SUMMARY

• CCNP certified Network Engineer with over 7 Years of experience in design, implementation, and configuration of Cisco Routers, Switches and Firewalls, troubleshooting & fine - tuning of Firewalls, VPN configuration, troubleshooting network related problems in Enterprise& Data Center Networks.
• Experience in Cisco Physical cabling, IP addressing, Wide Area Network configurations (Frame-relay & MPLS), Routing protocol configurations (RIP, EIGRP, OSPF, and BGP).
• Profound knowledge on various WAN technologies like E1/T1/E3/T3, HDLC, Frame-Relay and PPP.
• Experience working with Nexus 7K, 5K, 2K devices.
• Strong knowledge in Cisco Routing, Switching and Security with Cisco hardware/software (heavy Cisco shop) experience.
• Hands-on experience configuring and troubleshooting of routing protocols RIP v1/v2, EIGRP, OSPF, BGP and MPLS.
• Experience in installing, configuring and troubleshooting of Checkpoint Firewall and Juniper SSG series.
• Worked on F5 LTM, GTM series like 6400, 6800, 8800 for the corporate applications and their availability.
• Extensive knowledge in implementing and configuring F5 Big-IP LTM-3900, and 6900 Load balancers.
• Experience in managing security policies with CSM, integrated with ASA 5500 devices.
• Configuring of IP Allocation and sub netting for all applications and servers and other needs throughout company using FLSM, VLSM addressing.
• Experienced working on network monitoring and analysis tools like SolarWinds, CISCO works and Wireshark.
• Knowledge on Port level security and 802.1X.
• Experience in working with IPSEC Site to Site, Remote VPN using different encryption methods.
• Experience in Configuring DNS and DHCP servers.
• Experienced in Troubleshooting for connectivity and hardware problems on Cisco Networks.
• Performed security operations on ASA firewalls.
• Experience working with Cisco IOS-XR on the ASR9000 devices for MPLS deployments
• Configuration and management of Cisco IDS, Checkpoint firewall.
• Experience in Physical cabling, IP addressing, configuring and supporting TCP/IP.
• Excellent customer management/resolution, problem solving, debugging skills and capable of quickly learning, effectively analyses results and delivering solutions as an individual and as part of a team.

TECHNICAL SKILLS

Routers: Routers (1700, 1800, 2500, 2600, 3200, 3600, 3700, 3800, and 7200)

Switches: Cisco L2 & L3 Switches (2900, 3560, 4500, 5000 & 6500), ASA, PIX, FWSM, Juniper, Netscreen

LAN Technologies: Ethernet, Fast Ethernet, and Gigabit Ethernet, VLAN, Inter-VLAN Routing, VTP, STP, RSTP

WAN Technologies: Frame Relay, ISDN, ATM, MPLS, leased lines & exposure to PPP, DS1, DS3, OC3, T1 / T3 & SONET

Firewalls: Firewalls/VPNs ASA, PIX, Cisco VPN 3000 Series Concentrator

OS products/Services: DNS, DHCP, Windows (2000/2003, XP), UNIX, LINUX, Microsoft SQL Server 2000 and 2005, VMware.

Protocols/Services: Routing Protocols (RIP v1 & v2, IGRP, OSPF, EIGRP, BGP), QoS, HSRP, VRRP, TCP/IP, load balancer, Proxy servers, IPSec, MPLS, PPP, VoIP, SIP, H.323

Network Management Tools: Wireshark, Netflow Analyzer, HP OpenView, Cisco Works, Ethereal, OPNET, Solarwinds

PROFESSIONAL EXPERIENCE

Confidential, Philipsburg, PA

Sr. Network Engineer

Responsibilities:

