SUMMARY

• Cisco Certified Network Engineer with around 7+ Years of experience in design, development, implementation, troubleshooting and maintenance of complex network systems.
• Sound knowledge of Routing and switching concepts and MPLS design.
• Proficient in Cisco IOS for configuration & troubleshooting of routing protocols: MP - BGP, OSPF, LDP, EIGRP, RIP, BGP v4, MPLS.
• Design solutions using Cisco DMVPN/IWAN features.
• Experience working withCisco Nexus 2148 Fabric Extenderand Nexus5000 series to provide a Flexible Access Solution for a datacenter access architecture.
• Familiar with Cisco Security SDM, NAT/ACLs, AAA, Layer 2 Security, Layer 3 Security, IPS/IDS, Cryptography, VPN, IPsec.
• Worked on F5 LTM, GTM series like 6400, 6800, 8800 for the corporate applications and their availability.
• Implemented and maintained Big-IP F5 load balancing solution across multiple data centres
• Knowledge of implementing and troubleshooting complex layer 2 technologies such as VLAN Trunks, VTP, ISL/ 802.1q, Ether channel, Port Security, STP, RSTP and MST.
• Extensive experience in Layer 3 routing and Layer 2 switching. Experienced dealing with router configurations like 7200, 3800, & 2800 and switches 6500, 4500, 3750, 2900 and 3500XL series.
• In depth understanding of IPV4 andimplementation of Subnetting.
• Well Experienced in configuring protocols HSRP, ICMP, IGMP, PPP, PAP, CHAP, and SNMP.
• Experienced in DNS, DHCP, SMTP,FTP, HTTPS and web security architecture.
• Implemented IPv4 migration to IPv6 (NAT-PT, Tunnelling, etc.) and IPv6 routing protocols (RIP, OSPFv3, EIGRP, BGP etc.).
• In-depth expertise in the analysis, implementation, troubleshooting & documentation of LAN/WAN/IWAN architecture and good experience on IP services.
• Worked on Cisco Firewalls Cisco ASA 5500(5510/5540) Cisco ACI Series and Checkpoint R75, 76 Firewalls.
• Experience in installing and configuring Checkpoint NGX R70.
• Implemented traffic filters using standard and extended access-lists, distribute-lists and route maps.
• Provided support that included resolving day-to-day operational issues with tickets generated by a server.
• Experience with F5 load balancers - LTM, GTM series like 6400, 6800, 5000 and 2000 for the corporate applications and their availability.
• Experience in documenting and preparing the process related operational manuals.
• Wide exposure to LAN/WAN setup, installation, configuration and commissioning of network devices.
• Good understanding of SNMP, IP SLA and Network Monitoring with experience in tools like PRTG.
• In-depth knowledge and hands-on experience in Tier II ISP Routing Policies, Network Architecture, IP Sub netting, VLSM, TCP/IP, NAT, DHCP, DNS, FT1 / T1 / FT3 / T3, SONET POS OCX/ GigE circuits, Firewalls.
• Good knowledge on implementing F5 BIG-IP load balancer.
• Experience in implementation of F5 GTM based on topology load balancing methods
• Having experience in deploying BIG-IP F5LTM Load Balancers for load balancing and traffic management of business application.
• Experience on Virtual Private Network (VPN) for operating Network and Data Center.
• Experience with F5 load balancers - LTM, GTM series like 6400, 6800, 5000 and 2000 for the corporate applications and their availability.
• Moderate knowledge in configuring and troubleshooting cisco wireless networks: LWAPP, WLC, WCS, Wireless security basics.
• Have exposure in LAN/WAN setup, installation, configuration and commissioning of network devices.
• Robust comprehension of SNMP, IP SLA and Network Monitoring with experience in tools like PRTG.
• Thorough mastery in Tier II ISP Routing Policies, Network Architecture, IP Sub netting, VLSM, TCP/IP, NAT, DHCP, DNS, FT1 / T1 / FT3 / T3, SONET POS OCX/ GigE circuits, Firewalls.
• Experience in implementation of F5 BIG-IP load balancer, F5 GTM based on topology load balancing methods.
• Experience in deploying BIG-IP F5LTM Load Balancers for load balancing and traffic management of business application.

