SUMMARY

• CCNA Certified Professional with around 6 years of experience in routing, switching, firewall technologies, system design, implementation, troubleshooting of complex network systems, enterprise network security, wireless design, data network design, capacity management and network growth.
• Extensive hands - on experience in Palo Alto, Juniper and Cisco network design, deployment and troubleshooting. Experienced with implementing the firewall rules on Checkpoint.
• Have in depth knowledge and working experience on NxOS CATOS, Native IOS.
• Extensive experience in configuring and troubleshooting of routing protocols RIP v1/v2, EIGRP, OSPF, BGP and TCP/IP.
• Worked on network topologies and configurations, TCP/IP, UDP, Frame Relay, Token ring, ATM, bridges, routers, hubs and Switches.
• Have experience installing and troubleshooting Cisco routers and switches.
• Strong hands on experience in installing, configuring, and troubleshooting of Cisco 7600, 7200, 3800, 3600, 2800, 2600, 2500 and 1800 series Routers, Cisco Catalyst 6500, 4500, 3750, 2950, 3500XL, Nexus 5K, 7K series switches.
• Switching tasks include VTP, ISL/ 802.1q, IPSec and GRE Tunneling, VLANs, Ether Channel, Trucking, Port Security, STP and RSTP. Configuring juniper router and switches.
• Worked on Juniper switches such as EX-4200/EX-8200.
• Setup and configured SevOne network monitoring tool.
• Deploying F5 load balancing in a network environment.
• Network security including NAT/PAT, ACL, VPN Concentrator, IDS/IPS, and ASA/PIX/ASR Firewalls.
• Strong work experience with the following technologies MPLS, Q0S, VPN, WLAN and Multicast.
• Well Experienced in configuring protocols HSRP, GLBP, VRRP, ICMP, IGMP, PPP, PAP, CHAP, and SNMP. Configured RIP, EIGRP, OSPF.
• Experience in installing and configuring DNS, DHCP server.
• Gained experience working with Layer-2 and Layer-3 Switching and Security.
• Hands-on experience with Cisco equipment, Juniper equipment, CDN platforms, test platforms, Spirent.
• Good knowledge of Switched Virtual Interface.
• Strong knowledge in HSRP, VRRP redundancy Protocols. Fault Tolerance using HSRP and VRRP.
• Good knowledge of OSI Model and TCP/IP networking standards with protocols such as SNMP, FTP, ICMP and IPv6.
• Extensive hands-on experience with complex routed LAN and WAN networks, routers and switches.
• Have extensive experience in setting up LAN and troubleshooting related issues. Have WAN awareness and assisted in setting up and troubleshooting various WAN related issues.
• Hands-on configuration and experience in setting up Cisco routers to perform functions at the Access, Distribution, and Core layers.
• Experience in the setup of Access-Lists, and RIP, EIGRP, and tunnel installations.
• Proficiency in configuration of VLAN setup on various Cisco Routers and Switches.
• Installation of retail shops equipment’s such as POS workstations and servers, Shoppers Tracking Systems and Modems.
• Experienced with Firewall administration such asJuniper, Check Point or Cisco
• Experience with Change management process and Project documentation tools like Excel and VISIO.

TECHNICAL SKILLS

LAN Technologies: VLAN, VTP, Inter-Vlan routing, STP, RSTP, PVST, IGMP, 802.1x

WAN Technologies: Frame Relay, ISDN, PPP, ATM, MPLS, Channel & Leased lines, SES

Network Securities: NAT/PAT, VPN, Filtering, Load Balancing, IDS/IPS, IPSec, ACL

Routing Protocols: RIP, EIGRP, OSPF, BGP, HSRP, PIM, IPv6

Routed Protocols: TCP/IP, IPX/SPX

Infrastructure Services: DHCP, DNS, SMTP, POP3, FTP, TFTPNetwork Managements SNMP, SSH, Telnet, ICMP

IP Telephony: VOIP, FXO/FXS/E&M/T1/ISDN/ PRI, Call manager Express.

