PROFESSIONAL SUMMARY:

• Network Engineer with 7+ years of experience in network design, implementation, troubleshooting and managing of large - scale enterprise networks.
• Comprehensive expertise in the implementation of analysis, optimization, troubleshooting and documentation of LAN/WAN networking systems.
• Installing and Configuring Cisco switches 2960, 3560, 3850, 4500, 4900, 6500, Nexus 5000, Nexus 7000, 7700 series with F & M series Line cards and also on Sup1,2 & 2E.
• Experience working with 2600, 2900, 3600, 3900, 7200, 7600 series Routers.
• Upgraded code on Cisco IOS & also on Nexus NX-OS.
• Expertise in Configuration of Virtual Local Area Networks (VLANS) using Cisco routers and multi-layer Switches and supporting STP, RSTP, PVST, RPVST along with trouble shooting of inter-VLAN routing and VLAN trunking using 802.1Q.
• Very good knowledge about internet protocols like IPv4 and IPv6.
• Good understanding and hands on experience configuring AAA-authentication, authorization, accounting, and configuring IP Access Control Lists.
• Strong knowledge of TACACS+, RADIUS implementation in Access Control Network.
• Experience in installing and troubleshooting of WAN technologies like T1/T3, DS3, STM1, OC3, Gigabit and STM4 circuit types.
• Experience in working with multiple vendor devices like Cisco, Juniper.
• Performed Network analysis with packet capturing tools Wire-shark etc. and worked on Solarwinds Monitoring tool.
• Experience on working with F5 load balancers.
• Extensive hands-on experience with complex routed LAN and WAN networks. Experience of routing protocols like EIGRP, OSPF, RIP, and BGP, MPLS/VPN.
• Good knowledge and experience in Installation, Configuration and Administration of Windows Servers 2000/2003, Active Directory, FTP, DNS, DHCP, TFTP, Linux OS under various LAN and WAN environments.
• Experience with Project documentation tools, implementing and maintaining network monitoring systems and experience with developing network design documentation and presentations using VISIO.
• Proficient with TCP/IP and relative OSI models, Extensively worked on Linux environment.
• Experience in maintenance and troubleshooting of connectivity problems using PING, Traceroute.
• Experience with packet tracing/sniffing on 802.3 and 802.11 networks.
• Decent knowledge in configuring and troubleshooting Cisco Wireless Networks: LWAPP, WLC, WCS, cisco prime infrastructure, Cisco Meraki, Standalone APs, Roaming, Wireless Security Basics, IEEE 802.11 a/b/g/n/ac, RF spectrum characteristics.
• Automated network implementations and tasks and designed monitoring tools using python scripting.
• Experience in interpreted languages like python and Perl.
• Security policy configuration including NAT, PAT, VPN, SSL-VPN, Route-maps and Access Control Lists,checkpoint and Cisco ASA.
• Strong practical experience in IP addressing, Sub-netting, VLSM and ARP, proxy ARP, and ping concepts.
• Expertise in troubleshooting and configuring DNS, DHCP, TFTP, TELNET, SSH, FTP, PING and NFS.
• Excellent Verbal, written communication skills and Interpersonal skills with ability to work with large teams as well as independently with minimum supervision & Team Player.

TECHNICAL SKILLS:

Routing: RIPV1, RIPV2, IGRP, EGIRP, OSPF, BGP, IS-IS, Route Filtering, Redistribution, Summarization, and Static Routing.

Switching: VLANs, VTP, STP, PVST+, RPVST+, Inter VLAN routing & Multi-Layer Switch, Ether channels, Transparent Bridging, CEF, DECF, Port Security, VSS on 6500 & 4500 catalyst switches.

Routers: Cisco 7600, 7606, 7609, 7613, 7200, 4400, 3900, 3800, 2900, 1900.

Switches: Cisco Catalyst 6500, 4500, 3560, 3750, 2960, Nexus 9k/7k/5k/2k.

