SUMMARY

• Routing, switching, firewall technologies, system design, implementation and troubleshooting of complex network systems.
• CCNA CCNP CERTIFIED professional with over 8 years of experience in experience in network design, implementation, and support.
• Experience working with Nexus 7K, 5K and 2K.
• Experience in site - to-site and remote access VPN solutions.
• Worked on network topologies and configurations, TCP/IP, UDP, Frame Relay, ATM, bridges, routers, hubs and switches.
• Configured Cisco Catalyst 6500, 4500, 3850, 3750, 2960 switches and Cisco 3600, 7200 &ASR1K &9kRouters for an enterprisenetwork.
• Worked on Juniper Net screen Firewalls like, NS50, SSG 550M, SSG520M, ISG 1000, and ISG 200.
• Knowledge of implementing and troubleshooting complex L2/L3 technologies such as VLAN Trunks, VTP Ether channel, STP, RSTP, MPLS and MST.
• Implementation of Juniper Firewall, SSG Series, Net screen Series ISG 1000, SRX Series.
• In-depth knowledge and experience in WAN technologies including OC3, E3/T3, E1/T1, Point to Point, MPLS and Frame Relay
• Experience in Configuring and implementing VLAN, VTP domains, LAN switching and STP/RSTP
• Experience in QOS on multicast VPN
• Experience on Wide area application services
• Experience in Cisco: Physical cabling, IP addressing, Wide Area Network configurations (Frame-relay & MPLS), Routing protocol configurations (RIP, EIGRP, OSPF, BGP)
• Proficiency in configuration of VLAN setup on various CISCO Routers and Switches.
• Hands-on configuration and experience in setting up Cisco routers to perform functions at the Access, Distribution, and Core layers.
• Knowledge of implementing and troubleshooting complex layer 2 technologies such as VLAN Trunks, VTP Ether channel, STP, RSTP and MST.
• Extensive hand on experience with complex routed LAN networks, CISCO Routers and Switches.
• Working configuration of new VLANs and extension of existing VLANs on/to the necessary equipment to has connectivity between two different data centers.
• Experience working in Cloud infrastructure with VMware ESXi Server platforms for application servers. Network Configuration for server apps and app migrations support
• In-depth expertise in the analysis, implementation, troubleshooting & documentation of LAN/WAN architecture and good experience on IP services.
• Experience through Hand-on Experience with configuring T1.5, Gigabit Ethernet, Channelized T3 and full T3, OCX, ATM, Frame-Relay and VOIP (Voice-Over Internet Protocol).
• Experience with Change management process and Project documentation tools like Excel and VISIO.
• Experienced working on network monitoring and analysis tools like, SOLAR WINDS, CISCO works and RIVER BED and Wireshark. Extensive experience in configuring and troubleshooting of protocols RIP v1/v2, EIGRP, OSPF, BGP and MPLS.
• Well experienced in configuring HSRP, GLBP, ICMP, PPP, PAP, CHAP and SNMP.
• Excellent communication skills, enthusiastic, motivated and a team player.
• Experience in installing and configuring DNS, DHCP server...

TECHNICAL SKILLS

Routers: Cisco 17XX, 18XX, 26XX, 28XX, 37XX, 38XX, 39XX &72XX series & . ASR1K &9Kseries.

Switches: Cisco 3550, 3750, 45XX, 65XX series, Nexus 7K, 5K, 2K

Load Balancer: Cisco CSS, F5 Networks

WAN Optimization: Cisco WAAS, PPP Multilink

Routing: OSPF, EIGRP, BGP, RIP-2, PBR, Route Filtering, Redistribution, Summarization, Static Routing.

Switching: VLAN, VTP, STP, PVST+, RPVST+, Inter VLAN routing &Multi-Layer Switching, Multicast operations, Layer 3 Switches, Ether channels, Transparent Bridging

LAN: Ethernet, Fast Ethernet, Gigabit Ethernet, FDDI, CDDI, Token Ring, ATM LAN Emulation

WAN: Leased lines 64k - 155Mb (PPP / HDLC), Channelized links (E1/T1/E3/T3), Fiber Optic Circuits, Frame Relay, ISDN, and Load Balancing.

Various Features & Services: IOS and Features, HSRP, GLBP, IRDP, NAT, SNMP, SYSLOG, NTP, DHCP, CDP, DNS, TFTP and FTP Management.

IP Telephony: IP Telephony utilizing Cisco routers, FXO/FXS/E&M/T1/ISDN/ PRI, Call manager (publisher & subscriber).

AAA Architecture: TACACS+, RADIUS, Cisco ACS.

