SUMMARY

• Over 7 Years of experience in networking and security, hands on experience in Design, implementation, and support. Routing, switching, firewall technologies, and troubleshooting of complex network systems.
• Experience in installation, configuration, troubleshooting of CISCO routers 2800, 3750, 2900, 7301, 7600, 12410, ASR1k. Catalyst 6509, 4507 and Data center switches like 7k, 5k and 2k of nexus, and Arista 7k.
• Expertise in configuring, troubleshooting network topologies which includes OSPF, BGP, HSRP, VRRP & STP
• Expertise in L3 Protocols: BGP, OSPF, EIGRP, IGRP, RIP, CEF, MPLS, MPLS Layer 3 VPN's, VRF - Lite, and PFR.
• Experience in Implementing Check Point Firewalls NG, NGX, NG R55, NGX 60, NGX R65, R70, R75, R77, Cisco ASA -5500 and 5505 and Palo Alto PA-200, PA-3000 and PA-5000.
• Configuring and troubleshooting IPv6 protocols: OSPFv3, EIGRPv3, Tunneling techniques (GRE, v4tov6 and v6tov4).
• Network Services: NTP, GLBP, WCCP, NAT, DNS, DHCP, DHP snooping and Subnetting.
• Redundancy Technologies: Virtual Scale (CISCO VSS), VCP, Virtual Link Trunking (VLT), VRRP, HSRP.
• Experience with F5 load balancers and Cisco load balancers (CSM, ACE and GSS).
• Basic and advance F5 load balancer configurations, including migrating configurations from Cisco ACE to F5 and general troubleshooting of the F5 load balancers.
• Knowledge of Cisco Call Manager, Call Center, Voice Recording, Audio Conferencing, Unity Voice mail systems, Trader Voice platforms.
• Design, setup and configure complex wireless networking that supports open or secured access and the ability to support voice and video applications.
• Experienced working with Nexus OS, IOS, CATOS and Nexus 7K, 5K & 2K Switches.
• Configured static NAT, dynamic NAT, dynamic NAT overloading.
• Ensure that all system in the domain have McAfee Antivirus Protection Installed.
• Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500/PIX security appliance, Failover DMZ zoning & configuring VLANs/routing/NAT with the firewalls as per the design.
• Remediation of firewall rules from checkpoint firewalls to Cisco ASA firewalls and their implementation.
• Experience on load balancing strategies/techniques, expertise in application switching/traffic management, knowledge of persistence and SSL certificates.
• Basic and advance F5 load balancer configurations, including migrating configurations from Cisco ACE to F5 and general troubleshooting of the F5 load balancers.
• Hands on Knowledge/experience on F5 load balancers, its methods, implementation and troubleshooting on LTMs and GTMs.
• Experience with Blue Coat URL filtering with whitelisting and blacklisting URL, creating rules for content filtering.
• Experience in Configuring and implementing VLAN, VTP domains, LAN switching and STP/RSTP.
• Worked extensively on Palo Alto, Juniper Net screen and SRX Firewalls.
• Working configuration of new VLANs and extension of existing VLANs on/to the necessary equipment to have connectivity between two different data centers.
• Hands-on configuration and experience in setting up Cisco routers to perform functions at the Access, Distribution, and Core layers.
• Administration and diagnostics of LAN and WAN with in-depth knowledge of TCP/IP, NAT, PPP, ISDN and associates network protocols and services.
• Strong knowledge of Cisco and Juniper software (IOS/XR and JunOS) and hardware.
• Experience through Hand-on Experience with configuring T1.5, Gigabit Ethernet, Channelized T3 and full T3, OCX, ATM, Frame-Relay and VOIP (Voice-Over Internet Protocol).
• Strong understanding of VoIP QOS issues and mitigation procedures.
• Configured and managed Nexus 2k fabric extender, 5K and 7K switch network at the client's location.
• In-depth knowledge and experience in WAN technologies including OC3, E3/T3, E1/T1, Point to Point, MPLS and Frame Relay.
• Experience securing and managing remote access using various VPN technologies like IPSec, SSL.
• Experience in configuring and supporting VPN on Cisco VPN concentrators and 2811 routers.
• Responsible for simulating network operations with the usage of packet analyzer like Wire shark, and use to resolve tickets whenever there is an issue.
• Troubleshooting the Juniper SRX100 and 110 series, Juniper Net Screen routers with Site-Site VPN, and firewalls.
• Knowledge in configuring and troubleshooting Cisco Wireless Networks: LWAPP, WLC, WCS, Standalone APs, Roaming, Wireless Security Basics, IEEE 802.11 a/b/g, RF spectrum characteristics.

