SUMMARY

• Over 6 years of Hands - on experience in Networking and Security, including providing network support, installation, and analysis for a broad range of LAN / WAN communication systems.
• Proficient in Cisco IOS for configuration & troubleshooting of routing protocols BGP, OSPF, EIGRP, RIP, MPLS/VPN, Vrf
• Knowledge of Configuring BGP/OSPF routing policies and designs, worked on implementation strategies for the expansion of the MPLS VPN networks
• Work and support on SD-WAN/SDI deployment
• Hands on experience on Cloud Technology Azure
• Designing and implementing MPLS/VPN service for various customers.
• Experience with the implementation of multicast/MPLS/l2vpn.
• Learning Python to implement and provide solutions for network.
• Hands on experience in configuring Cisco Catalyst 2960, 3750, 3850, 4500, 6500 and Nexus 2k,5k,7k and 9k series switches and Cisco 2600, 2800, 3800, 4000, 7200 series routers, Cisco Firewalls.
• Designed Redundancy Gateways for Campus Network using HSRP
• Hands on experience in configuring and supporting site-to-site and remote access Cisco, IPsec, VPN solutions using ASA firewalls, Cisco and VPN client
• Hands on Experience on Cisco ASA to Firepower Migration
• Hands on experience on Cisco Firepower Thread Defense (FTD) 2100, 4100 series and its management tool Firepower Management Center (FMC)
• Create Site to Site VPN tunnel setup with the client by creating the SSL Certificate on both organization and client Side to make the communication secure, Created the outbound ACL rules in the Firewall’s ACL manager for vendors. create L3 VPNs with BGP to distribute VPN-related information to allow peer-to-peer to outsource routing information to service provider for cost savings and a reduction in operational complexity for enterprises. configure the multicasting for VOIP.
• Support ACI network fabric and Cisco Nexus 9000 series switches.
• Work and support Citrix Netscaler load balancers (VPX, SDX)
• Configure and maintain load balancers, VIP, SNIP and reverse proxy for clients.
• Worked on deployment if ISE (Identity service Engine) 2.7.0
• Work on cisco Wireless controllers 3504, 5508 and access points (AiroNet 3800, 2800 series).
• Involved in troubleshooting of DNS, DHCP and other IP conflict problems.
• Responsible for Check Point and Cisco ASA firewall administration across global networks
• Experience working with Nexus 7K, 5K, 9K devices and Virtual Port Channel configuration
• Experience in testing Cisco routers and switches in laboratory and deploy them on site production.
• Worked with Cisco IOS on 2900,4000 ISR series routers.
• Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500 security appliance, Failover DMZ zoning & configuring VLANs/routing/NAT with the firewalls as per the design.
• Excellent customer management/resolution, problem solving, debugging skills and capable of quickly learning, effectively analyzes results and implement and delivering solutions as an individual and as part of a team.
• Working experience with REMEDY for ticket change management process
• Excellent in documentation and updating client’s network documentation using VISIO.

TECHNICAL SKILLS

Operating Systems: Windows 95/98, Windows XP/Vista/7/8/10.

Programming Languages: C, VHDL, TCL and assembly language, Python

IP Routing: RIPv1, RIPv2, BGP, OSPF, IGRP, EIGRP, eBGP, iBGP, iWAN

Communication Protocols: TCP/IP, UDP, DHCP, DNS, ICMP, SNMP, ARP, RARP, PPP, CHAP, HDLC and ISDN

Network Peripherals: Hubs, Cisco switches (2900, 3550, 3560, 4000, 5500, 6500), Cisco routers (2600, 2800, 2900, 3700, 3825,4000,4331ISR), Cisco Nexus Switches (n5k, n7k, n9k) Cisco ASA 5500 series, Cisco Firepower (2100,4100,9300), F5 Load Balancer

Sniffers: Solar winds, Wireshark

Network Tools: Cisco Prime, ISE, Citrix Netscaler (VPX, MDX), Live Action, DNA Center

Firewall Security: Cisco ASA, Cisco Firepower-FMC, Checkpoint

PROFESSIONAL EXPERIENCE

Confidential, Chicago

Sr. Network Engineer

Responsibilities:

• Design, configure, Troubleshoot B2B IPSEC Tunnels with various NAT, PAT Protocols
• Design and Deploy Citrix NetScaller in Environment for Vendors accessing Citrix environment.
• Design network for Devices with ISE policy, ACLs, and NAC configuration to provide network Security.
• Work on Azure environment
• Work on Network refresh by deploying Cisco 9300 Series switches
• Deploy DNA Center and wireless controllers 5520.
• Troubleshoot LAN and WAN and application Issues with Various Teams
• Support and Troubleshooting issues on ASA and Checkpoint Firewall
• Deployed cisco FPR1110 Firepower and segment the Network.
• Worked on VrF Technology to segment the Production traffic on Sites.
• Support nexus 5k,7k and 9k best practice environment
• Support and troubleshoot ISE, Licensing, Endpoint Profiling, Dot1x, MAB, Wired, NAC and wireless Policy.
• Deploy, support, and troubleshoot DMVPN on sites.
• Work on WAN edge side network
• Work and Support F5 Load balancers
• Work on Deployment of MPLS to connect Data centers.
• Deploy MPLS with Vendor to merge MPLS cloud with BGP peering and ospf neighborship.
• Work on routing techniques such as route redistribution and filtering to manipulate routes.
• Create Visio for various networks within the environment.