Security / Firewalls: Cisco ASA Firewalls 55XX, IPSEC & SSL VPNs, IPS/IDS, DMZ Setup, CBAC, Cisco NAC, ACL, IOS Firewall features, IOS Setup & Security Features

Juniper: EX-2200, EX-4200, EX-4500, MX-480, M Series, SRX210, SRX240

PROFESSIONAL EXPERIENCE

Confidential, WI

Sr. Network Engineer

Responsibilities:

• Experience working with Nexus 7018/7010, 5020, 5548, 2148, 2248 devices
• Experience working with OTV & FCOE on the nexus between the datacenters
• Experience with configuring Nexus2000 Fabric Extender (FEX) which acts as a remote line card (module) for the Nexus5000
• Hands on Experience testing iRules using Browser(IE), HTTP watch
• Convert Campus WAN links from point to point to MPLS and to convert encryption from IPsec/GRE to GetVPN.
• Conversions to BGP WAN routing. Which will be to convert WAN routing from OSPF to BGP (OSPF is used for local routing only) which involves new wan links.
• Implement and configured GLBP (on core switching and also for VPN redundancy), HSRP on different location of office on the switched network and managing the entire multilayer switched network
• Bridged independent Infini Band and Ethernetnetworksusing VPI technology to fixActiveDirectory routing issue.
• Troubleshooting and installing of CRS, ISR, GSR, ASR9000 and Nexus devices.
• Engineering the configurations for the different branches, campus locations
• Configure LTM system/F5Loadbalancers
• Configuration changes toF5GTM devices
• Configure, monitor, and repair ofActiveDirectorydomains Analyzed user needs and recommended appropriate hardware.
• Worked on the redistribution of connected routes on all OSPF devices so dat all connected subnets are advertised via OSPF
• Configured IPSEC VPN tunnels betweenCheckpointand other non-Checkpointendpoint devices using IKE preshared keys, 3DES and MD5
• Troubleshooting and implementing Monitors and I rules onf5equipment
• Responsible for Cisco ASA firewall administration across our global networks
• Key contributions include troubleshooting of complex LAN/WAN infrastructure dat include routing protocols EIGRP, OSPF & BGP
• Involved in the redistribution into OSPF on the core ASA firewall.
• Involved in the removal of EIGRP from all devices and making OSPF the primary routing protocol.
• Involved in the modification and removal of BGP from the MPLS routers.
• Worked on Orion for analysis and monitoring purposes
• Also prepared documentation for various Vlans and Voice subnetworks and worked on Visio for the same.
• Replace branch hardware with new 2851 routers and 2960 switches.
• Responsible for layer 2 securities which was implemented using a dedicated VLAN ID for all trunk ports, setting the user ports to non-trunking, deployed port security when possible for user ports
• Enabled STP attack mitigation (BPDU Guard, Root Guard), using MD5 autantication for VTP, disabling all unused ports and putting them in unused VLAN and ensuring DHCP attack prevention where needed
• Performed basic security audit of perimeter routers, identifying missing ACL’s, writing and applying ACL’s
• Experience with convert PIX rules over to the Cisco ASA solution.

Confidential, Charlotte, NC

Network Engineer

Responsibilities:

• Configuring, Maintaining the Routers and Switches and Implementation of RIP, EIGRP, OSPF, BGP routing protocols and troubleshooting Remote infrastructure management of offices in different locations nationwide.
• Installing, Configuring and troubleshooting Cisco Routers (ASR1002X, 1006, 3945, 3845, 2800, 3600, 9001) and Switches to perform functions at the Access, Distribution, and Core layers.
• Troubleshooting and escalation management of day-to-day issues for offices. Managing Co-location and Datacenter infrastructure in North America.
• Experience with Project data and voice documentation tools & experience with developing network design documentation and presentations using VISIO
• Security policy review and configuration in Palo Alto and Junipers Firewall in US offices and Datacenter. Designed and configured of OSPF, BGP on Juniper Routers and SRX Firewalls.
• Analyzed customer application and bandwidth requirements, ordered hardware and circuits, and built cost TEMPeffective network solutions to accommodate customer requirements and project scope
• Installing, configuring, and maintaining Cisco Switches (2900, 3500, 7600, 3700 series, 6500 series) Cisco Routers (4800, 3800, 3600, 2800, 2600, 2900, 1800, 1700, 800) & ASR 1K & 9K series.
• Built site-to-site IPsec VPNs over Frame-relay & MPLS circuits on various models of Cisco routers to facilitate adding new business partners to new and existing infrastructures.
• Configured RIP, PPP, BGP and OSPF routing.
• Removed cisco 3600 and 2600 series routers and cisco 2900 series switches from the current infrastructure and replaced them with the cisco 6509 or 3560L2/L3switches.
• Work with Load Balancing team to build connectivity to production and disaster recovery servers through F5 Big IP LTM load balancers.
• Data center migration was involved in Access, Distribution and Core layers
• Involved in the configuration & troubleshooting of routing protocols: MP-BGP, OSPF, LDP, EIGRP, RIP, BGP v4. Configured IP access filter policies.
• Experience with design and implementation of Data center migration.
• Expert in configuring Cisco Routers, Catalyst Switches, Nexus Switches.
• Upgrade Cisco 6500, 3750, 2960s, Nexus 5000, Nexus 2000, Nexus 7000 switch IOS software
• Worked extensively with Nexus 7000, 5000, 2000, Cisco 6500 series multilayer switches, Cisco 2960s series switches and Cisco 3560/3750s switches
• Identify, design and implement flexible, responsive, and secure technology services
• Implemented Positive Enforcement Model with the halp of Palo Alto Networks.
• Innovated with support of Palo Alto for remote and mobile users and for analyzing files for malware in a separate (cloud-based) process dat does not impact stream processing.
• Establish AWS technical credibility with customers and external parties
• Help customers build scalable, resilient, and high-performance applications and services on AWS
• Develop/capture/document architectural best practices for building systems on AWS
• Release management of all significant public EC2 launches
• Managed complex wireless network strategies and imparted support to operational wireless computer networks.
• Maintained wireless IPS infrastructure and coordinated with management, customers and peers regarding wireless network innovations.
• Offered users with wireless network technical support and handled indoor and outdoor site surveys.
• Experience with Firewall Administration, Rule Analysis, Rule Modification
• Deployed the switches in high availability configuration with HSRP.
• Configured udld, port-fast, uplink fast and other spanning tree features.
• Monitored network for optimum traffic distribution and load balancing using Solar winds.
• Implemented security measures to keep networks running and secure. Configured extended ACLs to filter traffic and gave restricted access to certain users.
• Supervised call center and technician routine maintenance and up-gradation of network device.
• Creating and provisioning Juniper SRX firewall policies.
• Provided network and workstation support.
• Responsible for developing and maintaining online documentation and resources pertaining to wireless network
• Practice network asset management, including maintenance of network component inventory and related ocumentation and technical specifications information.
• Interfaced with customers and senior management for problem resolution and project planning.
• Ensure network connectivity of all servers, workstations, telephony equipment, fax machines, and other network appliances
• Create and maintain documentation and Visio diagrams as it relates to network configuration, network mapping, processes, and service records.
• Oversee new and existing equipment, hardware, and software upgrades.

Confidential, Clearwater, FL

Network/Firewall Administrator

Responsibilities:

• Responsible for installation, troubleshooting of firewalls (Cisco firewalls, Imperva Web app Firewalls, Checkpoint firewalls and Juniper firewalls,) and related software, and LAN/WAN protocols
• Administering multiple Firewall of Juniper/NetScreen, in a managed distributed environment. Fulfilling routine change requests of Net Screen OS Firewall and resolving trouble tickets, maintain and monitoring firewalls using scanning software Nesses
• Knowledge of Juniper environment including SRX/Junos Space
• Hands on experience on all software blades of checkpoint firewall
• Configuring VPN, clustering and ISP redundancy in Checkpoint firewall
• Configuring, maintaining and troubleshooting IPS and IPS-1 in Checkpoint
• Configured redundant interfaces, DHCP server, DHCP relay, ntp settings, and sub interfaces on firewalls
• Networking technology includes routers, switches (L2/3), wireless, load balancers, firewalls, VPNs, wan acceleration, ACS, Cisco Works, IPAM, DNS, MPLS, IPsec tunnels, UCM, UCCE/X andUnity
• Built and support VRRP / Cluster based HA of Checkpoint firewalls
• Perform Checkpoint and PIX firewall/IDS design, integration and implementation for Cyber Trap client networks
• Perform QA Checks on block point builds of SPLAT and GAiA Checkpoint Firewalls running on HP Proliant Servers
• K2Responsible for installation, troubleshooting of firewalls (Imperva Web app Firewalls, Checkpoint firewalls) and related software, and LAN/WAN protocols.
• Responsible for the implementation, documentation, and day-to-day support of the Imperva Database Firewall
• Perform advanced troubleshooting using Packet tracer and tcpdump on firewalls
• Configuring VLAN, Spanning tree, VSTP, SNMP on Juniper EX series switches
• Implement changes on switches, routers, load balancers (F5 and CSS), wireless devices per engineers instructions and troubleshooting any related issues
• Installed and monitored performance of wired and wireless networks to maximize operations.
• Troubleshooting the VPN tunnels by analyzing the debug logs and packet captures
• Automation of security operations and optimizing the usage of infrastructure
• Configuring and testing Multicast for both IPv4 and IPv6 routing in Data Center Environment
• Configuration of SSL VPN through access blade and up-gradation of Firewall
• Participated in Pfizer Legacy Data Center Network Infrastructure Transition and Disaster Recovery Center transition for various locations
• Works closely with Customers in determining the business needs for a Project and build Detail design which includes Data Flow diagram, Logical and Physical Diagram
• Planning, designing and implementing a secure ODC Network setup for upcoming projects