• Monitoring network infrastructure using SNMP tools like HP Automation.
• Managing and configuring Cisco Switches and Routers independently.
• Involved in configuration of Access Lists (ACL) and Prefix-lists for the proper network routing for the B2B network connectivity.
• Worked with customers in troubleshooting issues related to connectivity STP, VLANs, Inter-VLAN routing, VTP, Ether-Channels, Layer 2/3 switching and log messages.
• Dealt with NAT configuration and troubleshooting issues related to access list and DNS/DHCP issues within the LAN network.
• Evaluate Plan, Test, and Deploy migration of DNS and DHCP to Infoblox Appliances.
• Hands on experience in troubleshooting of inter-VLAN routing and VLAN Trunking using 802.1Q.
• Configured switching technology such as VLAN Trunking802.1Q, STP (802.1d), and Port Security on Catalyst 6500, 3500 series switches.
• Designed 10 gigabit networks using Cisco Nexus 7000/6000/5000 series switches, and Cisco 3800,4510,6509,6506 series routers.
• Performed OS upgrades &device replacements on several Cisco devices (6500, Nexus 2K, 3K, 5k,6k and 7k series switches).
• NEXUS 7000/6000/5000/2000 with Fabric Path Data Center design engineer for multi-segmented network including DMZ/B2B for Partner and own networks.
• Configure fiber optic Direct Connect, IPSECVPN, any connect VPN and CDN to integrate DevOps and public cloud networking operations globally.
• Implemented VPN/IPSec tunnels for secured data transfer from all locations to core routers and then to application servers.
• Design and configuring of OSPF, BGP on Cisco Routers.
• Ability to identify IPv4 address ranges, subnets, and other IPv4 addressing fundamentals required. Fundamentals include understanding of DHCP, NAT, PAT, and subnetting.
• Re-engineer BGP routing (Default routing, AS PATH Attribute, IBGP and EBGP Sessions, Route Reflectors and Route Filters, Route Maps, IP Prefix-lists, AS-Path prepend, MED, Local Preference, Partial and full mesh peering, Aggregation) to load balance traffic across multiple ISPs links.
• Devised and executed major network upgrade project spanning more than 150 devices with varying complexities and roles, e.g. ASR1001, ASR1006 and also various Cisco platforms; Cisco IOS, Cisco IOS-XE, Cisco IOS-XR.
• Extensive working knowledge in BGP, OSPF, EIGRP, RIP, IS-IS, HSRP, L2/3 VPNs in IOS, IOS XE, and IOS XR platforms.
• Configured OSPF redistribution and authentication with type 3 LSA filtering to prevent LSA flooding.
• Implementing traffic engineering on top of an existing Multiprotocol Label Switching (MPLS) network using Frame Relay and Open Shortest Path First (OSPF).
• Provided redundancy in a multi homed Border Gateway Protocol (BGP) network by tunings AS-path.
• Team point person for configuring and installing of Cisco 3750 and 4500 access switches. Cisco Nexus 6K/7K for core and distribution switches.
• Involved in configuring and implementing of composite Network models consists of Cisco7600, 7200, 2811,2901, CSR-1 series routers and Cisco 2950, 3500, 5000, 6500 Series switches, Connected Grid Router (CGR 2010) and Cisco 2520 Connected Grid Switch (CGS 2520).
• Responsible for day to day management of Cisco Devices, Traffic management and monitoring.

Environment: Cisco 2948/3560/4500/3560/3750/3550/3500/ switches and Cisco 3640/12000 7200/3845/3600/2800/ ASR 9001/ASR 1006 routers, Cisco Nexus 7K/5K, Cisco ASA 5500, RIP, OSPF, BGP, EIGRP, LAN, WAN, VPN, HSRP

Confidential, Albany, NY

Sr. Network Engineer

Responsibilities:

• Configured OSPF, BGP protocols on Juniper routers (MX960, MX480) and troubleshooting them.
• Configuration of port channel between core switches and server distribution switches was performed.
• Developed global standards for deployment of blue coat proxy servers to replace the older net cache deployments.
• Design, implementation and operational support of routing/switching protocols in complex environments including BGP, OSPF, EIGRP, Spanning Tree, 802.1q, etc.
• Experience with design and implementation of Data center migration.
• Switches Replace branch hardware with new 2851 routers and 2960 switches.
• Conversions to BGP WAN routing. Which will be to convert WAN routing from OSPF to BGP (OSPF is used for local routing only) which involves new wan links.
• Configuring HSRP between VLANs, Configuring Ether-Channels, Port Channel on 6500 catalysts.
• Worked on F5 LTM, GTM series like 6400, 6800, 8800 for the corporate applications and their availability
• Involved in the configuration & troubleshooting of routing protocols: MP-BGP, OSPF, LDP, EIGRP, RIP, BGP v4. Configured IP access filter policies.
• Deploying and decommissioning Cisco switches and their respective software upgrades.
• Performing the ACL requests change for various clients by collecting source and destination information from them.
• Maintained complex LAN/WAN networks with several VLANS and provided support for routing protocols and providing secure sessions over internet using IPSec and SSL encryption.
• Worked extensively on Cisco ASA 5500(5510/5540) Series, experience with convert PIX rules over to the Cisco ASA solution.
• Supporting EIGRP and BGP based on the network by resolving level 2 & 3 problems of internal teams & external customers of all locations.
• Performing troubleshooting on slow network connectivity issues, routing issues that involves OSPF, BGP and identifying the root cause of the issues.
• Worked on migration of existing PIX firewall to ASA firewall, PIX OS upgrade from 6.3 to 7.0.
• Building the VPN tunnel and VPN encryption.
• Involved in Configuration of Access lists (ACL) on ASA firewall for the proper network routing for the B2Bnetwork connectivity.
• Deploying and decommission of VLANs on core ASR 9K, Nexus 7K, 5K and its downstream devices.
• Performed OSPF, BGP, DHCP Profile, HSRP, IPV6, IPV4 Bundle Ethernet implementation on ASR 9K redundant pair.
• Assisted in MPLS migrations, implemented a backup for the existing WAN connection using site-to-site IP sec VPN tunnels.
• Provided proactive threat defense with ASA that stops attacks before they spread through the network.
• Designed and implemented DMZ for Web servers, Mail servers & FTP Servers using Cisco ASA5500 Firewalls.
• Troubleshoot the Network Issues onsite and remotely depending on the severity of the issues.
• Worked with creating VIP (virtual servers), pools, nodes and applying iRules for the virtual servers like cookie persistency, redirection of the URL.
• Created Visio Dean / Visio Documentation to give complete picture of network design for each building.
• Experience in Configuring, upgrading and verifying the NX-OS operation system.

