SUMMARY

• 8+ years of professional experience in planning, implementing, configuring, troubleshooting of networking system on Cisco and Juniper devices
• Excellent knowledge of TCP/IP protocols IPv4 and IPv6
• Strong hands on experience on Cisco Catalyst (3850, 3650, 6500) series switches, Cisco (2500, 2600, 2800, 3600, 3800, 7200) series Routers, ASA Firewall (5505/5510), Load Balancers using Cisco ACE, F5 LTM/GTM, Security Device Manager (SDM), Cisco Works, HP Open View, Solar Winds, Sniffer, Palo Alto Networks Firewall models (PA - 2k, PA-3K and PA-5K)
• Experience in Cisco: Physical cabling, IP addressing, Wide Area Network configurations (DMVPN, MPLS), Routing protocol configurations (RIPv2, EIGRP, OSPF, BGP)
• Hands-on experience in installing, configuring, maintaining and troubleshooting Cisco Switches, Cisco Routers, Juniper EX Switches, Juniper MX Routers and Cisco Nexus Switches
• Worked on configuring the Nexus 5K Aggregation Switch and Nexus 2K Fabric Extenders. And Implemented VDC, VPC, and OTV on the Nexus 5K and 7K switches
• Experience in implementing and troubleshooting complex layer 2 technologies such as VLAN Trunks, VTP, Ether-channel (LACP), RSTP, PVSTP+ and MST
• Experience in Designing and implementing F5 BIG-IP load balancer
• Hands on experience in implementation and deploying BIG-IP F5 LTM load balancers for load balancing and network traffic management for business applications
• Worked on F5 LTM, GTM series like 6400, 6800, 8800 for the corporate applications and their availability
• Implementation of HSRP, VRRP for Default Gateway Redundancy
• Expert level knowledge on OSI model and TCP/IP protocol suite
• Managed inventory of all network hardware, Management and Monitoring by use of SSH, Syslog, SNMP, NTP
• Strong knowledge of TACACS+, RADIUS implementation in Access Control Network
• Experience in Designing and assisting in deploying enterprise-wide Network Security and High Availability Solutions for ASA
• Experience in Data Center Design with Cisco Nexus in troubleshooting of DNS, DHCP and other IP conflict problems.
• Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500 security appliance, DMZ zoning & configuring VLANs/Routing/NATing with the firewalls as per design
• Installed and configured Cisco Firewalls ASA NGFW 08/5516) Series
• Experience with Linux Command Line Interfaces for logging into various Linux servers, etc
• Strong knowledge of Cisco and Juniper software (IOS/IOS-XR/IOS- XE and JunOS) and hardware
• IOS/JunOS upgrade for Cisco & Juniper routers and switches.
• Installation, configuration, and management of WAN optimizer, Riverbed Steelhead
• Experience with hardware load balancer administration and support, preferably with F5 and Cisco ACE load balancers
• Experience with the conversion of Checkpoint VPN rules over to the Cisco ASA technology. Migration experience with both Checkpoint and Cisco ASA VPN
• Experience in layer-3 Routing and layer-2 Switching
• Provided administration and support on Bluecoat Proxy for content filtering and internet access between site and VPN client users
• Deployment and Management of Bluecoat proxies in the forward proxy scenario as well as for security in reverse proxy scenario
• Proficient in using Solar Winds Network Management tools like Network Performance Monitor (NPM), Netflow Traffic Analyzer, Putty and Cisco Prime Infrastructure

TECHNICAL SKILLS

Routers: Cisco Routers series 7600, 7200, 3900, 3600, 2800, 2600, 2500, 1800; Cisco ISR series 1900, 2900, 3800, 4000; Cisco ASR series 900 and 1000; Juniper T1600, MX2020, M10i, M120, J2350, J4350

Routing Fundamentals and Protocols: Routed and Routing protocols EIGRP, OSPF, BGP, IPX; MPLS, IPv4, subnetting, VLSM, Static routing, ICMP, ARP, HSRP, VRRP, Route Filtering, Multicast, 802.11, Policy Based Routing, Redistribution, Port forwarding

Switch Platforms: Cisco Catalyst series 2960, 3560, 3750, 3850, 4500, 6500, 7000; Nexus series 2K5K, 7K; Juniper EX3300, EX4200, EX4600

Switching Fundamentals and Protocols: Ethernet technologies, LAN networks, MAC, VLAN and VTP, STP, PVST+, MulticastRSTP, Multi-Layer Switching, 802.1Q, Ether Channel, PAgP, LACP, CDP, HDLC, RARP

Firewall Platforms: Juniper Net screen 6500, 6000, 5400, Juniper SSG, SRX5600, SRX5800, Checkpoint (NGX, R65, R70 and R71), Cisco Firewalls (ASA 5505, 5506-X, 5585), Palo Alto Networks (PA series 2K, 3K,5K)

Security Protocols: Standard and Extended ACLs, IPsec, VPN, Port-security, SSH, SSL, IKE, AAA, Prefix-lists, Zone-Based Firewalls, NAT/PAT, Ingress & Egress Firewall Design, Content Filtering, Load Balancing, IDS/IPS, URL Filtering, L2F, IDS, TCP Intercept, Router Security, SNMP trap