WAN Technologies: HDLC, Frame Relay, PPP,MPLS,DMVPN.

Network Management Tools: Wire shark, SNMP, Net cool, ARP, EM7, PRTG, Websense, Cisco NAC, ISE, and Active Directory.

Security: Checkpoint, Access Control Lists, ASA, VPN

Load Balancer: F5

Operating Systems: MS Windows XP/Vista/Windows 7/8/10, Server Linux, CISCO IOS.

Applications: MS Office, MS Visio

PROFESSIONAL EXPERIENCE:

Confidential, Iowa City, Iowa

Network Engineer

Responsibilities:

• Successfully designed and implemented five Nexus 9K's in Primary and Disaster Recovery sites, providing redundancy with dedicated fiber links of up to 160 Gbps.
• Hands on experience configuring the 7710, 7010, 5628, 5596T switches with feature-set like Fabricpath, OTV, VPC and also VDC for the Border Leaf, SPN and Leaf design.
• Worked on the Fabricpath to extend L2 VLANs between data centers over mac in mac out Nexus 7710 switches, Configured and deployed VPC and VRF between Nexus 7710 and Nexus 56128p, 5596 switches.
• Configured Nexus 2000 Fabric Extender (FEX) which acts as a remote line card (module) for the Nexus 56128p to connect servers and storage devices.
• Responsible for Global data center migration from Cisco Catalyst devices to a full Nexus infrastructure utilizing Nexus series switches.
• Involved in design, implementation and configuration of HSRP on L3 switches and enabled the preempt feature.
• Worked closely on redistributing internal EIGRP into BGP via WAN link for our ISP. Also made sure that WAN utilization is optimum by using features like ACLs and riverbed technology.
• Designed and implemented Cisco IWAN - Configured DMVPN tunnels - Multipoint GRE (mGRE) . NHRP, Dynamic IPSec encryption, Cisco Express Forwarding (CEF) Configuration and troubleshooting link state protocols like OSPF in single area and multiple areas.
• Coordinated with Network Administrator regarding BGP/EIGRP routing policies and designs, worked on implementation strategies for the expansion of the MPLS VPN networks.
• Implemented QOS for quality purposes.
• Experience in analyzing the BGP tables and routes and also had experience in injecting routes into BGP using different methods.
• Configured MPLS-CE devices with BGP routing protocol to advertised prefixes to the MPLS cloud.
• Involved in Switching technology administration including creating and managing VLANS, Port security, Trunking, RPVST+, Inter-VLAN routing, LAN security etc.
• Involved in complete LAN, WAN development (including IP address planning, designing, installation, configuration, testing, maintenance, troubleshooting etc).
• Involved in operations and administration of WAN consisting Ethernet Handoffs, T1, DS3, and Optic Fiber Handoffs.
• Configured Cisco wireless controllers and access points for enterprise network including setting up SSIDs and WLANs on WLC’s like 2504, 5508 and 5760.
• Integrating Configuring Cisco Wireless LAN Controllers WLC with ISE to perform Dot1x authentication for Wireless users.
• Responsible in troubleshooting on Cisco ISE added new devices on network based on policies on ISE.
• Implemented Cisco Prime Infrastructure 2.1 to monitor WLC and APs, and Mobility Services Engine (MSE) to support wireless localization.
• Experienced in creating MOPS (Method of procedures) and getting them approved from peers to perform configuration changes.
• Worked extensively in Configuring, Monitoring and Troubleshooting Cisco ASA 5500/PIX security appliance, Failover DMZ zoning & configuring VLANs/routing/NAT with the firewalls as per the design.
• Created policies and Configured IDS and Deep Packet Inspection on ASA Firewalls. Configured ASA 5540 to ensure high-end security on the network with ACLs and Firewall.
• Configuration and troubleshooting of Cisco Security Manager (CSM), integrated with ASA devices.
• Involved in providing access to user machines and partners outside our network by SSL and IPSec VPN tunneling.
• Provided administration and support on Bluecoat Proxy for content filtering and internet access to head quarter, remote site offices and VPN client users.
• Upgraded load balancers from Radware to F5 BigIP v9 which improved functionality and scalability in the enterprise.
• Managed the F5 Big IP GTM/LTM appliances to include writing iRules, SSL offload and everyday task of creating WIP and VIPs.
• Performed network monitoring via SolarWinds and Netcool applications for all network equipment and server systems.
• Utilized packet sniffing tools like Wireshark, TCP Dump and Capsa to monitor and troubleshoot access issues.

