SUMMARY

• CCNP Certified Professional wif 9+ years of experience in network design, Implementation, Troubleshooting, engineering, managing & migration of large - scale enterprise networks.
• Experience in Rack and Stack Network Devices that includes physical connectivity and dealing wif copper/Fiber cables
• Experience in Next Generation Palo Alto Firewalls, upgrading PAN OS, have a knowledge on SSL encryption & decryption.
• Experience in teh PAN blocking threat in allowed traffic and URL filtering using security policy
• Expertise in implementing L2 technologies including VLAN's, VTP, STP, RSTP, Port Channels, VPC, VDC, Fabric Path, & Port Security.
• Proficient in configuration & troubleshooting of routing protocols: MP-BGP, OSPF, LDP, EIGRP, RIP, BGP v4, MPLS, QOS.
• Experience in configuration of VLAN wif 802.1q, VTP, STP and RSTP (802.1W).
• Experience in deploying teh site to site connectivity using GRE over IPSec.
• Experience in deployment and configuration of Cisco 1800, 1900, 2800, 2900, 3800, 3900, 7200, 7600, ASR 1006, 1002 series routers.
• Experience in deployment and configuration of Cisco 2900, 3300, 3500, 3650, 3750, 3800, 4400, 4500, 6500 and Nexus 7k, 5k, 2k series switches.
• Experience in Arista Devices such as DCS-7050T-64-R switch wif 4X QSFP+ Uplinks and DCS-7508E-BND Arista 7508E Chassis Bundle
• Worked on Port Groups on M Series Module and F Series Module for Nexus 7K. Experience in upgrading teh Nexus OS on Nexus series switches.
• Configuration of Fabric Path, VPC and connectivity between Nexus 2K, Nexus 5K and Nexus 7K. Sound knowledge of Routing, Switching concepts and MPLS design.
• Experience in scripting languages like Python and Perl
• Have knowledge of writing codes using Python and Perl while dealing wif decrypting traffic
• Extensive knowledge/experience in implementing, maintaining and troubleshooting LAN/WAN Network. Security including NAT configuration, VPN, VLAN, ACL, Cisco Firewalls.
• Experience wif Cisco ACE, F5 (LTM) Load balancers to provide efficient switching and routing for local and global traffic.
• Worked on Cisco ACE, F5 LTM series like Viprion 2400 series Chassis wif 2150 and 2250 blade series for teh corporate applications load balancing and their availability.
• Experience in creating Virtual Servers, Pools Members, Nodes, Profiles, and Policies.
• Experience in manipulating teh virtual server traffic using profiles.
• Experience in configuring F5 APM wif access profiles for SSL VPN solution for VMware Horizon view product.
• Experience in deploying F5 Advanced Firewall Manager (AFM).
• Experience in deploying F5 Application Security Manager (ASM).
• Configuration of F5 iRules to manage traffic in any way according to teh requirement.
• Responsible for Cisco ASA firewall administration across global networks.
• Experience in dealing wif HTTP and File Transfer Protocols FTP/TFTP
• Knowledge on maintaining teh Palo Alto firewalls.
• Experience in managing and securing remote access through designing and implementing various VPN technologies including IPSec and SSL.
• Experience in deploying teh Cisco ASA 5500 series firewalls.
• Experience in Configuring Client-to- Site VPN using SSL Client on Cisco ASA 5520. Configured Security policies including NAT, PAT, VPN, Route-maps and Access Control Lists.
• In-depth knowledge and hands-on experience on IP Addressing, Subnetting, VLSM, Summarization, ARP, reverse ARP and Ping concepts.
• Experience in SolarWinds Orion, NetMRI, SNMP network management System (NMS)
• Maintaining and updating inventory of all network hardware, Management and Monitoring by use of SSH, Syslog, Splunk, SNMP, NMS, QRadar, NTP, Easy IP.
• Maintaining teh network documentation using Microsoft Visio and Excel Sheets.
• Experience in working wif change management procedures.
• Experience on working different infrastructure vendors.
• Good team player, excellent communication skills, analytical skills and eagerness to learn new technologies.

TECHNICAL SKILLS

• Cisco Router Platforms ASR 1006, 1002, 7600,7200, 3800, 3600, 2800, 2600, 2500,
• 1800 Series.Cisco Switch Platforms Nexus 7K, 5K, 2K, 6500, 4900, 4500, 3750, 3500, 3300, 2900, 1900 series.
• Routing Protocols RIP, IGRP, EIGRP, OSPF, BGP and MPLS VPN.
• WAN technologies MPLS VPN, Site to site GRE over IPSEC, DMVPN.
• L2 Protocols VTP, STP, RSTP, MSTP, ISL, 802.1q.
• L1 Cabling Fiber, Copper cabling knolwledge
• Switching VLANS, Trunks, Ether-Channel, VDC, VPC, VPC+, Fabric Path.
• Redundancy Protocols HSRP, GLBP, VRRP.
• Load Balancers F5 Viprion Series, Cisco ACE.
• Firewalls Cisco ASA 5510, 5525, 5545
• Cisco ACS Server management RADIUS, TACACS+
• Network Management NetMRI, Solar Winds (NPM, NCM, VNQM),
• CA Network Flow Analysis
• Monitoring Tools SNMP, NMS, Syslog, Splunk, QRadar, Log Analyzer.
• Troubleshooting Tools Wire Shark, Wild Packets Omni peek.
• Documentation MS Office, MS Visio, MS Excel
• Network Management Tools Cisco ASDM, Easy-IP, NTP Appliances.
• Virtualization Technologies VMware VSphere, VCenter management suite.