Environment: Cisco 2948/3560/4500/3560/3750/3550/3500/ switches and Cisco 3640/12000 7200/3845/3600/2800/ ASR 9001/ASR 1006 routers, Cisco Nexus 7K/5K, Cisco ASA 500, Checkpoint,Juniper,F5 BIGIP LTM, RIP, OSPF, BGP, EIGRP, LAN, WAN, VPN, HSRP

Confidential, Jersey City, NJ

Network Engineer

Responsibilities:

• Responsible for implementing, supporting, and maintaining 24x7 network services.
• Coordinated efforts with Engineer's to ensure all network devices conformed to defined network standards.
• Designing and Configuration of Corporate network which include configuration network Equipment such as Cisco ASA Firewall, network Switches and Router.
• Designed, configured and implemented HSRP, BGP, EIGRP, OSPF, and MPLS WAN in multi-protocol network environment.
• Experience in Ethernet Layer 2 devices (switches) and Layer 3 devices (routers).With full Command on Cisco IOS and Administration of Cisco IOS 11.x and 12.1 versions.
• Installing and configuring Cisco Security Manager in the server and adding firewall modules to the manager.
• Performing security audits of perimeter routers, identifying missing ACL’sand experience with Ticket Tools like Remedy, ServiceNow.
• Switching related tasks included implementing VLANS, STP and configuring ISL trunk on Fast-Ethernet channel between switches, Configuring CGMP, IGMP and PIM.
• Configuration & Management of VLANs, 802.1q trunks, VTP, Security policiesand implementing inter VLAN routing.
• Hands on experience with Upgrading and troubleshooting NX-OS to the Nexus Switches.
• Hands on experience with Ethernet protocols, network design and switch configuration.
• Built LAN/ WAN TCP/IP network comprised of Cisco Switches (6500, 7000, 3750, 3500, and 2900).
• Implement LAN/WAN technologies in support of a data center implementation.
• Experience in negotiating VPN tunnels using IPsec encryption standards, configuring and implementation of site-to-site VPN and Remote VPN.
• Involved in complete LAN, WAN, Extranet redesign (including IP address planning, designing, installation, pre-configuration of network equipment, testing, and maintenance) in both Campus and Branch networks.
• Performing network monitoring, providing analysis using various tools like Wireshark, Solar winds, Cisco Prime within environment.
• Configured and implemented Remote Access VPN using Cisco's VPN client via IPSEC.
• Working on Active Directory to add users to new groups and change user's policies.
• Involved in Installing and Configuring a Cisco/Microsoft secure ACS server for AAA authentication (RADIUS/TACACS+).