Confidential, WI

Network Engineer

Responsibilities:

• Worked on Configure, support, troubleshoot Meraki Products MS210, MS225, MX64, MR 56, MR 34.
• Supported WAN Environment
• Worked on Palo Alto Firewall, Configuration, rules and troubleshoot issues.
• Developed Site design having two ISPs
• Worked on L2 and L3 Issues
• Performed Site visits to fix the various LAN issues.

Confidential, IL

Network Engineer

Responsibilities:

• Experience with design and implementation of Data center migration
• Design, implementation, and operational support of routing/switching protocols in complex environments including BGP, OSPF, EIGRP, Spanning Tree, 802.1q, MPLS/VPN, etc.
• Deploying and decommission of VLANs on core Nexus 7K, 5K and its downstream devices.
• Worked with N5K and N7K, N9K. Experience in Configuring, upgrading and verifying the NX-OS operation system with ISSU
• Worked on Racking, Stacking, configuring Nexus 9K, 7K, 5K, 2K.
• Configured RIP, PPP, BGP, MPLS and OSPF routing.
• Assisted in MPLS migrations, implemented a backup for the existing WAN connection using site-to-site IP sec VPN tunnels.
• Install and configure the Cisco routers for MPLS (IP VPN QoS), internet and Ethernet private lines.
• Troubleshoot MPLS connectivity issues with ISP.
• Configure Resource Group, vNET, Route table, VM, ASR in Azure
• Implement BGP routes with Azure connectivity.
• Setup S to S Ipsec Tunnel with Azure via Expressroute
• Implement data center regional zones to provide dual data center redundancy with Azure cloud.
• Knowledge of SD-WAN technology
• Working on vSmart, vManage to monitor devices and maintain vEdge routers.
• Perform code upgrade on all models of vEdge router 100, 1000,2000
• Implement 2 EPL circuits and 1 internet circuit for data and voice traffic.
• Worked on vManage for centralized and localize policies.
• Migrate site ASR router to vEdge router and added on vManage
• Research on python scripts to perform network atomization.
• Knowledge of deployment of PfR with DMVPN
• Implement multicasting for VOIP traffic.
• Configure and troubleshoot vrf routing to segment the production network devices.
• Hands on experience of troubleshoot multicasting issues.
• Deploy and maintain Cisco Identity Services Engine (ISE), to include the creation of security policies and security posture assessments.
• Troubleshooting and maintenance ofCiscoIdentityServiceEngine(ISE) utilizing 802.1X to enable the creation and enforcement of security and access policy for end user’s laptop and the desktop access of company networks.
• Configuring and installing 4000 routers in Campus networks.
• Providing remote assistance for replacing exiting switches with new Cisco switches.
• Deploying and decommissioning Cisco switches and their respective software upgrades.
• Perform the ACL requests change for various clients by collecting source and destination information from them.
• Work on DHCP server migration from windows .
• Configure failover for windows 2008, 2012 and 2016 DHCP servers.
• Configure the Cisco Catalyst 2960, 3750, 4500, 6500 switches.
• Maintain LAN/WAN networks with several VLANS and provided support for routing protocols and providing secure sessions over internet using IPSec and SSL encryption.
• Work extensively on Cisco ASA 5500(5510/5540) Series Firewall.
• Supporting EIGRP and BGP based on the network by resolving level 2 & 3 problems of internal teams & external customers of all locations
• Configure and troubleshoot cisco Wireless controllers 3504, 5508 and access points (AiroNet 3800, 2800 series)
• Upgrade and maintain wireless access points and controllers via Cisco DNA center
• Performing troubleshooting on slow network connectivity issues, routing issues that involves OSPF, BGP and identifying the root cause of the issues.
• Involved in Configuration of Access lists (ACL) on ASA firewall for the proper network routing for the B2Bnetwork connectivity.
• Deploying the Firepower Thread Defense (FTD) and managing it through the FMC.
• Migration of ASA Firewalls ASA 5525, 5555-X, 5585 to Cisco Firepower Threat Defense (FTD) 4110 and 9300 for tightening the IT Security of the Company's Infrastructure and increase the handling capability of Network traffic
• Deployed Firepower Management Center (FMC) 4500 in HA pair mode for managing and configuring the new generation FTD Firewalls devices and policies for security of network.
• Provide proactive threat defense with ASA that stops attacks before they spread through the network.
• Design and implemented DMZ for Web servers, Mail servers & FTP Servers using Cisco ASA5500 Firewalls.
• Troubleshoot the spanning tree (STP, RSTP, PVSTP) loop issue to make the network loop free
• Supported OSPF and BGP based on the network by resolving level 2 & 3 problems of internal teams & external customers of all locations.
• Work on Layer 2 protocols like VLANs, VTP, STP and Ether Channels (LACP and PAGP) Setup embedded packet capture (EPC) on ASR1000 series router for capturing and analyze the packets via Wireshark
• Learned the basics of simulating network operations with usage of monitoring tools like Solar winds thereby resolving tickets as per the issue.
• Troubleshoot the Network Issues onsite and remotely depending on the severity of the issues.
• Perform Break Fix support through driving to different buildings, identifying the root cause of the hardware issues with switches, routers.
• Created Visio Diagram / Visio Documentation to give complete picture of network design for each building.

