Sr. Network Engineer (implementation/deployment) Resume
NC
SUMMARY: -
- 8+ years of experience in Routing, Switching and Firewall Security, including hands-on experience in providing network support, installation and analysis for a broad range of LAN / WAN/MAN communication systems.
- Strong knowledge in Cisco Routing, Switching and Security with Cisco hardware/software (heavy Cisco shop) experience.
- Profound knowledge on various WAN technologies like E1/T1/E3/T3, HDLC, Frame-Relay and PPP.
- Experience in managing security policies with CSM, integrated with ASA 5500 devices.
- Strong Knowledge in WAN technologies including T1,T3, ISDN, HDLC, Point to Point, ATM and Frame Relay.
- Experience in Cisco: Physical cabling, IP addressing, Wide Area Network configurations (Frame-relay & MPLS), Routing protocol configurations (RIP, EIGRP, OSPF, BGP).
- Experience in working with IPSEC Site to Site, Remote VPN using different encryption methods.
- Experience in Configuring dns and dhcp servers.
- Configured and managed Nexus 2k fabric extender, 5K and 7K switch network at the client’s location.
- Experienced working on network monitoring and analysis tools like SOLAR WINDS, CISCO works and RIVER BED and Wireshark.
- Expertise in implementing, maintaining and troubleshooting L2 switching tasks such as VLANs, VTP, VLAN Trunking using ISL and 802.1Q, STP, RSTP, PVST+, Ether channel using LACP and PAgP, Inter-Vlan routing.
- Exposure to LAN/WAN setup, installation, configuration and troubleshooting.
- Allocated subnets to vlans as per the business requirement. Configured vlans and vtp protocols.
- Installation, Configuration and Maintenance of Samba, Apache Tomcat, Web Sphere and Linux environment.
- Experience of routing protocols like EIGRP, OSPF, RIP, and BGP, MPLS.
- Experienced in Troubleshooting for connectivity and hardware problems on Cisco Networks.
- Extensive knowledge in implementing and configuring F5 Big-IP LTM-3900, and 6900 Load balancers.
- Designing and implementing F5 BIG-IP load balancer.
- Worked on network topologies and configurations, TCP/IP, UDP, Frame Relay, Token ring, ATM, bridges, routers, hubs and Switches.
- Performed security operations on ASA firewalls.
- Configuration and management of Cisco IDS, Checkpoint firewall,Snort.
- Performed deep packet analysis to troubleshoot application issues using tools like Wire-shark.
- Experience in installing, configuring and troubleshooting of Checkpoint Firewall and Juniper SSG series.
- Experience in L2/L3 3 protocols like VLANS, STP, VTP, MPLS and Trunking protocols.
- Well Experienced in configuring protocols HSRP, GLBP, VRRP, ICMP, IGMP, PPP, PAP, CHAP, and SNMP. Configured RIP, EIGRP, OSPF.
- Experience in installing and configuring DNS, DHCP server.
- Good knowledge in WAN Technologies like ACL, NAT and PAT, IPSec and VPNs.
- Worked in OSI model, TCP/IP, UDP, IP addressing and Sub netting.
- Experienced with Jes2 andMVScommands
- Hands-on experience in the setup of HSRP, ACL, and tunnel installations.
- Enhanced level of knowledge with IGRP, PPP, ATM, and T1/T3 Frame-Relay.
- Extensive knowledge in different networking protocols DHCP, DNS, FTP, VOIP (SIP, H.323, MGCP), Quality of Service (QOS).
- Demonstrated success record in: Managing multiple tasks with proven ability to meet deadlines and proactively identifying the problem to solve complex technical issues.
- Highly enthusiastic, creative team player, project implementation, analytical, interpersonal and communication skills.
- Novellnetworkwith 5 NetWare 3\4 Servers, 250 PC & 1 Windows NT4 server.
- Experience in Physical cabling, IP addressing, configuring and supporting TCP/IP.