TECHNICAL SKILLS

Cisco Routers: Nexus 7K, 5K, 2K & 1K, Cisco routers (7600, 7200, 3900, 3600, 2800, 2600, 2500, 1800 series) & Cisco Catalyst switches (6500, 4900, 3750, 3500, 4500, 2900 series) Huawei AR Series Routers

Cisco Switches: 1900, 2900, 3500, 4500, 6500, Nexus 3000/5000/7000 Series, Cisco’s Application Centric Infrastructure (ACI) implementation (Nexus 9K, APIC)

Routing Protocols: IGRP, EIGRP, OSPF, BGPv4, MPBGP, HSRP, IPv6, WLAN, 802.11/e, WEP, POP3 LADP, VRRP, GLBR, LACP

LAN Protocols: VLAN, VTP, Inter-VLAN routing, STP, Domain, HSRP,Trunks

WAN Protocols: HDLC, PPP, MLPPP, ISDN, ATM, Channel & Leased Lines

F5 load balancers: (LTM & GTM) configuration, administration and troubleshooting. Have good experience working on both 9.x, 10.x and 11.x versions, F5 BigIP 1500, 3400 LTM, GTM 5, and F5 3DNS Load balancer GTM

Servers: AD/DC, DHCP, DNS, VPN, NAP, WSUS, Email Server, Software Deployment Server, BHS, GC Server, Windows Deployment Service, Proxy Servers, Print Servers, Application servers, FTP Servers

Network Monitoring: Logic Monitoring (LM), LMS, Cisco Secure ACS, Wireshark, Cisco Prime Infrastructure, SNMP

Security & VPN: PIX 500 Firewall, ASA 5505 Firewall, AIP SSM, CSC, SSM, FWSM, FortiGate, Cisco CSM, ACL-Access Control List, IPS/IDS, NDLP, NAT, PAT, Cisco ACS, and Juniper Netscreen firewall, Windows Patch Management (WSUS).

PROFESSIONAL EXPERIENCE

Confidential, Anaheim, CA

Sr. Network Engineer

Responsibilities:

• Security Device - Palo Alto/ASA Firewalls, Sourcefire IPS/IDS, Cisco Identity Services Engine (ISE), VPN.
• Configured Firewall and updated rules (Palo Alto/Cisco ASA).
• Installation and management of overall administration of LAN, WAN, systems involving design of network layouts, configuration and maintenance, Commissioning Routers & Switches, IPS and ensuring maximum uptime during site deployment to VoIP.
• Configured and maintained IPSEC and SSL VPN's on Palo Alto Firewalls.
• Troubleshooting and operating: Cisco IP telephony(IP phones, CME, CUCM, Billy Blue’s server for IP telephony), Cisco routing and switching, Cisco wireless access points.
• Administered and maintained Cisco VOIP phones utilizing Cisco Call Manager.
• Wireless/VoIP Technologies: 802.11 a/b/g/n, WLAN, WAP, SSID, LWAPP, CSMA/CA, Cisco ACS, VoIP, IP Phone, Catalyst, CUCM, QoS, PoE, CME, CUE, MAC Address Filtering, SIP, RTP, SCCP, SRTP, UCCM, UCCX.
• Performed a variety of LAN administration, network support, troubleshooting, repair, and Maintenance of existing data communication systems, including Cisco CUCM 7.0, CUCM express, and variety VoIP protocols. Including H.323, SIP, SCCP; G 711, G 729 codecs.
• Expert level knowledge on configuring Aruba Mobility controller, Airwave, Aruba Clear pass, Cisco Prime Infrastructure, WCS/NCS, ISE & MSE. Worked extensively configuring Security over Wireless by Implementing Cisco ISE and Aruba Clear Pass at many client locations.
• Managed, operated and analyzed results from Source fire detection systems.
• Experience setting up PCI zone (PCI compliance project).
• Documenting the New Infrastructure information using standard Microsoft Visio templates
• Configured and performed troubleshooting routers and switches.
• Updated routes and ACL (Access Control List).
• Experience with network based F5 Load balancers with software module GTM & Checkpoint.
• Experience with connectivity of Cisco Networking Equipment with F5 Load Balancer.
• Experience with GTM F5 component to provide high availability with providing services across data centers.
• Developed corporate website using Net objects Fusion and various Perl scripts.
• Configuring, Administering and troubleshooting MPLS, Solaris and ASA firewall.
• Hands on experience in Cisco ASA 5505, 5510, 5520, 5540, 5506, 5545-x with firepower, 5550 series firewalls, Cisco Source fire Amp IPS and Cisco ACS.
• Configure and deploy network security i.e. ASA 5508x and support IDS/IPS SourceFire/ Cisco FireSight management.
• Supported networks, which are comprised of 2000+ Cisco devices.
• Supported nationwide LAN infrastructure consisting of Cisco 4510 and catalyst 6513.
• Deployed the switches in high availability configuration with HSRP.
• Configured port-fast, uplink fast and other spanning tree features.
• Support various Series of Cisco Routers like 7200/7600 series.
• Support Complex 0 Series Switches.
• Experience with Using LTM F5 component to provide 24"7 access to applications.
• Troubleshoot network routes and ACLs (Cisco, Juniper).
• Configuring BGP/OSPF routing policies and designs, worked on implementation strategies for the expansion of MPLS, DHCP and VPN networks.
• Work on different networking concepts and routing protocols like BGP, EIGRP, OSPF, VRFS, Tunnels, L2TP, and VPLS and other LAN/WAN technologies.
• Technically supported in configuring, troubleshooting and analysis of customer’s networks related to Cisco Identity Services Engine (ISE).
• Monitored and Optimized network performance.
• Implementing and configuring F5 LTM's for VIP's and Virtual servers as per application and business requirements.
• Involved in improving the Wide area network performance by delivering optimization (WAN optimization) using the Riverbed technology.
• Experience working in DMZ environments with good understanding of hardware load-balancing, firewalls, multi-tiered architectures.
• Implemented Zone Based Firewalling and Security Rules on the Palo Alto Firewall.
• Exposure to wild fire feature of Palo Alto.
• Configuration, Troubleshooting and Maintenance of Palo Alto Firewalls - PA200, PA2000 series, PA3000 series, PA4000 series and PA5000 series.
• Build Site to Site IPsec based VPN Tunnels between various client and business partner sites.
• Manage over 40 checkpoint Firewalls split through multiple CMA's and administer using provider.
• Configured route redistribution between OSPF and EIGRP in a multi-area OSPF network.
• Implemented Hot Standby Router Protocol (HSRP) by tuning parameters like preemption.
• Administer and support Juniper Firewalls Using NSM (Net screen and ISG firewalls).
• Troubleshooting connectivity issues with in the server zones of the Data center (between application servers, database and web servers) as well as user requests and user connectivity issues from various branch locations, office locations and third party sites to data center.
• Performing network monitoring, analysis using various tools like HP Openview, Wireshark, & Solarwinds.
• Actively use, smart view tracker, and Checkpoint CLI (to security gateways) for troubleshooting.
• Perform advanced troubleshooting using Packet tracer and TCP dump on firewalls.
• Worked on the security levels with RADIUS, TACACS+.
• Implement Cisco Secure Access Control Server (ACS) for TACACS+.

Environment: In Corporate office architecture with highly reliable & secured network including Cisco routers (7200, 3800, 2800) and Cisco switches (6500, 3700, 4900, 2900), Arista 7k, Nexus (7K, 5K & 2K) Routing Protocols (EIGRP, OSPF, BGP), Switching protocols (VTP, STP, GLBP, HSRP), Cisco PIX (525, 535), ASA (5505, 5510), TACACS+.