Operating Systems: Windows 8.1/ 7 /Vista/XP/NT/2003, MS DOS, IOS, UNIX, Linux

Languages/ Tools: C, C++, VBScript, Visual Studio 2008, MATLAB, Dream weaver, Python

PROFESSIONAL EXPERIENCE

Confidential, Reston, VA

Network Security Engineer

Responsibilities:

• Configuration and troubleshooting of Firewalls ASA 5506, ASA 5510, Checkpoint VPN1 R75/R77.F
• Configuration and troubleshooting of Site to Site as well as Remote Access VPN on Cisco ASA and Check Point firewalls.
• Responsible for IP routing using BGP, OSPF, static routers and switching using STP/VTP/VLAN. Responsible for design, implement and, maintenance of Cisco, Checkpoint,Juniper.
• Configuring failover and working on ssl-vpn when in active/standby failover on ASA. Bluecoat IP Address Management (IPAM).
• Experienced inWNMS, OMCR, L3 Support and Troubleshooting for RANNetwork.
• Expertise in implementing Security policies like VPN, Access list andNACappliances.
• Managing and troubleshooting of Cisco 12K GSR, 7200VXR andJuniperM320 router including installation, upgrade, configuration andnetworkmanagement.
• Installation of Operating Systems Win98, Win XP, Win NT, Win 2000, Win 2003 etc
• Experience in Checkpoint firewalls, Palo Alto Firewalls, Juniper Firewalls, Cisco WSA/CWS, Cisco ASA, SSL VPN, Cisco Nexus, Cisco ACS, Cisco ISE, IPS, and MicrosoftTMG.
• Provided full visibility and notification of authorized and unauthorizednetworkaccess with integration of CISCO ASA andNACsolution. Provide level 2 support for allWindowsServerplatforms and applications.
• Installed high availability Big IP F5 LTM and GTM load balancers to provide uninterrupted service to customers.
• Manage and troubleshoot client VPN connections, utilizing Cisco Anyconnect client software.
• Good Experience in Troubleshooting and monitored routing protocols such OSPF, EIGRP & BGP.
• Implemented security policies using ACL, Firewall, IPSEC, SSL, VPN, IPS/IDS, AAA(TACACS+ & RADIUS).
• Worked on Check Point cluster and installed policies on the multiple context environment.
• Implementation and configuration of VPN Tunnels.
• Experience with convert Checkpoint VPN rules over to the Cisco ASA solution. Migration with both Checkpoint and Cisco ASA VPN experience.
• ImplementedNetworkpacket level monitoring usingWireshark, Solarwinds.
• NACproducts test against the NIH requirements, helped draft a Test/Evaluation plan, set up lab to test all 3 products. Documentation of test results.Physical cabling, IP addressing, Wide Area Network configurations (Frame-relay)
• Developed Python scripts to automate audit and analysis. Configuring site to site to VPN connectivity.
• Configuring MPLS, VPN (IPSEC, GRE) in VPN concentrators and QOS in integrated networks.
• Set up dynamic NATs and Static NATs for new company Internet gateway on Cisco ASA.
• Configured Cisco ASA Firewalls (5506, 5510, 5555, 5585 series) and built new DMZ Environment for all Internal Servers.
• Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500 Series security appliance, Failover DMZ zoning & configuring VLANs/routing/NATing with the firewalls as per the design .
• Performed network administration of Active Directory Server DHCP Server, DNS Server, Firewall, Windows NT Server, Windows 2000 Advanced Servers.
• Created and modified Nodes, Pools, VIPs, Monitors, SSL profiles andiRules.
• Deploying Layer 2 security in Server Farms by configuring switch for 802.1x port based authentication.
• Responsible for Cisco ASA firewall administration across our global networks.
• IDS/IPS Incident response and investigations.

Environment: Firewalls ASA, MPLS, VPN, iRules, Nodes, Pools, VIPs, Monitors, SSL profiles, Wireshark, Solarwinds, WNMS,OMCR, L3 Support, Checkpoint, Cisco ASA, DNS Server, IDS/IPS, NATs, IPSEC, SSL, ACL. STP/VTP/VLAN, BGP, OSPF, static routers.