- Worked on Extensively on Cisco Firewall & ASA 5500(5510/5540) Series. Efficient at use of Microsoft VISIO/Office as technical documentation and presentation tools.
TECHNICAL SKILLS
Network Configuration: Advanced switch/router configuration (Cisco IOS access list, Route redistribution/propagation).
Cisco Routers: Cisco GSR 12416, 12418, Cisco 7200vxr, Cisco 3640, Cisco 3600
Redundancy and management: HSRP, RPR, NSF/NSR
Physical interfaces: Fast Ethernet, Gigabit Ethernet, Serial, HSSI, Sonet (POS)
Layer 2 technology: VLAN, VTP, VMPS, ISL, dot1q, DTP, Spanning-tree, PVST
Layer 3 Switching: CEF, MLS, Ether Channel
QOS: CBWFQ, LLQ, WRED, Policing/Shaping.
Switches: Catalyst 6500, MSFC, MSFC2, 7600, 3700, 3500
Routing Protocols: IGRP, EIGRP, OSPF, BGPv4, MP-BGP,RIP
Network Security: Cisco ASA 5540, ACL, IPSEC,F5 Load Balancer, Checkpoint
Juniper Platforms: SRX, MX, EX Series Routers and Switches
Load Balancer: F5 Networks (Big-IP) LTM 8900 and 6400. Version 10,11,12.
WAN Protocols: HDLC, PPP, MLPPP
Circuit switched WAN: T1/E1 - T3/E3/OCX (Channelized, Fractional & full).
Packet Switched WAN: ATM, FRAME RELAY, MPLS VPNs
Security Technologies: Cisco FWSM/PIX/ASDM, Juniper SRX, Cisco ASA, Checkpoint.
Operating Systems: Microsoft XP/Vista/7, UNIX, Linux (Redhat, Opens use, Fedora), Windows Servers 2003/2008, Windows MS-Office.
PROFESSIONAL EXPERIENCE:-
Confidential, Charlotte, NC
Sr. Network Engineer (Implementation/Deployment)
Key Responsibilities:
- Configured Routing protocols such as RIP, OSPF, EIGRP, static routing and policy based routing.
- Team member of Configuration ofCisco7206 router with VPN and Configuration of Catalyst switches.
- Configuration 7500, 7200 with OSPF and catalyst 6505, 4500, 3550 switches with various VLAN.
- Create and testCisco router and switching operations using OSPF routing protocol, ASA 5500 Firewalls, and MPLS switching for stable VPNs.
- Troubleshooting the Network Routing protocols (BGP, EIGRP and RIP) during the Migrations and new client connections.
- Configuration and troubleshooting link state protocols like OSPF in single area and multiple areas.
- Redesign of Internet connectivity infrastructure for meeting bandwidth requirements.
- Configured and managed VLANs, 802.1Q Trunk, RPVST+, Inter-VLAN routing, HSRP and LAN security for Layer-2 and Layer-3 switching domains as per the organization's requirement plan.
- Optimized performance of the WANnetworkconsisting of Cisco 3550/4500/6500 switches by configuring VLANs.
- Setup NFS and Samba File sharing on Linux and Windows servers.
- Configured VLANs with 802.1q tagging. Configured Trunk groups, ether channels, and Spanning tree for creating Access/distribution and core layer switching architecture.
- Configured BPDU Guard, port-fast, uplink fast and other spanning tree features.
- Configuration and troubleshooting of Cisco 2500, 2600, 3000, 6500, 7500, 7200 Series routers.
- Strong working knowledge of Nexus 5K/7K /2K.
- Experience working with Nexus 7010, 5020, 2148, 2248 switches.
- Implementation and configuration of F5 Big-IP LTM-6400 load balancers
- Installation and administration of Checkpoint R 75.40 Firewall.
- Implemented firewall policy change on the Checkpoint clusters
- Verified and Validated the Firewall policy on Checkpoint R75 clusters for unused rule and helped consolidating rule
- Deploying Layer 2 security in Server Farms by configuring switch for 802.1x port based authentication.