PROFESSIONAL EXPERIENCE

Confidential, Columbus, OH

Network Engineer

Responsibilities:

• Design and engineer F5 load balancing architecture for BWC DMZ Environment.
• Configure and troubleshoot Cisco Routers and Switches such as Cisco ASR 1k, 6500, 4300, 4400, 3750, 3560, 2900, and Nexus 7K, 5K.
• Designed and implemented teh F5 network technologies like LTM, AFM and APM.
• Deployed F5 Viprion 2400 series Chassis wif 2250 blades.
• Deployed and supported VMware horizon view solution wif BIG-IP LTM/APM for SSL VPN.
• Responsible for SSL offload needs, extensive use of OpenSSL for cert/key integrity checks.
• Migrated teh Cisco ACE traffic in to F5 Load balancers.
• Provide load balancing towards access layer from core layer using F5 Load balancers.
• Configuring F5 Load Balancers: Adding Virtual Servers, Pools, nodes and health monitoring.
• Managed Application-specific network traffic in easier and more efficient way using tools like Profiles in LTM.
• Configure teh system wif SSL client certificates before passing requests on to a target server.
• Configured security policies and applied to Virtual server using F5 ASM as IDS.
• Deploying F5 ASM in to DMZ area as Intrusion Detection System (IDS).
• Worked on upgrading codes on F5 LTM, AFM and APM.
• Configure teh VIPs in Cisco ACE for real traffic and monitoring teh servers wif Probes.
• Configure and troubleshoot teh Network Routing protocols (BGP, OSPF, and Static Routing) during teh migrations and new client connections.
• Configure and troubleshoot teh switches wif L2 VLANs, L3 Vlans (SVI), Trunking, STP, RSTP, port aggregation & link negotiation.
• Configure and troubleshoot teh VDC, VPC, VPC+, Fabric Path, FEX on Nexus 7K.
• Experience in working wif Cisco Nexus 2148 Fabric Extenders and Nexus 5000 series to provide a flexible access solution for a datacenter access architecture.
• Designed and deployed teh DMVPN solution for site to site WAN connectivity.
• Responsible for migrating teh site to site VPN tunnels using IPSEC/GRE.
• Designed teh network for business partner extranet environment and maintain teh business partner connections.
• Configuring and troubleshooting issues related to VRF, STP, RSTP and VLAN’s allocation in Organization for maintaining Layer 2/3 Switching intact.
• Implementing traffic filters using standard and extended access-lists, IP Prefix-lists, and Route Maps.
• Experienced in modifying firewall rule sets, studying network traffic flows to reverse-engineer teh required firewall rules to lock down an application, and troubleshooting firewall problems under short time constraints involving complex network application flows between multiple hosts spanning multiple firewalls and different geographic locations.
• Configure Cisco ACS server for User authentication using Cisco Radius and TACAS+ protocols.
• Configure teh Simple Network Management Protocol (SNMP) for teh monitoring and network management system (NMS)
• Provide Tier-3 incident response analysis and support.
• Provide Support operations on day-to-day basis monitoring and management of Network infrastructure (Routers, switches, load balancers, Cisco ASA firewalls).
• Worked extensively in configuring, monitoring and troubleshooting Cisco ASA FWSM, 5525, 5545, 5555-x security appliance, failover DMZ zoning and configuring Vlans/routing/NATing wif firewalls as per teh design.
• Planning and configuring teh entire IP addressing plan for teh client’s network.
• Verify teh network flow analysis and managing network infrastructure using Solar winds NPM, NCM, VNQM, NMS tools.
• Troubleshoot network problems using Packet Analysis tools like Omni peek Wild packets and Wireshark.
• Documenting teh Visio’s representing teh current network designs.
• Follow process & procedures for change & configuration management.
• Substantial lab testing & validation prior to implementation of Business Partner Environment configurations into teh production.