Confidential, Pataskala, OH

Network Engineer

Responsibilities:

• Configuring various advanced features (Profiles, monitors, iRules, Redundancy, SSL Termination, Persistence, SNATs, HA on F5 BIGIP appliances SSL termination and initiation, Persistence, Digital Certificates, Executed various migration/upgrade projects across F5 and hands on with F5 BIGIP LTMs/EM.
• Experience working in Cloud infrastructure with VMware ESXi Server platforms for application servers. Network Configuration for server apps and app migrations support.
• Experience with convert Checkpoint VPN rules over to the Cisco ASA solution. Migration with Cisco ASA VPN experience
• Implementation, configuration and support of Checkpoint and ASA firewalls for multiple clients
• Implemented and troubleshooting the Virtual firewalls (Contexts) solutions in ASA
• Regular upgrade and maintenance of Infrastructure, Installing, configuring, and maintaining Cisco Switches (2900, 3500, 7600, 3700 series, 6500 series) Cisco Routers (4800, 3800, 3600, 2800, 2600, 2900, 1800, 1700, 800) & ASR 1K & 9K Cisco Router and Switches, Juniper Routers and Firewalls, Nexus 7k,5k & 2k, f5 BIG IP, Palo Alto Firewalls, BlueCoat Proxy and Riverbed Steelhead appliances
• Hands on Experience in Configuring L2 and L3 security features on devices
• Configuring various BGP attributes such as Local Preference, MED, Extended Communities, Route-Reflector clusters, Route-maps and route policy implementation.
• Worked extensively in Configuring, Monitoring and Troubleshooting Juniper security appliance, Failover DMZ zoning & configuring VLANs/routing/NATing with the firewalls as per the design.
• Convert Branch WAN links from TDM circuits to MPLS and to convert encryption from IPSec/GRE to GetVPN.
• Rebuilding data centers and redundant sites for failover, F5 load balancers
• Migrated, created, and managed pools and clusters in F5 BigIP GTM 3DNS load balancers across multiple Datacenters.
• Converting CatOS to Cisco IOS Config Conversion on distribution layer switches
• Conversions to BGP WAN routing. Which will be to convert WAN routing from OSPF to BGP (OSPF is used for local routing only) which involves new wan links.
• Involved in Configuration of Access lists (ACL) on Juniper and Palo Alto firewall for the proper network routing for the B2Bnetwork connectivity.
• Switching technologies like VLAN, Inter-VLAN Routing, Ether-channel, VTP, MLS, HSRP, VRRP,
• Planning, Designing and assisting in deploying enterprise wide Network Security and High Availability Solutions for ASA.
• UDLD, Spanning Tree Protocol 802.1d, 802.1s and 802.1w.
• Understanding of mobile backhaul network on IP, Ethernet, ATM, PW & TDM.
• Experience of IP/MPLS/Optical Transmission network for access transport & back haul network to facilitate 2/3/4G Network.
• Worked extensively in Configuring, Monitoring and Troubleshooting Juniper security appliance, Failover DMZ zoning & configuring VLANs/routing/NATing with the firewalls as per the design.
• Troubleshooting and management Cisco, Juniper, Huawei, Redback and Extreme devices.
• Understanding of 2/3G services and traffic flow.
• Troubleshooting and management of NetScreen and SRX Firewalls.

Confidential, Dallas, TX.

Network Specialist

Responsibilities:

• Actively participated and completed many projects based on MPLS VPN, Internet Solutions for corporate customers
• Backbone.
• Actively participated Implementation and customization of customer network.
• Hands on experience working on Cisco 7600, 12K, ASR routers & Juniper MX series and Juniper BRAS.
• Designing, Provisioning and Installation of the Customer Sites in Oracle IPSA for MPLS Backbone.
• Configuration and troubleshooting of many link types i.e. SONET Controllers for sub E1/T1, E3/T3 and
• POS controllers for STM1 links.
• DNS Zone administration for 13 countries across EU for COLT customers.
• Implementation and testing of ISDN BRI/PRI circuits.
• Migrated Vlans from ASA (perimeter firewalls) to FWSM’s for better security management
• Responsible to troubleshoot the connectivity between CPE router and the COLT's edge router (SAR).
• Worked closely with RIR(Regional Internet Registry) to procure PI(Provider Independent) and PA(Provider
• Responsible for troubleshooting complex networking issues in service provider MPLS & internet
• Aggregately) IP addresses and AS numbers for COLT and customers.
• Set up DNS Reverse Delegation according to RIPE rules in RIPE Database.