TECHNICAL SKILLS

Cisco Routers: Cisco ASR9k, GSR 12000, 7600, 7500, 7200 VXR, 3800, 37002800, 2600

Cisco Catalyst: Catalyst 6500, 4000, 3550, 2900,4928, 49484507,4510, 3750,3560, and 2960

Alcatel Switches: ALU Omni switches 6450,6900

Nexus Switches: Nexus5548, 5596, 6000, 7009, 7018.

IP Routing Protocols: BGP, OSPF, EIGRP, IGRP, RIP v1 & v2, IS-IS

MPLS: LDP, MPLS L3 and L2 VPN

Load Balancing: Cisco ACE 4700 series, F5 LTM

Firewalls: Cisco ASA 5500, Cisco ACI, Cisco PIX 500, checkpoint r60, checkpoint r65, PAN

LAN Switching: STP, IEEE 802.1Q, VTP, VLAN & Inter-VLAN routing, QoS

WAN/core: ATM, Frame-Relay, ISDN, PPP, HDLC

Optical infrastructure: SONET OC3-OC192, SDH, POS, PDH

IP Telephony: SIP, H.323, RTP, Voice Gateways, CCM, QoS

VoIP Devices: Cisco IP phones, Cisco 5500, 6500 series controller, Avaya 30006000, 7200 series Controllers

Quality of service: CBWFQ, RED/WRED

Wireless Technology: Cisco AP, LWAP, Access Points, WCS

Ticketing software: Service Request System, ConnectWise, Remedy system

Management software: Statseeker, HP open view, Solar winds, PRTG Network Monitor

IPSEC/VPN Configuration: PIX to Router, Router to Router, PIX to VPN wildcard client, Router to VPN wildcard client, PIX to PIX, fully meshed configurations

Cabling: CAT 5, CAT 5e, CAT 6, CAT 6a

Operating Systems: Windows Server/8/7/Vista/XP, Nexus OS, Cisco IOS-XR, LinuxUnix (Mac OS)

Microsoft Office: Visio, Excel, PowerPoint, Word

PROFESSIONAL EXPERIENCE

Confidential, CA

Sr. Network Engineer

Responsibilities:

• Configured routers and coordinated with LD Carriers and LECs to turn-up new WAN circuits. Configuring, Maintaining the Routers and Switches and Implementation of RIP, EIGRP, OSPF, BGP routing protocols and troubleshooting.
• Configuring, upgrading and deployment of Nexus 7010, 5596 and 2248.
• Working with Cisco Nexus 2248 Fabric Extender and Nexus 5500 series to provide a Flexible Access Solution for datacenter access architecture.
• Experience with configuring Nexus2000FabricExtender (FEX), which acts as a remote line card (module) for the Nexus5000.
• Amongst the team that migrated 7600 over router to newASR9K that worked forCiscoSystems .
• Experience on CiscoRouter 1841, 2811, 3845,ASR1002X,cisco899 LTE router.
• Worked extensively on Data Center Palo Alto firewalls and F5 BIG-IP LTM.
• Configured Site-Site VPN onPalo AltoFirewall on one side and Fortinet on the other side.
• Configured various Cisco7600, 7200, 3800 series routers and LAN switches such as CISCO 2900, 3550, 4500, 6509 switches and Access layer switches such as Cisco 4510, 4948, 4507 switches for VLAN, Fast Ether Channel configuration.
• Configured Site-to-Site IPsec VPNtunnels to peer with different clients and each of client having different specifications of Phase 1 and Phase 2 policies using Cisco ASA 5500 series firewall and Cisco ACI.
• Responsible for troubleshooting and resolving firewall software and hardware issues, including VPNs, connectivity issues, logging, cluster configurations, and hardware installations for Checkpoint andPalo Altofirewalls.
• Configure Virtual Servers, Nodes, and load balancing Pools in F5 BigIP LTM.
• Configured and deployed BIG-IPLTM6900 for providing application redundancy and load balancing.
• Worked extensively on Cisco ASA 5500(5510/5540) Series and Cisco ACI, experience with convert PIX rules over to the Cisco ASA solution.
• Comprehensive elementary configurations on theF5Big-IP LTMsloadbalanceron prevailing network to divide traffic on web-servers
• Experience with layer 3 routing and WAN related technology, including EIGRP, BGP, IWAN, PfR, VRFs, MPLS, DMVPN, WAAS, and QoS.
• Supporting EIGRP and BGP based on the network by resolving level 2 & 3 problems of internal teams & external customers of all locations
• Performing troubleshooting on slow network connectivity issues, routing issues that involves OSPF, BGP and identifying the root cause of the issues.
• Worked on migration of existing PIX firewall to ASA firewall, PIX OS upgrade from 6.3 to 7.0.
• Design and Implement DMZ for FTP, Web and Mail Servers with CISCO PIX 506, PIX515
• Building the VPN tunnel and VPN encryption.
• Involved in Configuration of Access lists (ACL) on ASA firewall for the proper network routing for the B2B network connectivity.
• To secure configurations of load balancing in F5, SSL/VPN connections, Troubleshooting CISCO ASA firewalls, and related network security measures.
• Provided proactive threat defense with ASA that stops attacks before they spread through the network.
• Designed and implemented DMZ for Web servers, Mail servers & FTP Servers using Cisco ASA5500 Firewalls.
• Troubleshoot the Network Issues onsite and remotely depending on the severity of the issues.
• Performed Break Fix support through driving to different buildings, identifying the root cause of the hardware issues with switches, routers.
• After testing on completed site will be placed back on either dual circuits or with IWAN backup circuit.
• Design, implementation and operational support of routing/switching protocols in complex environments including BGP, OSPF, EIGRP, Spanning Tree, 802.1q, etc.
• Worked with creating VIP (virtual servers), pools, nodes and applying iRules for the virtual servers like cookie persistency, redirection of the URL.
• Involved in configuring and implementing of composite Network models consists of Cisco7600, 7200, 3800 series routers and Cisco 2950, 3500, 5000, 6500 Series switches.
• Provided daily Palo Alto firewalls administration such as Threat prevention, URL filtering, IPSEC and SSL VPN's, zone based integration, and analyzing syslog's, and utilizing wild fire feature in Panorama 7.1.
• JuniperroutersMX960network concept, IP design for IPv4 and IPv6, and configuration via JUNOS CLI, including ISIS, LSP, iBGP, eBGP, policies, and L2VPN
• Configured syslog on Palo Alto firewall and moved the logs to Splunk and reviewed it.
• Implemented many number of security policy rules and NAT policy rules on Palo Alto, created Zones, Implemented Palo Alto Firewall interface, Palo Alto IDS and VLAN.
• Configured Nexus 7010 including NX-OS Virtual Port Channels, Nexus port profiles, Nexus Version 4.2 and 5.0, Nexus VPC peer links
• Participated in the installation, configuration, and post installation daily operational tasks and configuration of the deployment of Cisco Nexus equipment
• Designed 10 gigabit networks using Cisco Nexus 7000 series switches, and Cisco 3800 series routers.
• JUNOS design and provisioning for theMX960routers, EX3300 and EX4550 switches.
• Configuring various advanced features (Profiles, monitors, Redundancy, SSL Termination, Persistence, SNATs, HA onF5BIGIP appliances SSL termination and initiation, Persistence, Digital Certificates, Executed various migration/upgrade projects acrossF5and hands on withF5BIGIP LTMs/EM.
• Managed rules on Cisco checkpoint NGX firewall
• Worked with Juno OS and Juniper M&T series switches
• Worked with Cisco ACE GSS 4400 Series global site selector appliances. networks using routing protocols such as RIP, OSPF, BGP and manipulated routing updates using route-map, distribute list and administrative distance
• Also worked with the Riverbeds appliances
• Configured OSPF redistribution and authentication with type 3 LSA filtering to prevent LSA flooding
• Configured OSPF over frame relay networks for NBMA and point to multipoint strategies
• Implementing traffic engineering on top of an existing Multiprotocol Label Switching (MPLS) network using Frame Relay and Open Shortest Path First (OSPF).
• Worked with Host Master for shared web hosting.
• Worked with Processes like RFI, RFE and RFP
• Configured ASA 5500-X Series firewalls to provide highly secure and high performance connectivity between the site locations.
• Configuring Big-IP F5 LTMs (virtual servers, pools, SNATs, health monitors, iRules) for managing the traffic and tuning the load on the network servers.
• Worked on Juniper SRX 5800 firewalls to create policies using Confidential -Web User Interface.
• Performed Network Address Translation on Cisco ASA 8.2 and 8.3
• Used DHCP to automatically assign reusable IP addresses to DHCP clients.
• Performed the ACL request changes for various clients by collecting source and destination information from them.
• Troubleshoot the BIG-F5 1600 LTM through constant contact with the vendor.
• Created MOPS (Method of procedures) and sought the approval of peers to perform configuration changes.