- Implemented, configured BGP WAN routing, converting OSPF routes to BGP (OSPF in local routing).
- Technical assistance for LAN/WAN management and complex customer issues.
- Provided support for troubleshooting and resolving Customer and user reported issues.
- Worked with Network Engineer’s in the installation and configuration of firewalls.
- Performed route redistribution & manipulated route updates using distribute lists, route-maps & administrative distance, offset-lists.
- Involved setting up the TFTP server for backing up the IOS images and configuration files of Cisco Routers and Switches and troubleshooting the file servers.
- Upgrades, installs, configuration and administration security and monitoring tools on Linux.
- Excellent in patches and packages installation on Linux/Unix Environment.
- Responsible for network evaluations, troubleshooting a variety of network problems, and implementing various software and hardware upgrades efficient performance.
- Designed and implemented DMZ for Web servers, Mail servers & FTP Servers using Cisco ASA5500 Firewalls.
- Generating RCA (Root Cause Analysis) for critical issues of layer1/layer2/layer3 problems.
- Provided redundancy to the network, implemented hot standby routing protocol (HSRP) and Load sharing for effective utilization of routers.
- Configuring, implementing and troubleshooting VLAN’s, VTP, STP, Trunking, Ether channels.
- Involved in monitoringnetworktraffic and its diagnosis using performance tools likeSnort.
- Expertise in maintenance of layer2 switching tasks which advocate VLAN, VTP, STP, RSTP, PVST, RPVST, configuring of ether channel with LACP and PAGP along with troubleshooting of inter-VLAN routing.
- Packet capturing, troubleshooting on network problems with Wireshark, identifying and fixing problems
- Implementing, configuring, and troubleshooting various routing protocols like RIP, EIGRP, OSPF, and BGP etc.
- Performing network monitoring, providing analysis using various tools like Wireshark, Solarwinds etc.
- Cisco ASA/Checkpoint Firewall troubleshooting and policy change requests for new IP segments that either come on line or that may have been altered during various planned network changes on the network.
- Responsible for Cisco ASA 5500 firewall administration, Rule Analysis, Rule Modification.
- Generating RCA (Root Cause Analysis) for critical issues of layer1/layer2/layer3 problems.
Environment: Nexus 2K/5K/7K,F5 Big-IP LTM-6400 load balancer, Checkpoint R75,Cisco ASA 5500 LAN,WAN,HSRP,RIP,OSPF,BGP,EIGRP,VLAN,MPLS,STP,RSTP.
Confidential, Phoenix, AZ
Sr. Network Design Engineer
Key Responsibilities:
- Working with Network Design and implementation teams on various projects across North America and South America.
- Experience with manipulating various BGP attributes such as Local Preference, MED, Extended Communities, Route-Reflector clusters, Route-maps and route policy implementation.
- Experience with design and implementation of Data center migration
- Deploying and decommission of VLANs on core ASR 9K, Nexus 7K, 5K and its downstream devices.
- Performed OSPF, BGP, DHCP Profile, HSRP, IPV6, IPV4 Bundle Ethernet implementation on ASR 9K redundant pair.
- Configured CIDR IP RIP, PPP, BGP, MPLS and OSPF routing.
- Assisted in MPLS migrations, implemented a backup for the existing WAN connection using site-to-site IP sec VPN tunnels.
- Configuring and installing 6500, 4500 in Campus networks.
- Experience with WCS predictive maps and RF Engineering Planning.
- Switches Replace branch hardware with new 2851 routers and 2960 switches.
- Conversions to BGP WAN routing. Which will be to convert WAN routing from OSPF to BGP (OSPF is used for local routing only) which involves new wan links.
- Convert Branch WAN links from TDM circuits to MPLS and to convert encryption from IPSec/GRE to GetVPN.
- Lead Engineer for Network refresh project for Multinational insurance company. Providing remote assistance for replacing exiting switches with new Cisco switches.
