SUMMARY

• Over 6 years of industry experience in network design, implementation, routing, switching, troubleshooting enterprise networks and redistribution
• Knowledge on OSI Model,TCP/IPSuite,Static Routes, Access - lists.
• Extensive hands-on experience in designing, analysis, configuring and troubleshooting of LAN/WAN architecture in enterprise network with Cisco Routers, Cisco Switches and Cisco firewalls
• Experience in Configuration and troubleshooting of Aventail SSLVPN
• Experience in configurations and troubleshooting of ASA/PIX, Juniper Net screen Firewalls
• Experience in Network management and monitoring using Solar winds, Net flow analyzer, Opsware
• Experience and knowledge in routing protocols like RIP, OSPF, IGRP, EIGRP and BGP
• Expertise in implementation and troubleshooting of protocols such as STP, RSTP, PVST, HSRP, VRRP and GLBP
• Good experience in implementing and managing IP Services like DHCP, DNS and SNMP
• Experience in configuration Voice over IP(VOIP).
• Experience in Configuration of Juniper M, MX series Routers and EX Switches.
• Experience with network authentication services like AAA, RADIUS, TACACS, SSH and network security services like Access List (ACL) and NAT
• Working knowledge on Cisco routers, switches, Cisco software’s and good knowledge of other vendor’s devices Juniper.
• Experience in configuration of MPLS VPN
• Worked on F5 LTM,GTM series like 6400,6800,8800 for the corporate applications and their availability.
• Have working Knowledge on ACE load balancer

TECHNICAL SKILLS:

LAN Technologies: VLAN, VTP, Inter-Vlan routing, STP, RSTP, PVST, HSRP, GLBP

WAN Technologies: ISDN, leased lines and exposure to DS1, DS3, OC3, T1/T3 and E1/E3,MPLS.

WLAN Technologies: Lightweight AP’s, Autonomous AP’s, WDS, WLC, WLSE, Standards - 802.11b/a /g

Cisco Equipment: Cisco routers (CRS, 7500, 7600, 7200, 3800, 3700, 3600, 2900, 2800, 2600, 1900 series,GSR12000)

Cisco Switches: 6500, 4900, 4500, 3700, 3500, 2900 series, Nexus 7k,2k,5k

Firewall Juniper: Net screen 204, NS-500, NS-ISG2000, ASA 5520,PIX (505E/515E/525)

Routing Protocols: RIP, IGRP, EIGRP, OSPF, BGP

Network Security: NAT/PAT, ACL, Firewall Design, VPN Configuration, IDS/IPS, SSL, 3DES, TACACS+, RADIUS

Infrastructure Services: DHCP, DNS, SMTP, TFTP, FTP, HTTP, HTTPS

Network Management: SNMP, Solar winds

Network Analyzer: Net flow

Change Management: Opsware

Documentation: MS office, MS Visio

PROFESSIONAL EXPERIENCE

Confidential, Pittsburgh, PA

Network Security Engineer

Environment: Cisco Routers 7200, 3800, 3700, 2800; Cisco Catalyst switches 6500, 4500, 3500,Nexus 7k,5k,2k;Cisco PIX Firewalls 515, 525,Net Screen, Cisco ASA 5550 Firewall; Routing Protocols OSPF, BGP, RIP ; VTP, VLAN and 802.1Q Trunking, STP;

Responsibilities:

• Implementing High Availability for Juniper Net screen Firewalls for redundancy
• Planning, Designing and migrating old Cyber Guard to Cisco ASA and defining security levels for all network zones
• Established and Configured Network access through internet for project applications in case of Primary link failure
• Worked on Extensively on Cisco Firewalls, Cisco PIX (505E/515E/525/) & ASA 5520) Series
• Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500/PIX security appliance, Failover DMZ zoning & configuring VLANs/routing/NATing with the firewalls as per the design
• Responsible for Cisco ASA firewall administration across our global networks
• Configuring RIP,OSPF and Static Routing on Juniper M and MX series Routers.
• Configuring Vlan,Spanning-tree, VSTP,SNMP on EX series Switches.
• Assit with various duties that will arise including:implementation,configuration, management, rules definition, problem solving, design advice, troubleshooting, updating, maintenance, etc
• Experience in working with Nexus 7010,5020,2148 Switches.
• Experience in configuring virtual device context in nexus 7010 series.
• Test & deploy new IOS features, IOS upgrades, on Juniper and Aventail, testing & simulation of production issues and its resolution before implementation on the field
• Implemented MPLS VPN Networks.
• Configured and tested the routing between provider and member of various customers with redundancy protocols like HSRP, GLBP with Client facing
• Troubleshooting and Configuring of Various routing protocols like BGP,OSPF, RIP and switching protocols like STP,RSTP
• Configured STP prioritization for selection of a Root Bridge.
• Hands on experience in BGP features like load balancing, Route Reflectors, BGP attributes like AS Path, Local Preference, and MED.
• Configuring and Implementation of VSYS in physical Firewall
• Create and test Cisco router and switching operations using OSPF routing protocol, PIX Firewalls Optimize routing using route maps, route redistribution, route filters and fine tuning routing protocol
• Involved in irule management like loading rules.
• Hands on experience testing irules using browser (IE) and http watch.
• Dealt with creating virtual servers,pools,nodes and applying irules for the virtual servers like cookie persistency, redirection of the URL
• Configured HSRP and VLAN Trunking 802.1Q, VLAN Routing using MSFC on Catalyst 6500 switches
• Review Firewall rule conflicts and misconfiguration as well as redundant rules
• Secured network access using Cisco Secure (RADIUS/TACACS)
• Creating dedicated VLANs for Voice & Data with QOS for prioritizing VOICE over DATA
• Worked on configuring and troubleshooting ASA5550 and 5520 firewalls
• Experience in installation, configuration and troubleshooting of LAN, WAN and Datacenters using Cisco routers, switches and firewalls
• Used SNMP protocol for NMS configuration to detect network link failure
• Providing Audit ReportsChecking Redundancy for network and providing 100% up

Confidential, Warren, NJ

Network Implementation Engineer

Environment: Cisco Routers 7600,7200, 3800; Cisco Catalyst switches 2950, 3500, 6500; Net screen 204,500,ISG-1000, ASA 5510 firewalls; Routing Protocols OSPF, BGP, RIP; VTP, VLAN, NAT, PAT, STP; GRE Tunnel

Responsibilities:

• Involved in Configuring and implementing of Composite Network models consists of Cisco7600, 7200, 3800 series routers and Cisco 2950, 3500, 5000, 6500 Series switches
• Designed a reliable and fully redundant network implementing routing protocols OSPF and BGP
• Tested and hands on experience in multi area OSPF topologies
• Hardware Migration of Net screen 208 to ISG-1000
• Implemented Layer 2 security by enabling STP BPDU & Root guard, locking down VLAN trunking
• Worked on security applications like ACL, NAT & PAT and firewall policies
• Configuring and implementing Vsys in one physical Firewall
• Configuring and Troubleshooting DMZ Network Environment by deploying devices like Net screen and ASA
• Established GRE Tunnel Connectivity for Confidential project team
• Co-coordinating with other service providers for link upgrades and new links
• Configured VLANs, Private VLANs, VTP and Trunking on switches
• Secured network access using Cisco Secure (RADIUS/TACACS)
• Implemented the Cisco Secure Access Control Servers for AAA security to offer centralized command and control for all user authentications
• Installed redundant paths on devices using HSRP
• Responsible for layer 2 security, securely managed all switches and routers and deployed a syslog server to allow proactive network monitoring
• Monitored all Cisco equipment’s using Cisco works
• Managing Cisco Firewalls using ASDM and CLI
• Experience in Inter-vlan routing, redistribution, access-lists and dynamic Natting
• Involved in SNMP Network management
• Backups of Cisco router configuration files to a TFTP server
• Implementing and maintaining backup schedules as per the company policy

Confidential, NYC, NY

Network Engineer

Environment: Cisco Routers 2600, 2800; Cisco Catalyst switches 2950, 3500; Routing Protocols EIGRP, OSPF, RIP ; VTP, STP, VLAN; Net screen, ASA,VPN;

Responsibilities:

