SUMMARY

• Around 8 years of experience in the industry, which includes expertise in the areas of Routing, Switching, Firewall and Load Balancing.
• Expert level knowledge of troubleshooting, implementing, optimizing and testing of static and dynamic routing protocols such as EIGRP, OSPF, BGP ability to interpret and resolve complex route table problems.
• Implementation traffic filters on Cisco routes using Standard, extended Access list.
• Expert Level Knowledge about TCP/IP and OSI models.
• Virtualization: Experience with VMware (Workstation, VCenter, VMotion, ESXI hypervisor)
• Experience with vBlock Cloud infra such as VMware vSphere, VMware Cloud Director and Veeam Backup.
• Experimented with Software defined Networks - open day light.
• In-depth expertise in the analysis, implementation, troubleshooting & documentation of LAN/WAN architecture and good experience on Services.
• Cisco ASA Firewall troubleshooting and policy change requests for new IP segments that either come on line or that may have been altered during various planned network changes on the network.
• Extensive Knowledge on the implementation of Cisco ASA 5500 series and checkpoint R75 firewalls.
• Hands on experience working with Cisco Nexus 7K, 5K & 2K Switches.
• Comprehensive knowledge of wireless networking systems and protocols.
• 3 years of experience in working with operating systems like Linux, UNIX and Ubuntu.
• Worked on NXOS, IOS, and IOS-XR BXB to N7K-NXOS (MPLS) system test.
• Experience in F5, Cisco ACE 4710 Load balancers, Aruba wireless access points and controllers.
• Familiar working with alcatel-lucnet networks, BENU appliances and network observer gigastor.
• Experience with Vsat, VoIP and WAN optimization techniques.
• Extensive understanding of the Application Security Module (ASM) technology.
• Experience in working with load balancer for converting CSS to ACE.
• Experience deploying BIG-IP F5LTM Load Balancers for load balancing and traffic management of business application.
• Strong hands on experience in installing, troubleshooting, configuring of Cisco 7200, 3800, 3600, 3400, 2800, 2600, 2500, 1900, 1941, 1921 and 1800 series Routers, Cisco Catalyst 6800, 6807, 6500, 4500, 3750, 2950, 2960 and 3500XL series switches.
• In-depth knowledge and hands-on experience on IP Addressing, Sub netting, VLSM, DNS, DHCP and ARP, reverse & proxy ARP, Ping Concepts.
• Experience in working with video from end-point in the network to the backend.
• Knowledge of implementing and troubleshooting complex layer 2 technologies such as VLAN Trunks, VTP Ether channel, STP, RSTP and MST.
• Experience in working with Windows power shell scripting to maintain and administrating server environments.
• Vast knowledge on structured cabling, data & voice networks, wireless networks and desktop environment.
• Proficient in checking the network’s security protocols, system features and good hands on experience in the manual testing of l2, l3 protocols.
• Deep knowledge of AWS cloud computing platform such as VPC (Virtual private cloud), EC2 and load balancing with ELB using ECB.
• Implementation of Spine leaf architecture, Equal cost multipathing.
• Experience with Layer 2 and Layer 3 protocols like LDP, RSVP/ TE, QOS, COS L2 VPWS and VPLS, FRR.

TECHNICAL SKILLS

Networking Technologies: LAN/WAN Architecture, TCP/IP, Frame Relay, VPN, VLAN, VTP, NAT, PAT, STP, RSTP, PVST, MSTP. Wireless networks such as microwave point-point, point- multipoint and wireless mesh network RF (Radio Frequencies) technologies, CISCO ACI.

Networking Hardware: Cisco Switches (9k, 7k, 5k), Cisco Routers, ASA/Pix firewalls, Checkpoint firewalls, VMware, Big ip F5 Load Balancers, IronPort.

Routing Protocols: OSPF, IGRP, EIGRP, RIP, MPLS, IS-IS, BGP, Multicasting.

Networking protocols: such as L2 protocols (STP, RSRP, IEEE802, 1Q, VTP, ARP) and L3 protocols (RIP, OSPF, IP, ICMP, BGP).

Security Technologies: PAP, CHAP, Cisco PIX, Checkpoint, ASA, Bluecoat proxy.

Virtualization: Geni, VMware.

Network Monitoring: Cisco Works 2000, Wire Shark, Network sniffer & packet analyzer, HRPing, Infoblox, Solar Winds

Operating Systems: Windows 7, Vista, XP, 2000, CentOS LINUX, Puppet, Cisco IOS, Solaris, IOS XR.

