SUMMARY:

• 8+ years of extensive experience in deploying, configuring, troubleshooting and testing of high end networking system.
• Solid understanding in TCP/IP, OSI models, Linux operating systems and hands on experience with Cisco IOS and NX OS.
• Extensive knowledge in IP addressing, MPLS, Sub - netting, VLSMs and Confidential concepts.
• Implementing and troubling shooting complex layer 2 technologies such as VLAN Trunks, VXLAN, EVPN, VTP, FP, NTP, STP, VPLS, SMTP, LLDP, HTTP, LACP, RSTP and MST.
• Working knowledge in network infrastructure and application transport protocols such as SSL/TLS, WINS, DNS and DHCP.
• SD WAN technical assistance consultant with hands on experience in enterprise and ISP environment
• Configuring and troubleshoot routing protocols like OSPF, EIGRP and BGP.
• Performed traffic filtering by policy based routing, standard and extended access lists (ACL). Implemented redundancy using HSRP, VRRP, GLBP, EtherChannel technology (LACP, PAgP).
• Hands on experience working with Juniper MX series, Cisco ASR 9K, 1K, 2600, 2900, 3600, 3900, 7200 and 7600 series.
• Extensive design, implementation, and operational experience with Wireless LAN Controllers, wireless access points and management platforms
• Configured Cisco Switches 2960, 3560, 4500, 5500, 6500, 4900, 2900, 3750 series.
• Knowledge in Nexus 5K, 7K, 9k series switches, Nexus 2248 Fabric Extenders, 5548 series Fabric Interconnect and 7010, 7018 series switches with VPC & VDC features.
• Expertise on the analysis, troubleshooting & documentation of LAN/WAN architecture and hands on experience on IP services, configuring and troubleshooting Cisco Wireless Networks.
• Experience with VIZIO and WAN protocols like HDLC, PPP and Frame-relay and exposure includes NAT/PAT, ACL’s, and AAA.
• Good understanding of Quality of Service and Hands on experience of QoS on Cisco and Juniper gear.
• Hands-on experience with configuring firewalls (Palo Alto, Check Point)
• Knowledge in configuring virtual servers, pool, pool members and load balancing method on the BIG IP F5 LTM.

TECHNICAL SKILLS:

Cisco Routers: 1700, 1800, 2500, 2600, 3600, 3800, 7200 and 7600

Cisco L2 & L3 Switches: 2900, 3560, 3750, 4500, 4900, and 6500

Load balancer: BIG IP F5 LTM

LAN technologies: Ethernet, Fast Ethernet and Gigabit Ethernet, SMTP, VLANInter-VLANRouting,VXLAN, VTP, STP, RSTP, WLAN, HTTP.

WAN technologies: Frame Relay, PPP, HDLC, T1/T3, DS3, SD-WAN

Firewalls/Security: Cisco ASA, Check Point, Palo Alto, Juniper, Meraki

OS products/Services: Windows (all releases), Windows server, Cisco IOS, Linux

Protocols/Services: Routing (RIP v1, v2, OSPF, EIGRP, BGP, IS-IS), LLDP, LACP, DNS, DHCP, IPSec, MPLS, ICMP, SNMP, SSL/TLS, VPLS.

Gateway Redundancy: HSRP, GLBP

Traffic analysis tools: Wireshark, Tcpdump, SolarWinds

PROFESSIONAL EXPERIENCE:

Confidential, Watsonville, CA

Senior Network Engineer

Responsibilities:

• Configuring EIGRP, OSPF and BGP on cisco routers. L3 switches as well as Nexus environment.
• Implemented the Policy Rules, DMZ and Multiple VDOM's for Multiple Clients of the State on the FortiGate Firewall.
• Extensive use of Cisco Routers and Switches by using LAN & WAN routing protocol EIGRP, OSPF and BGP to manage network infrastructure worked with any complex routing and switching issues.
• Experience working with Nexus 7010, 5020, 2148, 2248 devices
• Experience with migrating the Partner IPSEC VPN tunnels from one data center to another.
• Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500 with ACL, NAT, Object Groups, Failover, Multi-Contexts.
• Daily support enabling customers to integrate application with multiple vendor platforms. Cisco, Checkpoint, Juniper, Palo Alto, F5, and Blue Coat.
• Installed, Administrated, Upgraded, and Deployed the Blue Coat Proxy servers, content filtering, and policy including the BCAAA (Blue Coat Authentication Agent) Servers.
• Perform daily review of Blue Coat Web proxy.
• Performs daily support of multiple clients' proxy platforms, including Blue Coat and Websense Proxy and other proxy solutions as required by clients.
• Familiar with blue coat proxy servers and blue coat web sense.
• Wrote incident reports to Symantec and US CERT when hostile files and code are found.
• Worked on Bluecoat proxy server, Tipping point Intrusion Protection System management.
• Provide onsite Symantec DLP technical service and support to a Large Enterprise customer base.
• Providing Technical help to customers on various issues of Symantec Endpoint Protection. Implementation of Symantec Endpoint Protection
• Installation, Configuration, upgradation, troubleshooting & maintaining Antivirus Products from Symantec.
• Responsible for layer 2 securities which was implemented using a dedicated VLAN ID for all trunk ports, setting the user ports to non-trucking, deployed port security when possible for user ports
• Enabled STP attack mitigation (BPDU Guard, Root Guard), using MD5 authentication for VTP, disabling all unused ports and putting them in unused VLAN.
• Managed companies Wireless Infrastructure includes to create new SSID, Flex/HREP in WLC.
• Managed Palo Alto/ASA Firewall for security policies and rule base of security control points, device mapping using network address translation, objects management, other administrative tasks.
• ASA/PA firewall Log Maintenance and Policy Maintenance. Troubleshooting complex Checkpoint issues, Site-to-Site VPN related.
• Implemented the Inter VDOM Routing through the Fortigate Firewalls and the Router.
• Responsible for enabling BGP peering relationships and debugging BGP routing problems.
• Worked with LAN protocols (VLAN, VTP, STP, RSTP, MST) & Port Channel Protocols (LACP, PAGP).
• Experience working with Cisco Nexus 2148 Fabric Extender and Nexus 5000 series to provide a Flexible Access Solution for a datacenter access architecture Expertise in installing, configuring and troubleshooting Juniper EX Switches EX2200, EX2500, EX3200, EX4200, EX4500 series
• Excellent customer management/resolution, Organizational, analytic, problem solving, debugging skills and capable of quickly learning, effectively analyses results and implement and delivering solutions as an individual and as part of a team.
• Extensively worked on TCP/IP protocols and transport protocols like TCP and UDP.
• Implemented Site-to-Site VPNs over the internet utilizing security standards such as 3DES, AES/AES-256 with ASA 5580 Firewalls.
• Experience with LTM F5 component to provide High Availability with providing services across data centers.
• Work on the ironport for the log files, routing protocols.
• Experience with the Install infbox.
• Worked on implementation of the basic F5 LTM (Local Traffic Manager)
• Creating a priority list of what type of attacks to focus on vs. what can be accomplished and identifying timeline on how to accomplish all the functionality ASM can provide.
• Configured and maintained F5 load balancing Big-IP devices for Local Traffic Management (LTM) and WAN Optimization (WOM)
• Black listing and White listing of web URL on Panoroma.
• Knowledge on different kinds of cables used to connect different devices in data centers and within the industry
• Planned and migrated from ESX 2.5.1 servers to NSX 3.0 in Pulix's lab environment.
• Setup separate ESX 3.0 environment to facilitate the migration from NSX 2.5.1
• Implemented VMWare's management software Virtual Center 2.0 to manage the new environment
• Connected NSX 3.0 Servers in the three different lab environments to EMC External storage space. Publix also used Compaq's MSA1000 Modular SAN Array for the Supply Chain test environments.

Environment: Cisco routers (7600, 3800, 2800) and Cisco switches (6500, 3700, 4900, 2900), Nexus (7K, 5K & 2K), Data Centers, FEX, Routing Protocols (EIGRP, OSPF, BGP), ASA, Palo Alto, Fortinet, F5 load balancing, STP, VLAN, MD5, 3DES, AES, OTV, CitrixVLANS, SNMP, NAT, cisco IO, HSRP, VLAN trunking 802.1Q, F5 Networks Big IP, CISCO ASA and Checkpoint firewall, Palo Alto 3000, 5000 series.

Confidential, Berlin, CT

Network Engineer

Responsibilities:

• Responsible for configuring Juniper MX480, MX960, Cisco router 7000, 3800, 2800 series. Configurations involved routing protocols like OSPF, EIGRP, BGP, STATIC routes etc.
• Configured OSPF, BGP, EIGRP and MPLS on routers and routed network traffic without any disruption in service.
• Designed, tested and deployed L2 switching environment with Spanning-tree protocol (STP), Ether-channel (LACP, PAgP), Virtual Trunking Protocol (VTP) and Inter-VLAN Routing in consideration.
• Configured VLANs, Trunks, HSRP, VRRP and EtherChannel (LACP) technologies to mitigate Risks of network failovers and also provide first hop redundancy.
• Continuous industry knowledge upgrade per the SD-WAN products, Cloud resources and firewall for enterprise and service provider to ensure SD-WAN clients/ISP expectations are met.
• Troubleshoot network issues related to latency, jitter and quality of service (QoS).
• Configuring, maintaining and troubleshooting of Check Point firewall.
• Worked on Cisco switches 4500, 3500, 2900, 3750 series. Configurations involved trunking, VLAN, Layer 3 Switching. Involved in configuration of Cisco ASR 9K router, catalyst 4500, NCS 5500 Switches.
• Responsible for creating, modifying, removing VLAN configurations as per the need.
• Design, implementation, and operational experience with Wireless LAN Controllers, wireless access points and management platforms.
• Upgrade Cisco Routers, Switches and Firewall (Check Point) IOS using TFTP

Environment: Juniper MX (MX480, MX960), Cisco ASR, 7000, 3800, 2800 routers, Cisco 4500, 5500, 3500, 2900, 3750.