• Responsible for managing & operations of Cisco 2600 series, 2800 series router, as well as 2900 series, 3700 series Cisco switches. Maintained highly scalable & redundant paths for system infrastructure
• Configured Cisco ASA and moved all the traffic from old Cyber guard and radware to ASA
• Implemented ISL and 802.1Q for communicating through VTP.
• Configured dedicated leased lines from DB Network to Customer Site
• Performed switching technology administration including VLANS, inter-Vlan routing, Trunking & Ether-channel
• Worked with a team for migration from EIGRP to OSPF routing
• Managed the IP address space using subnets and variable length subnet masks (VLSM)
• Enable STP attack mitigation (BPDU guard, Root guard), disabling all unused ports & putting them in unused VLAN.
• Worked with a team to troubleshoot & maintain WAN, LAN & VPN communications.
• Built IPSec based Site to Site VPN tunnels between various business partner locations.
• Configuring and providing web based access via Aventail SSL VPN
• Involved in lab testing and validation of network modifications before implementation
• Monitor performance of network and servers to identify potential problems like Solar winds and Net flow
• Configuration of SSH on all network switches and routers for secure management purposes
• Responsible for creating and updating documentation on incident response and problem resolution

Confidential

Network Engineer

Environment: Cisco Routers 3600,7200; Cisco switches 3750,6500; Routing Protocols EIGRP, OSPF, RIP ; VTP, STP, VLAN; Net screen, Cisco ASA

Responsibilities:

• Configuration of Cisco Routers 3600, 7200 and Cisco IOS switches 3500 and 6500 and ASA
• Moved the Tunnel traffic from VPN Concentrator box to Cisco ASA
• Implementing IP Routing protocols OSPF.
• Securing the network with Access lists (ACL) applied on router interfaces and firewalls.
• Configured Trunking using dot1q and Ether channels using PAGP.
• Creating VLANs and Inter-VLAN routing on Multi Layer Switch of Catalyst series 3750, 6500 using MLS.
• STP attack mitigation using BPDU Guard, Root Guard, authentication for VTP, disabling all unused ports by putting them in unused VLAN and ensuring DHCP attack prevention wherever needed.
• Configured Site-to-Site VPNs using ASA Firewall to ASA Firewall.
• Upgrade and backups of Cisco IOS to TFTP server.
• Secured network access using Cisco Secure (RADIUS/TACACS)
• Installed and configured Cisco Pix firewalls 515 E and 525 Series
• Monitoring Network infrastructure using SNMP tools like Solar winds and Net flow.
• Monitoring Network changes using Opsware
• Managing Firewall logs in Net screen and ASA
• Monitoring traffic through ASA and managing using Cisco ASDM and CLI
• Revoking and Renewing access based on user request

Confidential

Network Assistant

Environment: Cisco Routers 2600, 2800, 3800; Cisco Catalyst switches 2900, 3500; Routing Protocols OSPF, RIP, VLAN, NAT

Responsibilities:

• Configuration and maintenance of Cisco 2600 series routers with OSPF protocols.
• Configuration and maintenance of Cisco 2900 series switches including VLANS and Trunking protocols.
• Implementation of NAT with a pool of public IP addresses.
• Installed, configured, & maintained SMTP, DNS and DHCP on Windows 2000 Server and also configured a FTP server, including installing certain applications on the server.
• Configured HSRP for redundancy on Routers.
• Provided backup to device configurations on TFTP Servers and Taking Monthly Redundancy tests for the WAN links.
• Configured wireless access points and registered all in one single Wireless Controller.
• Redesigning of all WAN links by keeping head office as Hub and branch offices as Spokes
• Worked with senior engineers to design and document the design of local area networks for the company.
• Responsible for gathering and compiling data for special projects as well as prepare weekly status reports.
• Real time monitoring and network management using Solar winds, Net flow, and Opsware.
• Handled the tasks of documenting network problems and resolutions for future reference.
• Involved in effective communication with vendors, peers and clients in resolution of problems, equipment
• Configuration of SSH on all network switches and routers for secure management purposes
• Perform replacements of failed hardware and software up gradations
• Travel to client locations as per requirements