisco’s VPN client via IPSEC.
• Configuring ACL to allow only authorized users to access the servers.
• Participated in on call support in troubleshooting the configuration and installation issues.
• Installation, maintenance, troubleshooting local and Wide Areas Network (ISDN, Frame relay, DDR, NAT, DHCP, TCP/IP).
• Provided technical support in terms of upgrading, improving and expanding the network.
• Providing technical security proposals, detailed RFP responses, and security presentation, installing and configuring ASA firewalls, VPN networks and redesigning customer security architectures.
• Developed local standard operating procedures and configuration guides for switches, routers, firewalls, and IPS/IDS devices.
• Designed and configured F5-BIGIP-LTM reverse proxy & load balancing solutions for client networks.

Environment: Cisco 3750/3550/3500/2960 , switches and Cisco 3640/ 0/3845/3600/2800 routers, Cisco ASA5510, Checkpoint,F5 Load Balancer Cisco Nexus7K/5K,Checkpoint,Cisco ASA.

Confidential

Jr Network Engineer

Responsibilities:

• Responsible for monitoring the Network performance based on company’s Service Level Agreement (SLA).
• Documented the company’s design, implementation and troubleshooting procedures.
• Configured VLANs with 802.1Q Tagging according to the Server team’s requirements.
• Tested the new zone for failover capabilities and redundancy. Connected the Distribution routers to the Core routers via OSPF Areas.
• Involved in troubleshooting of DNS, DHCP and other IP conflict problems.
• Performed IOS upgrades on various catalyst series switches and maintained latest IOS versions according to company’s policy.
• Responsible for cabling and labeling based on day to day requirement and Racking & Stacking of various network equipment and made sure that there are no connectivity issues using ping and tracer.
• Provided Helpdesk support that involved identifying and escalating the tickets to specific groups.
• Responsible for level 2 support of existing network technologies / services & integration of new network technologies / services.
• Configured VSS on Cisco Catalyst 6509 switches in order to have redundancy. Worked on T1/E1/T3 technologies and different LAN & WAN technologies.
• Supported various LAN environments consisting of Cisco 6500 switches with Sup-720.
• Designed and implemented Cisco 7500, 7200, 6500, 3600, 2600 Series routers in lab environment to reproduce various issues and test fixes for them.
• Troubleshooting complex LAN /WAN infrastructure that include routing protocols EIGRP, OSPF.
• Configured Access-lists, Distribution-lists, Offset-lists and Route Redistribution.
• Involved in configuration of OSPF Summarization (Summarizing internal and external routes).
• Scalability of OSPF by Filtering of Intra, Inter and External OSPF routes
• Used various BGP Attributes and various Route-filters such as named Access-lists, Prefix lists, Route-maps to permit or deny routes and to change various attribute
• Experienced in implementation and troubleshooting knowledge of protocols and technologies, especially in the following: BGP4, OSPF, IPv4, and Ethernet.
• Configured Ether channels, Trunks, Vlans, HSRP in a LAN environment.
• Configured STP for loop prevention and VTP for Inter-VLAN Routing.
• Responsible for performing administration on BGP, OSPF routing protocols.