Confidential, Broomfield, CO

Network Engineer

Responsibilities:

• Project Uplift - Replacing End of Life Devices with New devices.
• It was a like-to-like refresh, new devices matching the legacy device configuration.
• Refreshed Symantec’s edge switches Cisco 6509s with 4510s, and edge switches Cisco 6513s with 4510 trunking with 3 3850 stackables and Cisco 6506 with Cisco 6807.
• Design and implement new WAN architecture and can support QoS using MPLS
• Design expertise for the SD-WAN, SD-LAN and WAN optimization technologies for efficient delivery of the application data across LAN and WAN
• Creating dedicated VLANs for Voice & Data with QOS for prioritizing VOICE over DATA
• Implemented network first hop redundancy, diversity and associated dynamic protocols, including HSRP, VRRP, BGP and EIGRP.
• Configured OSPF and EIGRP in the core routers and core switches and specified route redistribution, created virtual links to non-back bone areas, created frame relay on MPLS circuit, summarized routes and added authentication between EIGRP routes
• Upgrade Cisco Routers, Switches and Firewall (ASA) IOS using TFTP
• Deployed Check Point Firewalls for web filtering and application control as well as Access lists.
• Worked directly with configuring Cisco Catalyst layer 2 and layer 3 switches including 3700, 3650, 3560, 3500, 4900, 6500 series Catalyst switches and Nexus 7k series switches
• Managed enterprise grade server/application load balancing using F5 LTM/GTM.
• Maintained network topology diagrams using VISIO.

Environment: Solarwinds, Cisco 5500, Nexus 7k, Cisco 6506/6509/ 6513/ 4510/ 6807 series switches, Cisco 00 / 3800 routers, ASR 9k, GSR 12k, Cisco ASA 5505.

Confidential

Associate -Technical Support Engineer

Responsibilities:

• Managed and maintained Client network, supporting corporate needs of more than 2000 users, resulting in minimized downtime of enterprise applications.
• Worked for change management procedure and implementation of configuration changes during non-production window.
• Configured OSPF, EIGRP, BGP and MPLS on core routers and routed network traffic without any disruption in service.
• Worked extensively with Cisco 6500, 4500 series multilayer switches, Cisco 2960, 3650 series switches and Cisco 3560/3750s switches.
• Provisioning and troubleshooting Cisco routers including Nexus 7k and ASR 9k
• Coordinate MPLS/VPLS Point-to-Point connections with other carriers to facilitate customer connectivity to branch office locations
• VSS cluster, EtherChannel (LACP and PAgP), VLAN trunking, VTP, inter-VLAN routing on 6506.
• Configuration of L3 MPLS and VXLAN overlay to provide Network transparency and scalability.
• Responsible for creating, modifying, removing VLAN configurations as per the need
• Engaged in Network Cutover for multiple sites and also watched over Cisco IOS activities (upgrade).
• Upgrade Cisco 6500, 3750, 2960s, Nexus 5K, Nexus 7K and Nexus 9K series switch IOS software
• Designed and configured network security architecture using Cisco ASA firewalls and VPN technologies

Environment: Nexus, Cisco ASR 9K, 6500, 3750, 2960, Nexus 9000, 7000, 5000.

Confidential

Junior Network Engineer

Responsibilities:

• Performed regular Cisco IOS maintenance activities as and when necessary.
• Performed on-call support for installation and troubleshooting of the configuration issues.
• Monitor performance and availability of the network on an ongoing basis.
• Managed access layer switches and upgraded Cisco IOS firmware when needed.
• Performed maintenance and troubleshooting of connectivity problems using Confidential, and Trace route and other tools.
• Monitor and perform network TCP/IP troubleshooting.
• Maintained and prepared network documents and diagrams of data centers and operational sites using VISIO. Provided support for troubleshooting and resolving Customer reported issues. Interacting with the clients by creating tickets for the issue and dispatching to the correct queues for resolution.
• Interacting with level 2 support and providing them necessary details in order to resolve the issue through e-mail (Lotus Notes.7).
• Involved in the creation and closing of IMAC (Install, Move, Add, Change Requests) tickets.