Routers: CISCO 1900, 2600, 2800, 3600, 3800, 7200, ISR-2900, 4000, ASR-1k, 9k Juniper M & T Series, Cisco CRS-1, CRS -3, GSR.

Switches: CISCO 2900, 3500, 3750, 3850, 4500, 5000, 6500, 6509, 6800, 6807, 7509, Nexus 7k, 5k, 2k.

Load Balancers: Bigip F5 LTM-1600, 3600, 3900, 6900, Cisco ACE-4710, ACE gss 4400, CSS

Programming Languages: SQL, Shell, Perl, Linux & Unix and Python.

Simulation Tools: Qualnet Developer, OPNET IT GURU, OPNET Modeler, Cadence.

Firewalls: Juniper net screen (500/5200), Juniper SRX (650/3600),Pix(525/535),ASA (5520/5550/5580 ),MX(240,480,960,2010,2020),Checkpoint(R65, R70, NGX), McAfee Web Gateway.

AAA Architecture: TACACS+, RADIUS, Cisco ACS.

Features & Services: IOS and Features, HSRP, GLBP,IPAM IRDP, NAT, SNMP, SYSLOG, NTP, DHCP, CDP, DNS, TFTP and FTP Management, NetFlow, Open Stack, IVR’s, HLD and LLD documents, Dell equal logics, Microsoft Visio diagramming.

PROFESSIONAL EXPERIENCE

Confidential, Phoenix, AZ

Sr. Network Engineer

Responsibilities:

• Worked extensively on policy design and implementation forISEsolution various Network infrastructures for successful wireless, extranet and VPN Connectivity.
• Configuration & Maintenance ofCisco ISEfor Certificate based authentication for BYOD and Corporate Mobile Device Authentication using Xenmobile MDM.
• Configured 6500, 3750 and 4500 for Network Access Solution integration with Cisco Identity Service Engine on ESX 4.0 VMware and physically withCisco ISEappliances.
• Configured and performed software upgrades on Cisco Wireless LAN Controllers 5508 for Wireless Network Access Control integration withCisco ISE.
• Worked Extensively on Access Control Policies consisting of VLAN switching through SNMP, Applying downloadable ACLs throughCisco ISE, and Configuring Standard and Extended ACLs locally and on the upstream switch’s for Cisco NAC Solution.
• Configuration & Maintenance of Cisco ISE for Certificate based authentication for BYOD and Corporate Mobile Device Authentication using Xenmobile MDM.
• Configured 6500, 3750 and 4500 for Network Access Solution integration with Cisco Identity Service Engine on ESX 4.0 VMware and physically with Cisco ISE appliances.
• Configured and performed software upgrades on Cisco Wireless LAN Controllers 5508 for Wireless Network Access Control integration with
• Responsible for Crossroads rollout LAN/WAN problem determination and diagnosis, provide project leadership (onsite, offsite). vBlock up gradation such as VCenter server up gradation, ESXi, UCS blades
• Deployed the Fabric interconnect, blade servers, mezzanine card on the UCS chasis
• Install and monitor application traffic using network protocol monitoring tools such as NTOP or Wireshark to analyze network usage and bandwidth and run diagnostic programs to resolve problems.
• Configured and installed VoIP CUCM and cisco unity system, prepared network assessment for testing utilization for VoIP traffic and deployment and trained the user with more value added services.
• Managed different network user strategies including exchange mailbox, person network folder, AD organization unit relocation through Active Directory and Exchange.
• Managed and modified the availability of LAN and WIFI resources in the Microsoft server and active directory environment.
• Administration, Configuration and support for Microsoft windows Azure IAAS for us clients for migration.
• Worked in the environment of cloud based technologies such as Azure and VMware.
• Worked on MPLS for redirecting data from one network node to another network node based on the shortest paths.
• Perform the traffic analyze using cisco netflow collector.
• Manual testing of l2, protocols such as STP, RSTP and checking whether they work properly on switches. And then configuring the VLANS on Cisco switches.
• Responsible for performing the functional testing and bug verification of L3 protocols using cisco routers.
• Used Ip telephony to connect to the remote employees through WAN.

Environment: Cisco Catalyst 7509, 6500, 4500, 4000, 3750, 3850, 3560, F5 BIGIP LTMs-6900,Cisco ASA 5525 firewalls, Power Connect Switch 5548,Infoblox,MPLS,Multicast,Nexus-7k, Palo Alto 5060,PCI,SOX,OTV,VPC,Nexus-FEX,IOS,IOS-XR,NX-OS,IPSEC,Frame Relay, OSPF, EIGRP, BGP, IS-IS, ASR 1k,9k,cryptography,L2&L3 VPN, Metro Ethernet,802.1Q,Riverbed Steelhead, UCS, Multicasting.

