SUMMARY

• Over 8 years of diversified experience in LAN/WAN,SD - WAN, routing, switching, firewall technologies, administration and troubleshooting as a Network/System Engineer.
• Experienced in Troubleshooting for connectivity and hardware problems on Cisco Networks.
• Extensive experience with Cisco IOS, Windows client/server operating systems, Linux, Networking technologies, Firewalls.
• Implementation traffic filters on Cisco routers using Standard, extended Access list.
• Worked on network topologies and configurations, TCP/IP, UDP, SIP, SBC,Frame Relay, Token ring, ATM, bridges, routers, hubs and Switches
• Have experience installing and troubleshooting Cisco routers and switches.
• Well Experienced in configuring protocols HSRP, GLBP, VRRP, ICMP, IGMP, PPP, PAP, CHAP, and SNMP.
• Experience in installing and configuring DNS, DHCP server.
• Excellent in troubleshooting issues on NAT configuration and related access lists and DNS/DHCP issues within the LANnetwork.
• Implementing security policies using ASA 55XX Firewall, IPS/IDS, AAA Security (TACACS+, RADIUS) ondifferent series of routers.
• Experience in L2/L3 3 protocols like VLANS, STP, VTP, MPLS and Trunking protocols.
• Over 6 years of hands-on experience in Planning, designing, Installing and Configuring of Cisco Routers (1700, 1800, 2500, 2600, 3200, 3600, 3700, 3800, and 7200) using RIP, EIGRP, OSPF, BGP on MPLS network.
• In-depth knowledge and hands-on experience on IP Addressing, Sub netting, VLSM and ARP, reverse & proxy ARP, Ping Concepts.
• Proficiency in configuration of VLAN setup on Cisco Routers and Switches.
• Developed deployment solutions for network technologies including Optical VoIP VPN SAN switching and routing
• Experience in skillful deployment of Layer-2 technologies like VLANS, VTP, STP, RSTP, Inter-VLAN routing, VLAN Trunking, Ether Channels, VLAN access-maps and port security.
• Outstanding experience in designing and configuring of Layer 2 / 3 networking features such as VLAN, ISL, STP, VTP, 802.1X, Port Security, L2PT and SPAN
• Managed enterprise grade server/application load balancing using F5 LTM/GTM.
• Experience on load balancers such as F5 Big-IP LTM, Cisco CSS, Cisco ACE, Citrix NetScaler by implementing allrequired policies and to convert the changes depending on day to day usage.
• Experience working with Cisco Nexus 2148 Fabric Extender and Nexus 5000 series to provide a Flexible Access Solution for a datacenter access architecture
• Excellent knowledge and Working experience on different platforms like Cisco, Juniper, Checkpoint,F5 Big-ip LTM load balancers (F5 and A10). And worked on migration of (F5 to A10).
• Expert in Data Center Technologies such as VPC, VRF,OTV,VDC& Fabric Path.
• Experience configuring Virtual Device Context in Nexus 7010
• Functional knowledge BASH Shell Scripting (Linux) and MySQL programming languages
• Good understanding of following programing languages: Visual Basics, shell scripting and Perl
• Hand-on experience in developing C++, python and tomcat.
• Extensive experience using Microsoft suite like Word, Visio, Excel, PowerPoint.
• Excellent technical and project management skills combined with strong communication skills

TECHNICAL SKILLS

Routers: Cisco 17XX, 18XX, 26XX, g28XX, 37XX, 38XX, 39XX &72XX series.

Switches: Cisco 3550, 3750, 45XX, 65XX series. Nexus 2000, 5000 and 7000 series

Firewall: Cisco ASA, PIX, Juniper SRX, SSL, Networking for SCADA systems.

Load Balancer: Cisco CSS, Cisco ACE F5 Networks (Big-IP).

Routing: OSPF, EIGRP,BGP,RIP2,PBR,VxLAN, RouteFiltering, Redistribution,Summarization, Static Routing.

Switching: VLAN,VTP, STP, PVST+, RPVST+, Inter VLAN routing & MultiLayer Switching.

LAN: Ethernet, FastEthernet,GigabitEthernet,FDDI,CDDI,TokenRing, ATMLAN Emulation.