Environment: Nexus 7710,7010,56128p,5596T, FEX, VDC, VPC,EIGRP,BGP,MPLS, DMVPN,Cisco ASA 5500, F5,Solarwinds,Wireshark

Confidential, Redmond, WA

Network Engineer

Responsibilities:

• Configured, installed and deployed Nexus 7K switches at the core and distribution levels.
• Working with Cisco Nexus 2248t Fabric Extender and Nexus 5500 series to provide a Flexible Access Solution for data center access architecture
• Experience in configuring VPC, VDC in Nexus 7010.
• Experience working with data center migration project with converting 6509 Based environment to Cisco Nexus based data center
• Successfully installed the Cat6509 with sup720 to Sup2T with Quad-VSS implemented on it.
• Configured VSS on Cisco Catalyst 6509 switches and involved in resolving the issues which are raised after the configuration.
• Configured VLANS using Cisco routers and multilayer switches and supporting STP, RSTP, PVST along with troubleshooting on inter-vlan routing and VLAN trunking protocol 802.1Q.
• Upgraded Cat OS code from 6.4(3) to 15.1(SY) on two-hundred 6509 switches, including a trading floor environment.
• Configured VLANs and implemented inter-vlan routing for users in different departments.
• Configured, Implemented, and maintained the authentication on a router for ingress traffic.
• Maintained redundancy on Cisco 2600, 2800, 3600 and 3800 routers by using redundancy protocol HSRP.
• Implemented traffic rules on cisco routers using Standard and Extended Access-Control Lists.
• Performed IOS upgrades on Catalyst switches 3560, 3750, 4500, 6500 and 2500, 2800, 3600, 3800, 7200 routers.
• Performed OSPF, BGP, DHCP Profile, HSRP, IPV6, Bundle Ethernet implementation on ASR 9K redundant pair.
• Worked with Infoblox IP Address Management (IPAM) tool to investigate endpoint DHCP and DNS settings.
• Configured and managed OSPF redistribution and authentication with type 3 LSA filtering and to prevent LSA flooding and also configured OSPF over frame relay networks for NBMA and point to multipoint strategies.
• Implementing traffic engineering on top of an existing Multiprotocol Label Switching (MPLS) network using Frame Relay and Open Shortest Path First (OSPF). Implemented various OSPF scenarios on network consisting of 7600 routers.
• Experience with setting up MPLS Layer 3 VPN cloud in data center and also working with BGP WAN towards customer.
• Supported core network consisting of Cisco 7200 series routers running multi area OSPF.
• Installation and Configuration of Cisco Catalyst switches 6500, 3750 & 3550 series and configured routing protocol OSPF, BGP with Access Control lists as per Network design and IT Policies.
• Performed Network analysis with packet capturing tools Sniffers, Wireshark etc.
• F5 LTM & GTM configuration, staging, implementation and support experience.
• Worked in F5 Big-IP Load Balancer environment to manage the traffic between 2 web servers in the cloud.
• Worked with network services like DNS, DHCP, DDNS, IP4, IP6, IPsec, VPN etc.
• Troubleshooting & implementation experience of VLAN, STP, MSTP, RSTP, PVST, 802.1Q, HSRP, VRRP, LACP, AAA, PAGP, RADIUS, MD5, VTP & SVI.
• Experienced in creating MOPS (Method of procedures) and getting them approved from peers to perform configuration changes.
• Administer Checkpoint firewalls with cluster gateways including pushing policies and processing user requests to allow access through the firewall using Smart Dashboard and identify unused rules and schedule change to mark it for permanent deletion at later point of time.
• Checkpoint Firewall Log review and analysis and troubleshoot connectivity issues.Configuring HA on Checkpoint security gateways using cluster XL and VRRP.
• Implementation of IPSEC & GRE tunnels in VPN technology using Cisco IOS and have checkpoint firewall /VPN.
• Performed upgradation from old platforms to new platforms R 65 to R75.45.
• Created multiple policies and pushing them onto Checkpoint Firewall (Gateways) and hands on experience in managing the Checkpoint Management Server with SPLAT and Gaia operating system.
• Configure and Administration of the Checkpoint Firewall R77.30 rule management, change control and Policy install package.