Confidential, Chicago, IL

Network Engineer

Responsibilities:

• Configuring various advanced features (Profiles, monitors, iRules, Redundancy, SSL Termination, Persistence, SNATs, HA on F5 BIGIP appliances SSL termination and initiation, Persistence, Digital Certificates, Executed various migration/upgrade projects across F5 and hands on with F5 BIGIP LTMs/EM.
• Experience working in Cloud infrastructure with VMware ESXi Server platforms for application servers. Network Configuration for server apps and app migrations support.
• Experience with convert Checkpoint VPN rules over to the Cisco ASA solution. Migration with Cisco ASA VPN experience
• Implementation, configuration and support of Checkpoint and ASA firewalls for multiple clients
• Implemented and troubleshooting the Virtual firewalls (Contexts) solutions in ASA
• Regular upgrade and maintenance of Infrastructure, Installing, configuring, and maintaining Cisco Switches (2900, 3500, 7600, 3700 series, 6500 series) Cisco Routers (4800, 3800, 3600, 2800, 2600, 2900, 1800, 1700, 800) Cisco Router and Switches, Juniper Routers and Firewalls, Nexus 7k,5k & 2k, f5 BIG IP, Palo Alto Firewalls, Bluecoat Proxy and Riverbed Steelhead appliances
• Configuring various BGP attributes such as Local Preference, MED, Extended Communities, Route-Reflector clusters, Route-maps and route policy implementation.
• Worked extensively in Configuring, Monitoring and Troubleshooting Juniper security appliance, Failover DMZ zoning & configuring VLANs/routing/NATing with the firewalls as per the design.
• Convert Branch WAN links from TDM circuits to MPLS and to convert encryption from IPSec/GRE to GetVPN.
• Rebuilding data centers and redundant sites for failover, F5 load balancers
• Migrated, created, and managed pools and clusters in F5 BigIP GTM 3DNS load balancers across multiple Datacenters.
• Converting CatOS to Cisco IOS Config Conversion on distribution layer switches
• Conversions to BGP WAN routing. Which will be to convert WAN routing from OSPF to BGP (OSPF is used for local routing only) which involves new wan links.

Environment: Cisco 3750/3550/3500/2960 switches and Cisco 3640/ 0/3845/3600/2800 routers, Cisco ASA5510, Checkpoint, Palo Alto, Cisco Nexus7K/5K, 2248/3560/5020/6509, ASA, Checkpoint, LAN,OSPF,BGP,RIP,EIGRP

Confidential, Roanoke, TX

Network/Firewall Administrator

Responsibilities:

• Responsible for installation, troubleshooting of firewalls (Cisco firewalls, Imperva Web app Firewalls, Checkpoint firewalls,) and related software, and LAN/WAN protocols
• Hands on experience on all software blades of checkpoint firewall
• Configuring VPN, clustering and ISP redundancy in Checkpoint firewall
• Configuring, maintaining and troubleshooting IPS and IPS-1 in Checkpoint
• Configured redundant interfaces, DHCP server, DHCP relay, ntp settings, and sub interfaces on firewalls
• Involved in migrating applications fromNetScalerto F5 Big - IP environment.
• Built and support VRRP / Cluster based HA of Checkpoint firewalls
• Perform Checkpoint and PIX firewall/IDS design, integration and implementation for Cyber Trap client networks
• Perform QA Checks on block point builds of SPLAT and GAiA Checkpoint Firewalls running on HP Proliant Servers
• K2Responsible for installation, troubleshooting of firewalls (Imperva Web app Firewalls, Checkpoint firewalls) and related software, and LAN/WAN protocols.
• Responsible for the implementation, documentation, and day-to-day support of the Imperva Database Firewall
• Perform advanced troubleshooting using Packet tracer and tcpdump on firewalls
• Configuring VLAN, Spanning tree, VSTP, SNMP on Juniper EX series switches
• Implement changes on switches, routers, load balancers (F5 and CSS), wireless devices per engineers instructions and troubleshooting any related issues.
• Support Data Center Migration Project involving physical re-locations. Cisco ASA Firewall configuration and troubleshooting.
• Administration and management of all firewall environments.
• Installed and monitored performance of wired and wireless networks to maximize operations.
• Troubleshooting the VPN tunnels by analyzing the debug logs and packet captures
• Automation of security operations and optimizing the usage of infrastructure
• Configuring and testing Multicast for both IPv4 and IPv6 routing in Data Center Environment
• Configuration of SSL VPN through access blade and up-gradation of Firewall
• Participated in Pfizer Legacy Data Center Network Infrastructure Transition and Disaster Recovery Center transition for various locations
• Works closely with Customers in determining the business needs for a Project and build Detail design which includes Data Flow diagram, Logical and Physical Diagram
• Planning, designing and implementing a secure ODC Network setup for upcoming projects