Environment: Cisco 2948/3560/4500/3560/3750/3550/3500/2960 , 6500 Switches, Cisco 4000/3640/3845/3600/2800/2900 routers, Cisco Nexus7K/5K, Cisco ASA firewall (5500, 5540), Firepower (2100,4100), windows server 2003/2008. OSPF, BGP, EIGRP, LAN, WAN, VPN, HSRP, Citrix Load Balancers (SDX, VPX), Wireless Controllers (5508, 3504), Wireless access points (AiroNet 3800, 2800 series)

Confidential, San Diego, CA

Network Engineer

Responsibilities:

• configure Cisco Catalyst 2960, 3750,3850, 4500, 6500 switches and Cisco 2800, 3800, 4000 series routers, Cisco ASA 5000 series Firewalls.
• Configured RIP, PPP, BGP and OSPF routing
• Creating and provisioning Juniper SRX firewall policies.
• Created standard access lists to allow SNMP, NTP and logging servers.
• IP phone maintenance and troubleshooting
• Configuring and installing Cisco catalyst 6500, 4500 switches in Campus networks.
• Thorough knowledge & understanding of TCP/IPnetworktechnologies.
• Worked with creating VIP (virtual servers), pools, nodes and applying iRules for the virtual servers like cookie persistency, redirection of the URL.
• Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500/PIX security appliance, Failover DMZ zoning & configuring VLANs/routing/NAT with the firewalls as per the design.
• Worked with Windows Domain, Active Directory, DNS, Telnet, DHCP, FTP, SSL
• Racked and installed routers, switches and Firewalls onsite
• Firewalls, Nortel VPN Concentrators TCP/IP, NAT and Checkpoint ESX/GSX firewall.
• Created and tested Cisco router and switching operations using OSPF and BGP routing protocols, ASA Firewalls, and MPLS switching for stable VPNs.
• Documented new VPN enrollments in a database and create standard procedures for further improvement.
• Worked with creating VIP (virtual servers), pools, nodes and applying iRules for the virtual servers like cookie persistency, redirection of the URL.
• Worked with Windows Domain, Active Directory, DNS, Telnet, DHCP, FTP, SSL
• Racked and installed routers, switches and Firewalls onsite
• Created and tested Cisco router and switching operations using OSPF and BGP routing protocols, ASA Firewalls, and MPLS switching for stable VPNs.
• Maintaining IBM Servers especially p595, p590 & p570

Environment: Cisco 2948/3560/4500/3560/3750/3550/3500/2960 , 6500 Switches, Cisco 4000/3640/3845/3600/2800/2900 routers, Cisco ASA firewall (5500, 5540), JuniperSRX, windows server 2003/2008. OSPF, BGP, EIGRP, LAN, WAN, VPN, HSRP, Wireless Controllers (5508, 3504), Wireless access points (AiroNet 1200, 2800 series)

Confidential

Junior Network Engineer

Responsibilities:

• Configured and installed various network devices and services (e.g., routers, switches, firewalls, load balancer); Provide Level-2/3 support and troubleshooting to resolve issues and worked within established configuration and change management.
• Involved in LAN/WAN implementation support and data center support.
• Documented the company’s design, implementation and troubleshooting procedures.
• Subsidiary, external customer, and vendor Support.
• Responsible for monitoring the Network performance based on company’s Service Level Agreement (SLA).
• Involved in troubleshooting of DNS, DHCP and other IP conflict problems.
• Tested the new zone for failover capabilities and redundancy. Connected the Distribution routers to the Core routers via OSPF Areas.
• Performed IOS upgrades on various catalyst series switches and maintained latest IOS versions according to company’s policy.
• Configured VLANs with 802.1Q Tagging according to the Server team’s requirements.
• Responsible for cabling and labeling based on day to day requirement and Racking& Stacking of various network equipment and made sure that there are no connectivity issues using ping and tracert.
• Provided Helpdesk support that involved identifying and escalating the tickets to specific groups.
• Resolving all computer related problems, such as troubleshooting operating system failure, scheduling and updating virus checks on servers and desktops.

Environment: Cisco routers (2600, 2800, 3640, 3700), Cisco switches (2900, 2924, 2950, 3550, 3560), RIPv1, RIPv2, BGP, OSPF, EIGRP, TCP/IP, UDP, DHCP, DNS, SNMP, ARP, RARP, PPP, HDLC and ISDN.