Confidential, Santa Clara, CA

Network Engineer

Responsibilities:

• Troubleshooting several VoIP issues like bandwidth, call quality, one way audio, registration issues and QoS.
• Integrate VoIP with PSTN and setup voice Gateway ensuring QOS for Cisco based Voice over IP and CDR for voice call Accounting.
• Troubleshooting several scenario based and complex networking as well as VoIP related issues.
• Excellent/Advanced understanding of Cisco Collaboration and Unified Communication portfolio: Cisco Unified Communications Manager; Cisco Unity Connection; Cisco Unified Contact Center Express.
• Configured VoIP customers on MEDIACORE VoIP SBC server as well as Multiprotocol Signaling Switch (MSW).
• Administered and maintained Cisco VOIP phones utilizing Cisco Call Manager & Unity supporting more than 500 users.
• Configured IP phones 7911/14/35/36/40/60/70.
• Manage VoIP Cisco Unified Communications Manager (CUCM), end user account operations, end devices, and dial plan operations.
• Wireless/VoIP Technologies: 802.11 a/b/g/n, WLAN, WAP, SSID, LWAPP, CSMA/CA, Cisco ACS, VoIP, IP Phone, Catalyst, CUCM, QoS, PoE, CME, CUE, MAC Address Filtering, SIP, RTP, SCCP, SRTP, UCCM, UCCX.
• Configured different types of dial plans on CallManagers, using MGCP and H323 configurations on various voice gateways.
• Migrated edge Cisco ASA 5545 services to Palo Alto firewalls.
• Configuration, Troubleshooting and Maintenance of Palo Alto Firewalls - PA200, PA2000 series, PA3000 series, PA4000 series and PA5000 series.
• Configured and maintained IPSEC and SSL VPN's on Palo Alto Firewalls.
• Installed Cisco VTC units and managed via Telepresence Management Suite (TMS).
• Maintaining and taking regular backup of several servers including CUCM.
• Worked on 4500 Catalyst switches for the purpose of LAN requirement and for troubleshooting LAN issues.
• Involved in Troubleshooting of DHCP and other IP conflict problems.
• Performing health checks on F5 load balancers and monitoring the status of the application servers.
• Installing upgrades or hotfix to further F5 load balancing versions.
• Configured SNATS on F5 load balancer to solve several routing problems.
• Layout network diagrams using MS Visio and record changes and update NAGIOS monitoring tool.
• Performed Switching Technology Administration including VLANs, inter-VLAN Routing, Trunking, SIP, STP, RSTP and Port Aggregation.
• Deployed a large-scale HSRP solution to improve the uptime of collocation customers, in the event a core router became unreachable.
• Design, implement and maintain UCCX Contact Center scripts and workflows, including troubleshooting and debugging errant scripts.
• Experience with building the New MPLS cloud inside the new data center environment.
• Configured RSTP, LACP and VTP on Nexus devices.
• Network consists of Heavy Cisco equipment such as Cisco 2500, 2600, 3640, 3945, 7200 series Routers, Cisco 6500, 4500, 3560, 2950, 2924 Switches, Cisco Pix firewall 500 series and Wireless Access points Cisco 1230.
• Performed RIP & OSPF Routing Protocol Administration.
• Experience in deploying EIGRP/BGP redistribution and the changing the metrics for the primary and backup paths for the packet prioritization and EIGRP tuning.
• Configuring, Monitoring and Troubleshooting Cisco's ASA 5500/PIX security appliance, Failover DMZ zoning and configuring VLANs/routing/NAT with the firewalls as per the design.
• Involved in Troubleshooting IP Addressing Issues and Updating IOS Images using TFTP.
• Handling network devices such as Switches (Cisco Catalyst 2900 and 3500 series), Routers (Cisco 2600, 2800 and 7200 series), Firewalls, Load balancers etc.
• Design and implementation of multiple Cisco technologies. Cisco ISE, ISR/ASR Routers, Nexus/Catalyst Switches, Firepower, ASA Firewalls, VMware/vSphere.
• Deployed VPLS for DCI for spanning the VLANs across the datacenters to provide support for low latency and critical applications.
• Maintaining Checkpoint security policies including NAT, VPN and Secure Remote access.
• Configuring IPSEC VPN (Site-Site to Remote Access) on SRX series firewalls.
• Experienced working on cisco firewalls - cisco ASA 5520 series and configuring security levels on RADIUS and TACACS+.
• Configured and implemented EAP user based authentication for RADIUS AAA server.
• Maintained Corporate Firewalls & Analysis of firewall logs using various tools. Configured and troubleshooting of HSRP on Cisco routers.
• Engage with ISPs and PSTN providers globally to resolve related issues.
• Packet capturing, troubleshooting on network problems with Wireshark, identifying and fixing problems.
• Understanding of VOIP protocols, standards and codecs such as: SIP, H.323, Q.931, SCCP, RTP, QoS, G.711, G.729, and T.38.
• Designed and configured the commands for QoS and Access Lists for Nexus 7K and 5K.
• Involved in New Branch Network Systems. Resolved Network Issues and Prepared Network Documentation.
• Monitored performance of Network and Servers to identify potential problems and bottleneck.