Environment: Cisco 2948/3560/4500/3560/ 3750/3550/3500/ switches and Cisco /7200/ 3845/3600/2800 routers, Cisco Nexus 7K/5K, Cisco ASA 500, F5 BIGIP LTM,RIP,OSPF,BGP,EIGRP,LAN,WAN,VPN,HSRP

Confidential

Network Engineer

Responsibilities:

• Configured Cisco Routers for OSPF, RIP, IGRP RIPv2, EIGRP, Static and default route.
• Performed troubleshooting, while maintaining trouble ticket tracking, following internal/external escalation procedures and customer notifications.
• Supporting Development team for the access to corporate network and outside world. Providing access to specific IP, Port filter and port access.
• Configured the Cisco router as IP Firewall and for NATting, Switching (Ethernet) related tasks included implementing VLANS and configuring ISL trunk on Fast-Ethernet channel between switches.
• Management of each firewall is done remotely and onsite at client sites.
• Implemented Zone Based Firewalling and Security Rules on the Palo Alto Firewall
• Installing new equipment to RADIUS and worked with MPLS-VPN and TACACS configurations.
• Installing and maintaining local as well as network printers.
• Validating existing infrastructure and suggesting new network designs.
• Working on creating new load balancing policies by employing BGP attributes including Local Preference, AS-Path, and Community, MED.
• Providing technical support to LAN & WAN systems.
• Configuring all the required devices and equipment for remote vendors at various sites and plants.
• Installation and maintenance of new network connections for the customers.
• Installing and maintaining Windows NT Workstations and Windows NT Server.
• Monitor performance of network and servers to identify potential problems and bottleneck.
• Real time monitoring and network management using Cisco Works LMS.
• Monitoring Memory/CPU on various low end routers in a network.
• Configuring routers and send it to Technical Consultants for new site activations and gives online support at the time of activation.
• Provided technical support on hardware and software related issues to remote production sites.
• Performed administrative support for RIP, OSPF routing protocol.
• Maintained redundancy on Cisco 2600, 2800 and 3600 router with HSRP.

Environment: Cisco catalyst 2960/4550/5550 switch, Cisco 2880/3700/3880 router, LAN, MAN, BGP and DHCP.

Confidential

Network Engineer

Responsibilities:

• Network Migration from RIP to OSPF and EIGRP.
• Familiar with Physical connecting media like Ethernet, OC3,DSL,T1,etc
• Network infrastructure support to routing and switching equipment’s.
• Redistribute routing protocols and Frame-Relay configuration.
• Troubleshoot and resolved dynamic routing, Ethernet switching and host connectivity issues in a window and network environment.
• Troubleshoot wiring problems and serial communication lines.
• Develop, plan and maintain documentation necessary for operation in support of LAN to WAN connectivity.
• Virtualization of network using Vmware
• Worked with CLI of Linux OS hosts.
• Maintain excellent communication with the IT Manager on all tasks and projects.
• Manage installations, configuration and administration of Cisco equipment in IT architecture of organization.
• Involved in design and deploying various network security & High availability products like Cisco ASA and other security products.
• Configure IT LAN/WAN elements and held responsibility of maintaining and monitoring performance of network.
• Checkpoint Firewall configuration and troubleshooting.
• Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500/PIX security appliance, Failover DMZ zoning & configuring VLANs/Routing/NATing with the firewalls as per design.
• Worked on Extensively on Cisco Firewalls, Cisco PIX (506E/515E/525/) & ASA 5500(5510/5540) Series.
• Provide Tier1 technical support, assisting users facing network problems. Perform advanced troubleshooting, diagnostics and provide tier/level-1 solutions to network failures.
• Design the layout for cable installations.
• Support customer with the configuration and maintenance of ASA firewall systems.

Environment: Cabling, RIP, OSPF, BGP, ASA, IP, DNS, DHCP, VLAN, VTP, CSS, HTTP, HTTPS, Access Control Lists, VMware.