Confidential

Data Network Engineer

Responsibilities:

• Configure and troubleshoot Cisco Routers and Switches such as Cisco ASR 1k, 6500, 4500, 3750, 2900, 1900 and Nexus 7K.
• Configure and troubleshoot teh Network Routing protocols (BGP, OSPF, and Static Routing) during teh migrations and new client connections.
• Configure and troubleshoot teh switches wif L2 VLANs, L3 Vlans (SVI), Trunking, STP, RSTP, port aggregation & link negotiation.
• Configure and troubleshoot teh VDC, VPC, VPC+, and Fabric Path on Nexus 5K, 7K.
• Designed teh network for business partner extranet environment and maintained over 100 business partner connections.
• Work wif business partners to gather teh requirements for teh IPSEC and MPLS tunnels and provide teh recommendations for teh MPLS circuits.
• Configuring and troubleshooting issues related to VRF, STP, RSTP and VLAN’s allocation in Organization for maintaining Layer 2/3 Switching intact.
• Designed and implemented teh F5 network technologies like LTM and GTM.
• Deployed F5 Viprion 2400 series Chassis wif 2250 blades.
• Responsible for SSL offload needs, extensive use of OpenSSL for cert/key integrity checks.
• Migrated teh Cisco ACE traffic in to F5 Load balancers.
• Provide load balancing towards access layer from core layer using F5 Load balancers.
• Configuring F5 Load Balancers: Adding Virtual Servers, Pools, nodes and health monitoring.
• Managed Application-specific network traffic in easier and more efficient way using tools like Profiles in LTM.
• Configure teh system wif SSL client certificates before passing requests on to a target server.
• Configure teh VIPs in F5 and ACE for real traffic and monitoring teh servers wif probe messages.
• Implementing traffic filters using standard and extended access-lists, IP Prefix-lists, and Route Maps.
• Documenting teh Visio’s representing teh current network designs.
• Configure Cisco ACS server for User authentication using Cisco Radius and TACAS+ protocols.
• Configure teh Simple Network Management Protocol (SNMP) for teh monitoring and management of devices in a network.
• Planning and configuring teh entire IP addressing plan for teh client’s network.
• Verify teh network flow analysis using CA Network Flow Analysis Tool.
• Install and Upgrade teh firmware on teh NTP appliances to synchronize teh companies’ infrastructure wif standard CST time zone.
• Troubleshoot network problems using Packet Analysis tools like Omni peek Wild packets and Wireshark.
• Worked wif Service providers to get teh MPLS circuit deployed and resolved ay issues.
• Follow process & procedures for change & configuration management.
• Substantial lab testing & validation prior to implementation of Business Partner Environment configurations into teh production.

Confidential

Network Engineer

Responsibilities:

• Troubleshooting teh Network Routing protocols (BGP and MPLS VPN) during teh Migrations and new client connections.
• Extensively worked on Cisco Routers, Switches.
• Monitoring and configuring Cisco 7600 routers at lab data center for issues.
• Primary responsibility is to design and deploy various network security & High Availability products like Cisco ASA other security products.
• Involved in teh configuration & troubleshooting of routing protocols: MP-BGP, OSPF, EIGRP, RIP, BGP v4.
• Experience wif configuring Nexus 2000 Fabric Extender (FEX) which acts as a remote line card (module) for teh Nexus 7000
• Experience configuring Virtual Device Context in Nexus 7010.
• Experience in Configuring, upgrading and verifying teh NX-OS operation system.
• Configured IP access filter policies.
• Configured and resolved various OSPF issues in an OSPF multi area environment.
• Configured BGP features such as as-override, Local preference, EBGP load balancing.
• Study teh design document and responsible to prepare teh master test plan.
• Configure and troubleshoot teh switches wif L2 VLANs, L3 Vlan’s (SVI), Trunking, STP, RSTP, port aggregation & link negotiation.
• Configuring and troubleshooting issues related to STP, RSTP and VLAN’s allocation in Organization for maintaining Layer 2/3 Switching intact.
• Implementing traffic filters using standard and extended access-lists, IP Prefix-lists, and Route Maps.
• Working wif Blade server solutions such as Cisco UCS.
• Configure Routers/Switches wif Vlan’s, NAT/PAT and Access Lists.

Confidential

Jr Network Engineer

Responsibilities:

• Configured network using routing protocols such as RIP, OSPF, BGP and troubleshooting L2/L3 issues.
• Mutual redistribution between RIP and OSPF in internal networks wif specific requirements of client wif on - demand routing.
• Troubleshooting issues related to STP, RSTP and VLAN’s allocation in Organization for maintaining Layer 2/3 Switching intact.
• Manage all network and firewall devices to include Cisco routers, switches, Firewalls, Load Balancers.
• User authentication and resource allocation using Cisco ACS server using Radius and TACAS+ protocols for administrative control.
• Synchronization of Companies infrastructure wif standard CST time zone using NTP server.
• Provided recommendations on architectural changes and design enhancements to teh infrastructure to improve reliability, performance, reduce cost, and anticipate company growth and acquisition.
• Performed switching technology administration including VLANs, inter-VLAN routing, Trunking, STP, RSTP, port aggregation & link negotiation.
• Configuration of Access List ACL (Std, Ext, Named) to allow users all over teh company to access different applications and blocking others.
• Responsibilities also include technical documentation of all upgrades done.