- Configuring routing protocols OSPF, EIGRP,RIP, MPBGP, LDP and BGPV4
- Configuring HSRP between VLANs, Configuring Ether-Channels, Port Channel on 6500 catalyst
- Build Logical design and Implementation of Wireless Solution
- Worked on F5 LTM, GTM series like 6400, 6800, 8800 for the corporate applications and their availability
- Involved in the configuration & troubleshooting of routing protocols: MP-BGP, OSPF, LDP, EIGRP, RIP, BGP v4. Configured IP access filter policies.
- Deploying and decommissioning Cisco switches and their respective software upgrades.
- Performing the ACL requests change for various clients by collecting source and destination information from them.
- Maintained complex LAN/WAN networks with several VLANS and provided support for routing protocols and also providing secure sessions over internet using IPSec and SSL encryption.
- Worked extensively on Cisco ASA 5500(5510/5540) Series, experience with convert PIX rules over to the Cisco ASA solution.
- Supporting EIGRP and BGP based on the network by resolving level 2 & 3 problems of internal teams & external customers of all locations
- Performing troubleshooting on slow network connectivity issues, routing issues that involves OSPF, BGP and identifying the root cause of the issues.
- Worked on migration of existing PIX firewall to ASA firewall, PIX OS upgrade from 6.3 to 7.0.
- Design and Implement DMZ for FTP, Web and Mail Servers with CISCO PIX 506, PIX515
- Building the VPN tunnel and VPN encryption.
- Involved in Configuration of Access lists (ACL) on ASA firewall for the proper network routing for the B2Bnetwork connectivity.
- To secure configurations of load balancing in F5, SSL/VPN connections, Troubleshooting CISCO ASA firewalls, and related network security measures.
- Provided proactive threat defense with ASA that stops attacks before they spread through the network.
- Designed and implemented DMZ for Web servers, Mail servers & FTP Servers using Cisco ASA5500 Firewalls.
- Troubleshoot the Network Issues onsite and remotely depending on the severity of the issues.
- Performed Break Fix support through driving to different buildings, identifying the root cause of the hardware issues with switches, routers.
- Design, implementation and operational support of routing/switching protocols in complex environments including BGP, OSPF, EIGRP, Spanning Tree, 802.1q, etc.
- Worked with creating VIP (virtual servers), pools, nodes and applying iRules for the virtual servers like cookie persistency, redirection of the URL.
- Created Visio Dean / Visio Documentation to give complete picture of network design for each building.
- Experience in Configuring, upgrading and verifying the NX-OS operation system.
VMWARE, Atlanta, GA
Network Security Engineer
Key Responsibilities:
- Migrated Firewall infrastructure from Check Point R65 to Netscreen ISG2000.
- Configured Policies In Juniper Netscreen 500/SRX 650 to allow customer traffic
- Configured and implemented MPLS, MP-BGP and Multicasting networks.
- Configured Routing protocols EIGRP, static routes and LAN Protocols VLANs, VTP, STP, VRRP, HSRP.
- Configuring and troubleshooting Juniper Netscreen Firewalls using NSM.
- Lab Implementation of multiple security contexts in ASA firewalls and Checkpoints configures redundancy (Active-Active failover and active-standby failover) among them.
- Configuring IPSEC VPN on SRX series firewalls.Configuring Virtual Chassis for Juniper switches EX-4200, Firewalls SRX-210.
- Configured STP for switching loop prevention, and VLANs for data and voice along with configuring port security for users connecting to the switches.
- Experience with configuring Nexus 2000 Fabric Extender (FEX) which acts as a remote line card(module) for the Nexus 5000
- Implementing and troubleshooting (on-call) IPsec VPNs for various business lines and making sure everything is in place.
- Managed PIX/ASA andFWSM3.X using both Cisco Adaptive Security Device Manager (ASDM), Cisco Security Manager (CSM) and CLI.