Confidential, Germantown, MD

Network Engineer

Responsibilities:

• Configured Routing protocols such as RIP, OSPF, EIGRP, static routing and policy based routing.
• Configuration 7609, 7606 with OSPF and catalyst 6509, 3550 switches with various VLAN.
• Create and testCisco router and switching operations using OSPF routing protocol, ASA Firewalls, and MPLS switching for stable VPNs.
• Configuration and troubleshooting link state protocols like OSPF in single area and multiple areas.
• Configured HSRP and VLAN trunking 802.1Q, VLAN Routing on Catalyst 6500 switches.
• Optimized performance of the WANnetworkconsisting of Cisco 3550/3560/6500 switches by configuring VLANs.
• Configured VLANs with 802.1q tagging. Configured Trunk groups, ether channels, and Spanning tree for creating Access/distribution and core layer switching architecture and Implementing 802.1x on access switches.
• Configured BPDU Guard, port-fast, uplink fast and other spanning tree features.
• Configuration and troubleshooting of Cisco 2600, 3000, 7000 Series routers.
• Implementing NAT solution's on WAN applications.
• Planned, tested and evaluated various equipments, systems, IOSs and procedures for use within the Network/ security infrastructure.
• Upgrading IOS, troubleshootingnetworkoutages.
• Continually monitor, assess and improvenetworksecurity, test and implement new security technologies.
• Good knowledge on Cisco ACE load balancers and worked with server team on some servers.
• Participate in all technical aspects of LAN, WAN, VPN and security Internet Service projects including, short and long term planning, implementation, project management and operations support as required.
• Worked on Cisco Routers, Active /Passive Hubs, Switches, Cisco PIX Firewall.
• Having Data Center Design Experience, installing and Configuring Network Devices in a Data Center including.
• Hands-on experience in the network management of circuits using TDM and Frame Relay network, performing configuration and provisioning management, fault management and performance monitoring.

Environment: RIP, OSPF, EIGRP, static routing, OSPF, catalyst, NAT, LAN, WAN, VPN, TDM, Cisco Routers, Active /Passive Hubs, Switches, Cisco PIX Firewall.

Confidential, Colorado, DE

Firewall Security/Network Engineer

Responsibilities:

• Worked on call flows involving IMS architecture - VOLTE, IP messaging (RCS).
• Performed Proxy testing which serves Layer-7/ HTTP traffic and other Proxy features like HEADER RICHEMENT, TFD, LTMI and Video Optimization.
• Centralize and unifynetworkaccess policy management with CiscoISEto provide consistent, highly secure access to end users, whether they connect to yournetworkover a wired, wireless, or VPN connection.
• Experience and worked on protocols: SIP, DIAMETER, HTTP, GTP, RADIUS, and TCP/IP.
• Firewall Log monitoring usingRSAEnvision and Q RADAR.
• Manage a variety of other security appliances (Bluecoatproxy servers, IDS/IPS appliances, NAC Appliances,networktaps) etc.
• Choose WAN services to meet customer requirements. MAN, Frame Relay,T1
• Working with carrierEthernettechnologies like L2vpn, VPLS, VPWS.
• Worked with Nagios for monitoring ofnetworkservices (SMTP, POP3,HTTP, NNTP, ICMP, SNMP, FTP, SSH)
• Configure Deploy, and Troubleshoot Greenville Health System's WirelessNetworkutilizing Cisco WCS, wireless.
• Usesnetworkinfrastructure tools (CA Spectrum, Solar Winds IPAM, TCPDump, Packet Capture,Wireshark) for troubleshooting, isolation and corrective action ofnetworkoutages.
• Expert working knowledge including the ability to setup, configure, upgrade, manage and troubleshoot Cisco routers, switches, VPN concentrators, firewalls, 802.11 wireless access points and load balancers.
• Datacenter upgrade project utilizing Cisco Nexus datacenter switches (Nexus 7000, 5000, and 2000) utilizing best practice design (multiple VDC, vPC, VPC+ VRFFabricpath, OTV, FEX, UCS FI etc).
• Experience configuring and troubleshooting on CitrixNetScalarLoad Balancer.
• Experience on amesh6500 and 5500 series routes and switches to support the core trading system.
• Integration, Testing, Verification and Software upgrade of Ericsson’s Multi Server Proxy (MSP) Solution in AT&T’s Core Network for optimizing HTTP, MMS and video traffic.
• Providing ongoing customer support throughout implementation as well as driving new solutions development for MSP.
• Solution deployment and implementation was done on various Servers running on Linux.
• Configured network interfaces, routes, DNS, DNAT, NTP and SNMP on traffic servers and VLAN on network switches.
• Worked and extensively VPC andFabricpathon Cisco Nexus switches.
• Created Test Plans and executed regression and call-flow testing between Mobile Proxy, RADIUS Server, LDAP server, F5 Load Balancer and Webserver using Wireshark and Pureload.
• Worked in gauntlet, PGP, proxy servers and Solaris.
• Performed Deep packet inspection using Wireshark for various protocols like RADIUS, HTTP, LDAP and SSL.
• Configuring & managing around 500+Network& Security Devices that includes Juniper (NetScreen) Firewalls, F5 BigIP Load balancers, CitrixNetscalarand 3DNS, Blue Coat Proxies and Plug Proxies.
• Implementation of EAP-AKA protocol on voice over WIFI calling.
• Implementation of Radius and Diameter (RFC 3588, RFC 4072) interface with EAP for AAA Controller.