WAN: Leased lines 64k - 155Mb (PPP / HDLC), Channelized links (E1/T1/E3/T3), Fiber Optic Circuits, WAAS, Frame Relay, MPLS.

Operating Systems: Windows Desktop and Server OS, Ubuntu, LDAP

Servers: FTP, HTTP, LINUX, VMWare, SQL, Blue Coat, Microsoft Virtual Server

Scripting Languages: HTML, XML, CSS

Various Features & Services: IOS and Features, HSRP, GLBP, NAT, SNMP, SYSLOG, NTP, Gi, Gn, Gx, RADIUS/DIAMETER, DHCP,DNS, Cisco prime,Cisco ISE, BIND,WLAN, TFTP and F TP Management, USMT.

PROFESSIONAL EXPERIENCE

Confidential, NJ

Network Engineer

Responsibilities:

• IP Address Management through IP Plan tool
• Creating and maintaining DNS Records in internal and external DNS servers
• Evaluated and validated network design structure
• Identified and resolved risks pertaining to networking system
• Performed maintenance and upgradation of network system
• Developed and maintained appropriate network project reports
• Configuring VIPs, Virtual Servers, I-rules, Pool members, Health monitors in F5 and A10 load balancer for LTM and GTM Environments
• Renewing the expired Digital certificates and updating it Load balancers
• Performing and Generating quarterly audit reports for firewalls
• Performing Quarterly SNMP String and password update for Load balancers and firewalls
• Migration of 300+ virtual servers in F5 to A10 Load balancer as part of web and application server migration
• Coordinated and implemented changes for projects like Mytime, SSA, Dynatrace, Retalix, Wintel LCM server migration &VLAN Optimization
• Planned and worked on design with Network team to re-architect F5 load-balancers to load-balance traffic anywhere in the company network.
• Lead datacenter transformations project to migrate client/server operations and platforms tocloud environments.
• Configure and integrate Authentication in F5 using APM profiles
• Build security policies for each site in ASM
• Implemented the migrated policies from Checkpoint R60 to Cisco ASA 8.6
• Migrated 7 VPN Tunnels from Checkpoint to Brand New Cisco ASA firewalls
• Created a AAA configuration template for over 100 Cisco ASA firewalls
• Palo Alto, ASA implementation, migration and cleanup to Checkpoint Provider
• Implemented Zone Based Firewalling and Security Rules on the PaloAlto Firewall.
• Successfully installed Palo Alto PA-3060 firewalls to protect Data Center and provided L3support for routers/switches/firewalls.
• Intermediate-level configuration and setup of Palo Alto firewalls
• Coordinating with Vendors for creating and modifying firewall and NAT rules and Maintaining Site to Site and SSL VPN
• Configuring switch ports (VLAN tagging, switch port mode, Port Channel) at distribution and Access layers for new server builds and critical server movement as per requirement
• Infrastructure trouble shooting and TCP/IP Protocols Experience
• Using network security analysis tools Wireshark, TCPdump, to sniff traffic, troubleshoot devices and firewalls.
• Hand on experience the configuration and implementation of various Cisco Routers and L2/L3 Switches.
• Worked with L2 and L3 Etherchannal
• Maintained a Network with more than 600 Network devices, some 25,000 end hosts, and the other network devices like DHCP, DNS servers, Firewall servers
• Install, configure, manage, and troubleshoot Cisco ISE Servers and policies
• Managed successful delivery of massive security response portfolio including Cisco ISE, Sourcefire FirePower and AMP
• Certificate Upgradation, Load balancing through Citrix NetScaler.
• Configuration and Monitoring of Citrix NetScaler (Both MPX and VPX)
• Configuring Cisco Catalyst Switches for Dot1x support testing the IOS compatibility with ISE
• Responsible for installing the Cisco and Juniper products.
• Oversaw migration of 2 Data Centers from Frame Relay to private MPLS WAN links to new service provider.
• Co-ordination with Hardware vendors, software vendors and service Providers
• Helped the Network team to install New switches and routers and configure the IOS according to the requirement
• Configured and deployed Application based load balancing using F5 LTMs& site level load balancing onF5 GTMs using 3900 & 6900 BIG-IP appliances.
• Implemented traffic shaping rules to prioritized VoIP when peak network upload anddownload bandwidth is being used
• Design and implement new WAN architecture scalable for VOIP and can support QoS usingMPLS
• Configuring various advanced features (Profiles, monitors, iRules, Redundancy, SSL Termination, Persistence, SNATs, HA on F5BIGIP appliances SSL termination and initiation, Persistence, Digital Certificates, executed various migration/upgrade projects across F5 and hands on with F5 BIGIP LTMs/EM.
• Providing daily network support for national wide area network consisting of MPLS, VPN and point-to pointsite
• Proficient in setting up & managing WAN/LAN/WLAN& Networking Devices Administration.
• Programming of all phones and analog lines via pbx tty maintenance loads 20, 32, 95
• Configuration, Support and Troubleshooting of Cisco CUCM 8.5, Unity Connection 8.5, UCCX 8.5
• Upgraded CUCM Version 7.1.5 to CUCM Version 8.6
• Working knowledge of Unified Cisco Contact Center (UCC) Technologies like ACD, IVR and CTI applications.
• Assisted in backup, restoring and upgrading the Router
• Designed Visio diagrams accurately displaying network topology.
• Managed successful delivery of massive security response portfolio including Splunk, Cisco WSA, Cisco IPS, Cisco ISE, Sourcefire FirePower and AMP
• Familiar with FTP, HTTP, GIT, Jenkins, Linux servers, ARP, Ping concepts and resolving network conflicts.
• Hands on experience with multi-vendor equipment like Cisco and Juniper gear.
• Attended Team meetings and provided comments on existing network and the recommendations to improve the current network Performance
• Identifying technical problems and debugging hardware and software related to LAN’s/ WAN’s.