- Network Operations and support by providing Tier-2 and Tier-3 support to WAN and LAN related issues including HSRP, VLANs, VTP, STP, RSTP, TRUNKING, SPAN and RSPAN, EIGRP, RIP, OSPF, BGP.
- Configure and support NATs, access-lists, and routing on Cisco routers (1700, 2600, 2800, 7200 series), Cisco Nexus (7000, 5000, 2000 series) Switches, Cisco Catalyst (2960, 3560, 3750 and 6500 series) Switches, Cisco ASA/PIX firewalls.
- Setup, configuration, troubleshooting and testing of IPSEC site-to-site VPNs and SSL VPN on Cisco ASAs, and Checkpoint
- Stacked, configured 2960 series switches and connected with Nexus 7000 series switches creating Vpc, spanning tree, Trunk and redundancy for failover.
- Design, configured and implemented centralized Syslog server on both production and corporate network and enable SNMP traps for monitoring traffic and check the health of servers and network devices.
- Supported core network consisting of Cisco 7200 series routers running multi area OSPF. Implemented stub/Totally stub areas as per requirements.
- Configured Access lists on the boundaries of the network either inbound or outbound and providing network support consisting of VPN and point-to point site.
- Responsible for service request tickets generated by the helpdesk in all phases such as troubleshooting, maintenance, upgrades, patches, fixes and all around technical support.
- Performed Structured Cabling, Dressing and Labeling.
- Develop, plan and maintain documentation necessary for operation in support of LAN to WAN connectivity.
Confidential
Network Deployment Engineer
Key Responsibilities:
- Configured Routing protocols such as RIP, OSPF, EIGRP, static routing and policy based routing.
- Team member of Configuration ofCisco7206 router with VPN and Configuration of Catalyst switches.
- Configuration 7500, 7200 with OSPF and catalyst 6505, 4500, 3550 switches with various VLAN.
- Create and testCisco router and switching operations using OSPF routing protocol, ASA 5500 Firewalls, and MPLS switching for stable VPNs.
- Troubleshooting the Network Routing protocols (BGP, EIGRP and RIP) during the Migrations and new client connections.
- Configuration and troubleshooting link state protocols like OSPF in single area and multiple areas.
- Redesign of Internet connectivity infrastructure for meeting bandwidth requirements.
- Configured and managed VLANs, 802.1Q Trunk, RPVST+, Inter-VLAN routing, HSRP and LAN security for Layer-2 and Layer-3 switching domains as per the organization's requirement plan.
- Optimized performance of the WANnetworkconsisting of Cisco 3550/4500/6500 switches by configuring VLANs.
- Setup NFS and Samba File sharing on Linux and Windows servers.
- Configured VLANs with 802.1q tagging. Configured Trunk groups, ether channels, and Spanning tree for creating Access/distribution and core layer switching architecture.
- Configured BPDU Guard, port-fast, uplink fast and other spanning tree features.
- Configuration and troubleshooting of Cisco 2500, 2600, 3000, 6500, 7500, 7200 Series routers.
- Strong working knowledge of Nexus 5K/7K /2K.
- Experience working with Nexus 7010, 5020, 2148, 2248 switches.
- Implementation and configuration of F5 Big-IP LTM-6400 load balancers
- Installation and administration of Checkpoint R 75.40 Firewall.
- Implemented firewall policy change on the Checkpoint clusters
- Verified and Validated the Firewall policy on Checkpoint R75 clusters for unused rule and helped consolidating rule
- Deploying Layer 2 security in Server Farms by configuring switch for 802.1x port based authentication.
- Implemented, configured BGP WAN routing, converting OSPF routes to BGP (OSPF in local routing).
- Technical assistance for LAN/WAN management and complex customer issues.
- Provided support for troubleshooting and resolving Customer and user reported issues.
- Worked with Network Engineer’s in the installation and configuration of firewalls.
- Performed route redistribution & manipulated route updates using distribute lists, route-maps & administrative distance, offset-lists.
- Involved setting up the TFTP server for backing up the IOS images and configuration files of Cisco Routers and Switches and troubleshooting the file servers.