Environment: Cisco 3640/12000/ 7200/3845/3600/2800 routers,Cisco Nexus 7K/5K, Cisco ASA 500, F5 BIGIP LTM, RIP, OSPF, BGP, EIGRP, LAN, WAN, VPN, HSRP, Cisco 2600/2800/3600/3800 Routers, Cisco 2950/3700/6500/7613 switches, ASAFirewall, RIPv2, OSPF, BGP, EIGRP, LAN, WAN, MPLS, F5 Load Balancer, VLAN, Trunking.

Confidential, Chicago, IL

Network Engineer

Responsibilities:

• Responsible for implementing, supporting, and maintaining 24x7 network services.
• Coordinated efforts with Engineer’s to ensure all network devices conformed to defined network standards.
• Experience with devicesPalo Alto Networkfirewalls such as security NAT, Threat prevention & URL filtering.
• Worked with MSC- Microsoft system center manager.
• Configured various Routing protocols such as RIP, OSPF, EIGRP, static routing.
• Provided configuration of STP and Port Security on Catalyst 6500 switches.
• Configure the Cisco CRS-1 Routing System, back out of configuration changes, and restore older versions of a configuration.
• Experience with layer 3 routing and WAN related technology, including EIGRP, BGP, IWAN, PfR, VRFs, MPLS, DMVPN, WAAS, and QoS.
• Troubleshooting of Cisco 2800, 2900, 3900, 7200, 7600, ASR9k, CRS, and GSR 12k Series routers.
• Configure the Cisco IOS XR security features in both owner SDR and non-owner SDRs
• Configure legacy route map configurations using the new Cisco IOS XR Routing Protocol Language (RPL).
• Worked with Juniper Net Screen 500/5200 and also juniper SRX 650/3600.
• Implementation and Configuration (Profiles, I Rules) of F5 Big-IP C2400 load balancers
• Involved in L2/L3 Switching Technology Administration including creating and managing VLANs, Port security, Trunking, STP, Inter-Vlan routing, LAN security.
• Worked on the security levels with RADIUS, TACACS+.
• Completed service requests (i.e. - IP readdressing, bandwidth upgrades, IOS/platform upgrades, etc.)
• Identify, design and implement flexible, responsive, and secure technology services
• Modified internal infrastructure by adding switches to support server farms and added servers to existing DMZ environments to support new and existing application platforms.
• Performed load balancing and application level redundancy by deploying F5 BIG-IP LTM 3900.
• Configured switches with port security and 802.1x for enhancing customer’s security.
• Monitored network for optimum traffic distribution and load balancing using Solar winds.
• Configured HSRP and VLAN trucking 802.1Q, VLAN Routing on Catalyst 6500 switches.
• Optimized performance of the WANnetworkconsisting of Cisco 3550/4500/6500 switches by configuring VLANs.
• Experience with hardware load balancer administration and support, preferably with F5 and CiscoACEload balancers.
• Experience in configuring Load balancers and Riverbed WAN optimizers.
• Configured VLANs with 802.1q tagging. Configured Trunk groups, ether channels, and Spanning tree for creating Access/distribution and core layer switching architecture.
• Monitored and analyzed Intrusion Detection Systems (IDS) & Intrusion Prevention System (IPS) to identify security issues for remediation.