Environment: Cisco 6500/4500/3560/2950/2924 switches, Cisco 7200/3945/3640/2600/2500 routers, EIGRP, RIP, VTP, RSTP, OSPF, TFTP, VOIP, Nexus 5k and 7k switches.

Confidential, Farmington Hills, MI

Network Engineer

Responsibilities:

• Implementing traffic engineering on top of an existing Multiprotocol Label Switching (MPLS) network using Frame Relay and Open Shortest Path First (OSPF).
• Tuned BGP internal and external peers with manipulation of attributes such as metric, origin and local Preference.
• Cisco Secure Access Control Server (ACS) for Windows to authenticate users that connects to a VPN 3000 Concentrator.
• Wireless/VoIP Technologies: 802.11 a/b/g/n, WLAN, WAP, SSID, LWAPP, CSMA/CA, Cisco ACS, VoIP, IP Phone, Catalyst, CUCM, QoS, PoE, CME, CUE, MAC Address Filtering, SIP, RTP, SCCP, SRTP, UCCM, UCCX.
• Efficient at use of Microsoft Visio/Office as technical documentation and presentation tools.
• Experience with Synchronous Optical Networking (SONET) over optical fiber.
• Involved in Configuring and implementing of Composite Network models consists of Cisco7600, 7200, 3800 series and ASR 9k, GSR 12K routers and Cisco 2950, 3500, 5000, 6500 Series switches.
• Configured networks using routing protocols such as RIP, OSPF, BGP and manipulated routing updates using route-map, distribute list and administrative distance for on-demand Infrastructure.
• Configured OSPF redistribution and authentication with type 3 LSA filtering and to prevent LSA flooding.
• Configured OSPF over frame relay networks for NBMA and point to multipoint strategies.
• Configuring, Installing and troubleshooting on Check Point Devices.
• Policy Building using IDP.
• Worked on FTP, HTTP, DNS, DHCP servers in windows server-client environment with resource allocation to desired Virtual LANs of network.
• Responsible for day to day management of Cisco Devices, Traffic management and monitoring.
• Knowledge on multiplex techniques such as DWDM.
• Troubleshoot and Worked with Security issues related to Cisco ASA/PIX, Checkpoint, IDS/IPS and Juniper NetScreen firewalls.
• Implement and configure Cisco ISE into the enterprise network environment.
• Provided support in building, and troubleshooting wireless networks related to Cisco identity Services Engine (ISE) authentication and authorization.
• Configuring rules and Maintaining Palo Alto Firewalls & Analysis of Firewall logs using various tools.
• Successfully installed Palo Alto PA-3060 Firewalls to protect Data Centre and provided L3 support for routers/switches/Firewalls.
• Provided redundancy in a multi homed Border Gateway Protocol (BGP) network by tunings AS-path.
• Worked on Juniper J series j230, M 320 routers and EX 3200 series switch.
• Implemented Hot Standby Router Protocol (HSRP) by tuning parameters like preemption.
• Implemented various OSPF scenarios on networks consisting of 7600 routers.
• Configured policy based routing for BGP for complex network systems.
• Configured Multiprotocol Label Switching (MPLS) VPN with Routing Information Protocol (RIP) on the customer's Site.