Confidential, Boston

Network Engineer

Responsibilities:

• Designed, Installed and configured LAN, WAN management, Internet and network security and configuration of Cisco Catalyst switches 6500, 4000 and 3750 series and Cisco ASR routers 9001, 1006 according to the Network Design along with the Data Center topology.
• Supporting EIGRP and BGP for problems of L2/L3 in internal teams & external customers.
• Configured OSPF, BGP protocols on Juniper routers (MX960, MX480) and troubleshooting them.
• Responsible for configuring and troubleshooting the Juniper SRX100 and 110 series, Juniper Net Screen Firewalls like NS50, SSG 550M, SSG520M, ISG 1000, ISG 2000 with Site-Site VPN for client companies.
• Designing advanced networking solutions including Quality of Service QoS, Virtual Routing and Forwarding VRF and Route redistribution.
• Configuration of port channel between core switches and server distribution switches was performed.
• Study and plan the network needs of clients
• Design, install, and monitor network setup
• Perform testing and troubleshooting of IT systems
• Design and deliver network services to clients
• Document site configuration and network topology
• Provide technical support in network application design and configuration
• Maintain and configure L2/L3 MPLS services
• Layer 2 switching technology architecture, implementation and operations including L2 and L3switching and related functionality. This includes the use of VLANS, STP, VTP and their functions as they relate to networking infrastructure requirements including internal and external treatment, configuration and security.
• Implemented NS-5GT NS500 for SSL VPN Connections
• Deploying Layer 2 security in Server Farms by configuring switch for 802.1x port based authentication.
• Designed, implemented and administered a VMware ESX/ESXi environment.
• Worked on Cisco Secure Access Control Server (ACS) for Windows to authenticate users that connects to a VPN 3000 Concentrator. Router/ Microsoft VPN Server in order to access certain limited network resources from customer locations.
• Enforced network security to DMZ & external Market Data vendors via CiscoPIX515 and ASA 5500 series firewallrules, and NAT.
• Configured all devices for remote sites/plants, vendors and added new equipment to RADIUS andworked with MPLS-VPN and TACACS configurations.
• Good Knowledge on multiplex techniques such as DWDM and VOIP.
• Monitored Network on a daily basis using NetFlow Traffic Analyzer and Wireshark.
• Performed upgrades for client from Cisco Call Manager 4.1 to CUCM 8.5& Unity Connection 2.1 to Unity Connection 8.5
• Provided 1st tier support to Users Globally utilizing Cisco Call Manager 7.1/8.5 and Cisco Unity 7.1/8.5
• Acted as lead engineer on Cisco Call Manager IPT implementations.
• Worked towards building connectivity to production and disaster recovery servers through F5BigIPLTMloadbalancers.