Environment: Fluke and Sniffer, Cisco 6509/3750/3550/3500/2950 switches, checkpoint firewalls(SPLAT). Cisco 2600/2800/3600/3800 routers, Cisco 2950/3700/6500/7613 Switches.

Confidential, NJ

Network Engineer

Responsibilities:

• Configured RIP and EIGRP on 2600, 2900 and 3600series Cisco routers
• Involved in troubleshooting of DNS, DHCP and other IP conflict problems
• Implemented VTP and Trunking protocols (802.1q and ISL) on 3560, 3750 and 4500series Cisco Catalyst switches
• Provided on-call support for installation and troubleshooting of the configuration issues
• Configured Standard, Extended, and Named Access Lists to allow users all over the company to access different applications and blocking others
• Planned and implemented Subnetting, VLSM to conserve IP addresses
• Configured STP for loop prevention and VTP for Inter-VLAN Routing
• Performed troubleshooting of connectivity problems using PING, and Trace route
• Designed VLAN’s and set up both L2 and L3 logical to have it communicate to the Enterprise network.
• Scheduled preventive maintenance for fire-protection systems, including new protocols. Utilize MS Windows, Word, and Excel for reporting/documenting process.
• Satisfactorily Resolved Problems in timely manner with focus on providing a high level of support for all customers.

Environment: Net Flow, TACACS, EIGRP, RIP, OSPF, BGP, VPN, MPLS, CSM, SUP720, Ether Channels, Cisco 7200/3845/3600/2800 routers, Fluke and Sniffer, Cisco 6509/ 3750/3550/3500/2950 switches, Checkpoint firewalls(SPLAT).

Confidential

Jr. Network Engineer

Responsibilities:

• Installing and maintaining Microsoft Exchange and worked extensively on different applications.
• Created network diagram for employees using the Microsoft Visio.
• Preparing Client Machines for users with Operating Systems, Software, antivirus and required utilities and mailing clients etc.
• Primarily responsible in designing and maintaining the budget for the whole network.
• Perform daily maintenance, troubleshooting, configuration, and installation of all network components.
• Configuration of CISCO Routers (3600, 4000 Series) and 3550, 4500 series switches.
• TCP/IP network planning, Implementation and Management with subnets.
• Enabled SNMP traps for our Cacti Monitoring tool to monitor traffic and check the regular health of Servers and Network Devices
• Implementation of Virtual LANs across Routers and Switches.
• Implemented and Configured IP Routing Protocols: OSPF, EIGRP, and RIPv2
• Implemented and configured LAN Protocols: Ethernet, VLANs, VTP and STP.
• Worked with Remedy Ticketing tool in maintaining and keep a track of logs/monitor
• Designed and implemented IP Addressing, Subnetting, Route Summarization and Route Distributions
• Monitoring the Servers and Networks.

Environment: Cisco 7200/3845/3600/2800 routers, TACACS, EIGRP, RIP and Vulnerability Assessment tools like Nessus, Red Hat, Solaris, Juniper VPN's and SSL.