Environment: Cisco 2948/3560/4500/3560/3750/3550/3500/ , Arista 7 K series witches and Cisco 3640/ /3845/3600/2800 routers, Fortinet Firewall, Nexus 7K/5K, Cisco ASA 500, Checkpoint, windows server 2003/2008 F5 BIGIP LTM, RIP,OSPF,BGP,EIGRP,LAN,WAN,VPN,HSRP, F5 Load Balancers, Checkpoint.

Confidential, Duluth, GA

Network Engineer

Responsibilities:

• Responsible for entire LAN and WAN maintenance and troubleshooting of the company network
• Experience with moving data center from one location to another location, from 6500 based data center to Nexus based data center.
• ConfiguredBluecoatas a forward proxy for all Web URL Filtering.
• Knowledge and skill of 802.11 a/b/g/n LAN normal for wireless Technology.
• Experience working with Cisco IOS-XR on the ASR9000 devices for MPLS deployments in data center.
• Experience working with Cisco Nexus 2148 Fabric Extender and Nexus series to provide a Flexible access Solution for a datacenter access architecture.
• Experience with configuring Nexus 2000 Fabric Extender (FEX) which acts as a remote line card (module) for the Nexus 5000.
• Experience with setting up MPLS Layer 3 VPN cloud in data center and also working with BGP WAN towards customer.
• Configured and managed VLANs, 802.1Q Trunk, RPVST+, Inter-VLAN routing, HSRP and LAN security for Layer-2 and Layer-3 switching domains as per the organization's requirement plan.
• Tested various BGP attributes like local preference, MED, Weight and replicated customer issues in the testing environment lab
• Routing protocol configuration such as OSPF, EIGRP and BGP, Router redundancy configuration (HSRP, VRRP and GLBP). Wireless LAN (Access point, LWAPP).
• Configured ASA 5540 to ensure high-end security on the network with ACLs and Firewall
• WAN Technologies (PPP, Frame Relay, ATM, ISDN, Site to Site VPN).
• Provided application level redundancy and availability by deploying F5 6500 series LTM load balancers.
• Responsible for technical evaluation, troubleshooting, overall project management, problem solving and turn-up of the service with the ISP.
• Created and designed network layout and documented network system design with detail information using Visio.

Environment: LAN, WAN, HSRP, VLANs, Cisco Nexus, OSPF, EIGRP and BGP, HSRP, VRRP and GLBP, Access point, LWAPP.

Confidential

Network Administrator

Responsibilities:

• Network Administrator responsible for the full Planning, designing, installation and administration of the Corporate WAN (wide area network).
• Configuration, Management, Troubleshooting of Network devices (Routers, Switches, Firewalls, Servers, DSL Modems etc.).
• Worked on Routers Cisco 2620, Cisco 3750, and Cisco 2950 Switches & Link sys wireless access points.
• Maintained complex LAN/WAN networks with several VLANS and provided support for routing protocols. OSPF, RIP, IGRP, RIPv2, EIGRP, Static and default route.
• Managed IP addressing and implemented IP Access Lists
• Configured and troubleshoot VLAN, VTP, STP, RSTP and Trunks
• Monitored the network with Cisco Works 2000
• Provide support and implementation planning for disaster recovery.
• Documented the design, implementation and troubleshooting procedures.
• Installed and configured MS Windows 2003 Servers. (Win32Bit & 64 Bit).

Environment: WAN, Solar winds, Windows XP, Cisco, OSPF, RIP, IGRP, RIPv2, EIGRP.