- Upgrades, installs, configuration and administration security and monitoring tools on Linux.
- Excellent in patches and packages installation on Linux/Unix Environment.
- Responsible for network evaluations, troubleshooting a variety of network problems, and implementing various software and hardware upgrades efficient performance.
- Designed and implemented DMZ for Web servers, Mail servers & FTP Servers using Cisco ASA5500 Firewalls.
- Generating RCA (Root Cause Analysis) for critical issues of layer1/layer2/layer3 problems.
- Provided redundancy to the network, implemented hot standby routing protocol (HSRP) and Load sharing for effective utilization of routers.
- Configuring, implementing and troubleshooting VLAN’s, VTP, STP, Trunking, Ether channels.
- Expertise in maintenance of layer2 switching tasks which advocate VLAN, VTP, STP, RSTP, PVST, RPVST, configuring of ether channel with LACP and PAGP along with troubleshooting of inter-VLAN routing.
- Packet capturing, troubleshooting on network problems with Wireshark, identifying and fixing problems
- Implementing, configuring, and troubleshooting various routing protocols like RIP, EIGRP, OSPF, and BGP etc.
- Performing network monitoring, providing analysis using various tools like Wireshark, Solarwinds etc.
- Cisco ASA/Checkpoint Firewall troubleshooting and policy change requests for new IP segments that either come on line or that may have been altered during various planned network changes on the network.
- Responsible for Cisco ASA 5500 firewall administration, Rule Analysis, Rule Modification.
- Generating RCA (Root Cause Analysis) for critical issues of layer1/layer2/layer3 problems.
Environment: Nexus 2K/5K/7K,F5 Big-IP LTM-6400 load balancer, Checkpoint R75,Cisco ASA 5500 LAN,WAN,HSRP,RIP,OSPF,BGP,EIGRP,VLAN,MPLS,STP,RSTP.
Confidential
Network Operations Engineer/Network Incident Analyst
Key Responsibilities:
- Migration of RIP V2 to OSPF, BGP routing protocols.
- Configured EIGRP for Lab Environment.
- Working with Client teams to find out requirements for their Network Requirements.
- Designing solutions for frozen requirements using Cisco Routers and Switches.
- Deploying the network infrastructure to meet the requirements
- Created VLAN and Inter-Vlan routing with Multilayer Switching.
- Providing technical consultancy for better application response using QoS
- Monitor performance of network and servers to identify potential problems and bottleneck.
- Performed RIP, OSPF, BGP EIGRP routing protocol administration.
- Installed wireless access points (WAP) at various locations in the company.
- Maintained redundancy on Cisco 2600, 2800 and 3600 router with HSRP.
- Real time monitoring and network management using Cisco Works LMS.
- Provided technical support on hardware and software related issues to remote production sites
- Configuration of Access List ACL (Std., Ext, Named) to allow users all over the company to access different applications and blocking others.
- Configuring of IP Allocation and sub netting for all applications and servers and other needs throughout company using FLSM, VLSM addressing.
- Working on trouble tickets and monitoring consoles to gather information about network issues and work towards their resolution.
- Proactive Network Remediation and break fix.
- Break-fix activities including device or component replacements, traffic offloading and load balancing, working with multiple vendors to analyze unexpected behavior of network devices, and to resolve complex cases.
- Troubleshooting multiple types of high capacity WAN links involving MPLS LSPs, MPLS VPNs and IPsec VPNs.
- Working on network investigation tickets involving network issues that are not captured by monitoring consoles that require detailed investigation and troubleshooting.
- Analyzing packet capture to drill down and to find the root cause of latency related and other strange application behavior.
- Created TSG’s and SOP for Other operational teams.
- Perform routine network maintenance checks as well as configure and manage printers, copiers, and other miscellaneous network equipment.
Environment: Cisco 2600/2800/3600 routers, Juniper MX960 series, F5 BIG-IP LTM, GTM