• Installation, Maintenance, Troubleshooting Local and Wide Areas Network (ISDN, Frame relay, NAT, DHCP, TCP/IP).
• Installed, configured, maintained and troubleshoot, JUNOSJuniperM-Series & T-Series routers
• Realignment and modification of BGP from the MPLS routers.
• Expertise on FTP, HTTP, DNS, DHCP servers in windows server-client environment with resource allocation to desired Virtual LANs of network.
• Worked on troubleshooting network security issues related to Cisco ASA/PIX firewalls.
• Responsible for Palo Alto Firewall 3020 for troubleshooting, upgrades, rule adds or changes, NAT, IPS, and VPN
• Resolved misconfigurations and configured loadbalancing of servers.
• Supported NetScaler utilizing firewalls and content filtering devices.
• Configured Cisco ASA firewall to use multiple security levels and interfaces
• Configuring RADIUS or TACACS+ authentication on CiscoASA firewalls
• Supported remote access solutions (Cisco ASA, Juniper SSL VPN)
• Leveraged Solar windsVNMQ to monitor VPNs and internet health checks to improve visibility and create efficiency.
• Analyzing traffic patterns using SolarWinds, Wireshark.
• Moved toSolarWinds products for Network Performance and Configuration Management.
• Involved in intrusion detection, threat prevention and information security using IDS/IPS technologies.
• Signature Updates Deployment on the Management Components and all the Individual IPS/IDS devices.
• Managed the F5 BigIP GTM/LTM appliances to include writing i-Rules and everyday tasks of creating WIP and VIPs.
• Designed L2/L3VPN services and VPN-IPSEC authentication & encryption system.
• Planning, designing, Installing and Configuring of Cisco Routers (1700, 1800, 2500, 2600, 3200, 3600, 3700, 3800 and7200, 7609) & Cisco L2&L3 Switches (2900, 3560, 4500 & 6500).
• Tuned BGP internal & external peers with manipulation of attributes such as metric, origin, local preference.
• Responsible for turning up BGPpeering and customer sessions, as well as debugging BGP routing problems.
• Configured Multiprotocol Label Switching (MPLS) VPN with Routing Information Protocol (RIP) on customer’s site.
• Implementing Network Diagram use of Microsoft Visio
• Challenging maintenance of day to day management of Cisco Devices, Traffic management and monitoring.

Environment: Cisco 4000/6500/3750 , Cisco Meraki Appliance MX (400, 80, 60) and Meraki wireless Access points (MR66,MR18), ASR 9001/1006; Nexus 7010/5000/2148 ;Brocade and McDataswitches, Juniper MX480/960; Juniper SRX100/110; DMZ, NAT/PAT, OSPF, EIGRP, RIP, BGP, ISIS, GLBP, HSRP, VRRP, STP, RSTP, SIP, TCP/IP, VoIP, MPLS, VPN, DHCP, QoS; Netscreen NS50, SSG/ISG series; VMware, Wireshark, tcpdump NetFlow Analyzer; F5 BIG IP LTM, HTTP, FTP, Cisco ASA/PIX; Cisco ISE, Checkpoint; Palo Alto; Cisco ACS, CSM, ACE; Linux, MS Visio

Confidential, Bloomfield, CT

Data Network Engineer

Responsibilities:

• Experienced in installation, configuration and maintenance of Cisco 7200, 3900, 2800, 2600, 2500 and 1800 series Router / Cisco Catalyst Cisco 6500 (sup 720), 4500 (SUP 6), 3750, 2950 series Switches
• Hand on experience the configuration and implementation of various Cisco Routers and L2/L3 Switches.
• Designed and implemented Cisco Nexus data center platform and worked closely with Cisco advance services and built Communication access zone for contact center services, management access zone for network management and monitoring tools, private wan access zone for remote site and elastic computing access zone
• Responsible for the planning, design, implementation, organization and operation of Palo Alto Firewalls.
• Worked on Palo Alto firewall and used panorama for centralized control of all the firewalls.
• Worked with Cisco ASR 4948 switch and installed them at the data center and at various sitelocations.
• Created shell scripts to handle file verification and/or file copying
• Configure the access-list and patch on the Juniper router and Firewall for customer support.
• Worked with Cisco advance services to implement data center Nexus environment for new Upgraded the NX-OS in nexus 7018,7010 and nexus 5548 and 5596.Consolidated multi-tiered environment into a pair of Nexus 7000 switches using FabricPath, VPC and VRF
• Configuration included VLANs & VTP, STP port features, Gateway redundancy using HSRP, enterprise security using Cisco Port Security and Dot1X framework
• Configuration and maintenance of OSPF protocol which was the enterprise IGP. Configuration included deploying of new branch locations or new network devices in the existing infrastructure. Creating Stub Areas & configuring Summarization for effective Routing
• Worked on BGP configuration for providing redundant internet connectivity using BGP attributes, Route maps, prefix-lists etc.
• Configured and Maintained BGP features such as load balancing, Route Reflectors, BGP metrics such as maintaining the Enterprise IP Addressing scheme with allocation of new IP Pools for user subnets, and updating the port on the switches MED, AS Path, Local Preference, Communities
• Designedand maintained F5 APM SSO and two factor authentications for Citrix remote virtual desktop infrastructure.
• Configuration of Failover on firewalls and configuration of Cisco (AAA) ACS server, RADIUS and TACACS+ forVPN users and implementation of secured VPN on Cisco routers, PIX and VPN concentrator appliances.
• Decommissioned Cisco switch (6500, 3500), router (3600) and Big IP LTM (3600, 3900).
• Integration of different devices/applications/databases/ operating systems with SIEM.
• Configuring and managing Blue Coat Proxy Servers
• Configuring and managing Checkpoint Integrity and VPN-1 for Security purpose
• Migrated Checkpoint R65 to R75 and Installed Smart-Reporter which allows us to run reports on Security rules usage etc
• Worked on WAN connectivity between CISCO routers using T1, T3, Frame relay and troubleshooting connectivity issues.

Confidential

Network Support Engineer

Responsibilities:

• Responsibilities included configuration and installation of software and hardware
• Configured EIGRP and OSPF for lab environment
• Involved in troubleshooting software, hardware and network problems
• Configuration and maintenance LAN networks with switches such as Cisco 4507, 4510
• Configured VLAN’s, VTP, and dot1.Q trunking on switches
• Configuring all the end ports as access ports using port fast and implementing BPDU guard
• Troubleshoot issues related to connectivity, STP, Vlans, Trunking, VTP, Layer 2 switching, Ether Channels, Inter-Vlan routing, log messages, high CPU utilization and parameters that can degrade Performance of the network
• Support F5 customers using telephone and E-mail and specialized in the BigIP Local Traffic Manager (LTM) and the Web Accelerator Module (WAM)
• Installed & configured Cisco PIX 506 to provide security to the network
• Incident analysis, responses and remediation using SIEM tools
• Involved in SNMP Network management. Worked on various scanning and sniffing tools like Ethereal
• Responsible for implementation and day to day operations of all associated hubs, routers, bridges, Gateways and related equipment
• Monitoring the network, troubleshooting network problems, implementing changes, provided Cisco IOS
• Upgrades and backups of Cisco router configuration files to a TFTP server

Confidential

Jr. Network Engineer

Responsibilities:

• Performed IOS upgrades/Password recoveryon Catalyst 1900,2900series switches and 2500,2600 seriesrouters.
• Did racking, stacking, and cabling network-based, IT systems
• Configured Access List ACL (Std., Ext, Named) to allow users all over the company to accessdifferent applications and blocking others.
• Configuring of IP Allocation and sub netting for all applications and servers and other needsthroughout company using FLSM, VLSM addressing.
• Troubleshoot the issues related to L2 and L3 levels.
• Network maintenance checks, configure and manage printers, copiers, and other miscellaneousnetwork equipment.
• Installing operating systems, software and hardware on computers.
• Responsible for Data Backup, System Update, Recovery and Restore, and Spywareremoval.
• Assisting Junior and Senior Engineers, on-site management of cable-wiring technicians
• Troubleshoot problems on a day to day basis and documented every issue to share it with designteams.