Environment: Cisco Routers: 7200, 3800, 3600, 2800, 2600; Cisco Catalyst switches: 3550, 3750, 6500; Nexus: 5500, 7010 switches.

Confidential, Cleveland, OH

Network Engineer

Responsibilities:

• Installed and configured Cisco series routers and Catalyst 2960, 3750X, 4500, 6500 switches.
• Worked on 2600, 3500, 7613 Cisco Routers and 4500 and 6500 series Cisco Switches.
• Implementing 3750 Rack/Stack switches using Cisco Stackwise technology.
• Configured and managed Cisco access layer routers and switches.
• Configured Cisco 3600,2900, and 6500 series routers using different routing protocols such as EIGRP.
• BGP and redistribution of EIGRP and fine tuning through the use of access list and route maps.
• Tasks included configuring and troubleshooting EIGRP, BGP and static routing, MPLS WAN connectivity.
• Upgrading, Configuration and maintenance of stacks of Cisco 3750 LAN network switches with Cisco 4507, 4510.
• Working knowledge in VOIP environments and installing security, VMWare as well as IVR and CVP.
• Configuration of call signaling protocols on Voice Gateways H.323, MGCP and SCCP.
• Configuration and troubleshooting link state protocols like OSPF in single area and multiple areas.
• Worked on installation, maintenance, and troubleshooting of LAN/WAN (ISDN, Frame relay, NAT, DHCP, TCP/IP).
• Configured Access List (Standard, Extended, and Named) to allow users all over the company to access different applications and blocking others.

Environment: Cisco Routers: 2600,3500,7613, Cisco Switches: 4500,6500.

Confidential

Network Engineer

Responsibilities:

• Responsible for the configuration, implementation and operation of Cisco 3745 routers Cisco 6509 and 3560 L2/L3 switches. Removed Cisco 3600 and 2600 series routers and Cisco 2900 series switches from the current infrastructure and replaced them with the Cisco 6509 or 3560 L2/L3 switches.
• Configured RSTP, MSTP and used VTP with 802.1q trunk encapsulation. Provided port binding and port security wherever required. Provided router redundancy through HSRP. Configured ether channels using PAGP and LACP.
• Implemented and configured IP Routing Protocols: RIPv2, BGP.
• Implemented and configured LAN Protocols: Ethernet, VLANs, VTP and STP.
• Designed perimeter security policy; Implemented Firewall ACL's; Allowed access to specified services; Enabled IDS/IPS signatures in Firewall & fine-tuned TCP & UDP.
• Involved in Installing and Configuring a Cisco/ Confidential secure ACS server for AAA authentication (RADIUS/TACACS+).
• Updated the antivirus, spam blockers, and other security software.
• Resolved all computer related problems, monitored and maintained system functionality and reliability by identifying ways to prevent system failures.

Environment: Cisco 6509,3560,2900 switches Cisco 3745,3600,2900 Routers, RSTP, MST, VTP, HSRP, OSPF.