Environment: Cisco 6500/5000/4500/3500/2950 switches, Cisco 7600/7200/3800 routers, EIGRP, RIP, VTP, RSTP, OSPF, TFTP, VOIP, Nexus 5k and 7k switches.

Confidential

Network Engineer

Responsibilities:

• Installation and Configuration of Cisco Catalyst switches 6500, 3750 & 3550 series and configured routing protocol OSPF, EIGRP, BGP with Access Control lists implemented as per Network Design Document and followed the change process as per IT policy It also includes the configuration of port channel between core switches and server distribution switches.
• Router/ Microsoft VPN Server in order to access certain limited network resources from customer locations.
• Involved in the redistribution into OSPF on the core ASA firewall.
• Involved in the removal of EIGRP from all devices and making OSPF the primary routing protocol.
• Performed RIP and OSPF routing protocol administration.
• Supporting EIGRP and BGP based company network by resolving level 2 & 3 problems of internal teams and external customers of all locations.
• Cisco Secure Access Control Server (ACS) for Windows to authenticate users that connects to a VPN 3000 Concentrator.
• Responsible for turning up BGP peering and customer sessions, as well as debugging BGP routing problems.
• Designing and Implementation of (LAN) VLANs, VTP, Spanning Tree (STP), Trunking (dot1q and ISL) and Ether channel.
• Configuring ACL on ISE for making policies.
• Responsible in troubleshooting on Cisco ISE added new devices on network based on policies on ISE.
• Key contributions include troubleshooting of complex LAN/WAN infrastructure that include routing protocols EIGRP, OSPF & BGP.
• Scripting experience with Perl.
• Configured networks using routing protocols such as RIP, OSPF, BGP and manipulated routing updates using route-map, distribute list and administrative distance for on-demand Infrastructure.
• Implemented Hot Standby Router Protocol (HSRP) by tuning parameters like preemption.
• Worked on FTP, HTTP, DNS, DHCP servers in windows server-client environment with resource allocation to desired Virtual LANs of network.
• Responsible for day to day management of Cisco Devices, Traffic management and monitoring.
• Experience in HSRP standby troubleshooting & Experience in configuring & upgrading of Cisco IOS.
• Installation, Configuration and troubleshooting Cisco switches and Firewall on multi-mode context based environments.
• Implemented various OSPF scenarios on networks consisting of 7600 routers.
• Configured policy based routing for BGP for complex network systems.
• Configured Multiprotocol Label Switching (MPLS) VPN with Routing Information Protocol (RIP) on the customer's Site.

Environment: CISCO routers and switches, Routing (RIP, OSPF, EIGRP, BGP), Access Control Server, VLAN, Trunk Protocols, STP, Ether-channel, Cisco ASA Firewall, Server environments (DHCP, DNS)

Confidential

Responsibilities:

• Configuring and troubleshooting multi-customer ISP network environment.
• Involved in network monitoring, alarm notification and acknowledgement.
• Implementing new/changing existing data networks for various projects as per the requirement.
• Troubleshooting complex networks layer 1, 2(frame relay, ATM, Point to Point, ISDN) to layer 3 (routing with BGP, EIGRP, OSPF and RIP protocols) technical issues.
• Working on creating new load balancing policies by employing BGP attributes including Local Preference, AS-Path, and Community, MED.
• Installing and maintaining Windows NT Workstations and Windows NT Server.
• Providing technical support to LAN & WAN systems.
• Monitoring performance of network and servers to identify potential problems.
• Performing RIP, OSPF, BGP, EIGRP routing protocol administration.
• Preparing feasibility report for various upgrades and installations.
• Other responsibilities included documentation and support other teams.

Environment: LAN & WAN, frame relay, ATM, Point to Point, ISDN, Windows NT Workstations, NT servers, RIP, OSPF, BGP, and EIGRP.