Environment: Cisco 2948/3560/4500/3560/3750/3550/3500/ switches and Cisco 3640/12000/7200/ 3845/3600/2800 routers, Cisco Nexus 7K/5K, Cisco ASA 500, F5 BIGIP LTM, RIP, OSPF, BGP, EIGRP, LAN, WAN, VPN, HSRP

Confidential

Network Engineer

Responsibilities:

• Configured Routing protocols such as RIP, OSPF, EIGRP, static routing and policy based routing.
• Team member of Configuration ofCisco7206 router with VPN and Configuration of Catalyst switches.
• Configuration 7500, 7200 with OSPF and catalyst 6505, 4500, 3550 switches with various VLAN.
• Create and testCisco router and switching operations using OSPF routing protocol, ASA 5500 Firewalls, and MPLS switching for stable VPNs.
• Troubleshooting the Network Routing protocols (BGP, EIGRP and RIP) during the Migrations and new client connections.
• Configuration and troubleshooting link state protocols like OSPF in single area and multiple areas.
• Redesign of Internet connectivity infrastructure for meeting bandwidth requirements.
• Optimized performance of the WANnetworkconsisting of Cisco 3550/4500/6500 switches by configuring VLANs.
• Configured VLANs with 802.1q tagging. Configured Trunk groups, ether channels, and Spanning tree for creating Access/distribution and core layer switching architecture.
• Configured BPDU Guard, port-fast, uplink fast and other spanning tree features.
• Configuration and troubleshooting of Cisco 2500, 2600, 3000, 6500, 7500, 7200 Series routers.
• Strong working knowledge of Nexus 5K/7K /2K.
• Verified and Validated the Firewall policy on Checkpoint R75 clusters for unused rule and helped consolidating rule.
• Deploying Layer 2 security in Server Farms by configuring switch for 802.1x port based authentication.
• Implemented, configured BGP WAN routing, converting OSPF routes to BGP (OSPF in local routing).
• Technical assistance for LAN/WAN management and complex customer issues.
• Provided support for troubleshooting and resolving Customer and user reported issues.
• Worked with Network Engineer’s in the installation and configuration of firewalls.
• Performed route redistribution & manipulated route updates using distribute lists, route-maps & administrative distance, offset-lists.
• Involved setting up the TFTP server for backing up the IOS images and configuration files of Cisco Routers and Switches and troubleshooting the file servers.
• Responsible for network evaluations, troubleshooting a variety of network problems, and implementing various software and hardware upgrades efficient performance.
• Designed and implemented DMZ for Web servers, Mail servers & FTP Servers using Cisco ASA5500 Firewalls.
• Generating RCA (Root Cause Analysis) for critical issues of layer1/layer2/layer3 problems.
• Provided redundancy to the network, implemented hot standby routing protocol (HSRP) and Load sharing for effective utilization of routers.
• Cisco ASA/Checkpoint Firewall troubleshooting and policy change requests for new IP segments that either come on line or that may have been altered during various planned network changes on the network.
• Responsible for Cisco ASA 5500 firewall administration, Rule Analysis, Rule Modification.
• Generating RCA (Root Cause Analysis) for critical issues of layer1/layer2/layer3 problems.

Environment: Nexus 2K/5K/7K, F5 Big-IP LTM-6400 load balancer, Checkpoint R75, Cisco ASA 5500 LAN, WAN, HSRP, RIP, OSPF, BGP, EIGRP, VLAN, MPLS, STP, RSTP.

Confidential 

Jr. Network Engineer

Responsibilities:

• Migration of RIP V2 to OSPF, BGP routing protocols.
• Configured EIGRP for Lab Environment.
• Working with Client teams to find out requirements for their Network Requirements.
• Designing solutions for frozen requirements using Cisco Routers and Switches.
• Deploying the network infrastructure to meet the requirements.
• Providing technical consultancy for better application response using QoS.
• Monitor performance of network and servers to identify potential problems and bottleneck.
• Performed RIP, OSPF, BGP EIGRP routing protocol administration.
• Installed wireless access points (WAP) at various locations in the company.
• Maintained redundancy on Cisco 2600, 2800 and 3600 routers with HSRP.
• Real time monitoring and network management using Cisco Works LMS.
• Configuring of IP Allocation and sub netting for all applications and servers and other needs throughout company using FLSM, VLSM addressing.
• Working on trouble tickets and monitoring consoles to gather information about network issues and work towards their resolution.
• Break-fix activities including device or component replacements, traffic offloading and load balancing, working with multiple vendors to analyze unexpected behavior of network devices, and to resolve complex cases.
• Troubleshooting multiple types of high capacity WAN links involving MPLS LSPs, MPLS VPNs and IPsec VPNs.
• Working on network investigation tickets involving network issues that are not captured by monitoring consoles that require detailed investigation and troubleshooting.
• Analyzing packet capture to drill down and to find the root cause of latency related and other strange application behavior.
• Perform routine network maintenance checks as well as configure and manage printers, copiers, and other miscellaneous network equipment.

Environment: Cisco 2600/2800/3600 routers, HSRP, RIP, OSPF, BGP, EIGRP, VLAN, MPLS, STP, RSTP.