Network Management and Monitoring: Wireshark, HP Open View and NNMi 8xi, Cisco Prime, Security Device Manager (SDM), CiscoWorks; TCP Dump and Sniffer; SolarWinds Netflow Traffic Analyzer, Network Performance Monitor (NPM), Network Configuration Manager (NCM)

Load Balancers: F-5 (BIG-IP) LTM 2000, 3900, 6400, 6800, Bluecoat SG8100, AV 510, Citrix NetScaler

WAN technologies: Frame-Relay, ISDN, ATM, MPLS, PPP, DS1, DS3, OC3, T1 /T3 lines, SONET

Networking Protocols and Fundamentals: DHCP and DNS server, Active Directory Management, NTP, NDP, TCP, UDP, FCP, Network Implementation, Troubleshooting techniques, NHRP, NetBIOS, NFS, FTP, TFTP, HTTP, PAP, PPTP, SIP Trunking, SNMP logging, SMTP, RADIUS and TACAS+, PBX servers, SDN, SAN

Operating Systems: Windows 10/7/XP, MAC OS, Windows Server 2012R2/2008/2003, Linux, UNIX

Wireless Technologies: Canopy Wireless Devices, D-Link Point-to-point Wireless, D-Link APs, CISCO 1200 series APs, Aruba wireless and APs, Cisco Meraki, Linksys Wireless/Wi-Fi Routers

PROFESSIONAL EXPERIENCE

Confidential, Atlanta, GA

Senior Network Engineer

Responsibilities:

• Maintained a lab environment that consists of various Routers and L2/L3 switches.
• Supporting EIGRP, OSPF and BGP based network by resolving level 2 & 3 problems of internal teams & external customers of all locations
• Worked on Cisco 2500, 2600, 2800 series routers and 1900, 2900, 3560, 3750 series switches.
• Configuring STP (PVST, RSTP) for switching loop prevention and VLANs for data and voice along with Configuring port security for users connecting to the switches.
• Experience working with data center deployment where we converted from Cisco 6500 to Nexus.
• Experience working with Nexus 5020, 2148, 2248 devices
• Experience configuring VPC (Virtual Port Channel), VDC (Virtual Device Context) in Nexus 5020
• Experience with configuring Nexus 2000 Fabric Extender (FEX) which acts as a remote line card (module) for the Nexus5000
• Configured routing protocol EIGRP on 2600, 2800 routers and static routing on 3750 switches.
• Implementing QoS on PE and CE as per BTs templates and upgrading bandwidth and CoS as per client requirement.
• Worked on stacking and upgrading switches like 3550 and 3750 series.
• Managed inventory of all network hardware, Management and Monitoring by use of SSH, Syslog, SNMP
• Implemented and configured SNMP, Syslog and traps on Cisco routes to allow for network management
• Handling Complaints for Intranet and Extranet over MPLS backbone. Checking the connectivity between different locations
• Experience in migration of VLANS.
• Performed Configuration on ASR 9K Pairs includes HSRP, Bundle Ethernet Config, Assigning DHCP profiles
• Configuring objects such as Load Balancer pools for local traffic management on F5 Load Balancers
• Traced OSI layers and extracting the packet information at each and every layer. Worked on Wireshark, TCP/IP, and OSI Layers for packet tracking and Drafted & finalized progress
• Deploying and decommission of VLANs on core ASR 9K, Nexus 7K, 5K and its downstream devices and also configure 2k, 3k,7k series Routers
• Design and Implementation of F5 GTM based on topology load balancing methods.
• Implementation of F5 systems
• Implemented F5 ASM for Internet Facing LTM virtual servers providing applications layer 7 firewall protection, configuring and managing F5 Web Accelerator module and Application Security Module (ASM) technology or with similar/competing ADC and Security product solutions
• Configuring and resolving various OSPF issues in an OSPF multi area environment.
• Implemented, configured BGP WAN routing, converting OSPF routes to BGP (OSPF in local routing)
• Installed and maintained Cisco and F5 Load Balancer and documentation
• Configured VTP on Core and several access layer switches, implemented Layer2 Etherchannel between various switches and hosts.
• Worked on updating the SSL certificates to the application URL using the F5 LTM and F5 GTM
• Worked on creating policies in the network application through app-id’s and content-id’s for the internal hosts.
• Designed application mapping and application delivery using F5 BIG IP LTM.
• Used solarwinds for monitoring and troubleshooting network devices in different time zones.
• Assisted in troubleshooting LAN connectivity and hardware issues in the network
• Worked on remedy ticketing tool for handling different priority level tickets.

Environment: Cisco catalyst switches 6500, 3750, 3560, 2900, 1900, Cisco 2500, 2600, 2800 & 3800 ISR branch routers, Solar winds, QoS, MPLS

Confidential, Urbana, IL

Network Engineer

Responsibilities:

• Deployed and maintained security/network devices and data centers for Service provider network
• Involved in the configuration & troubleshooting routing protocols like MP-BGP, OSPF, LDP, EIGRP, BGP v4, and MPLS
• Experience with Installing and troubleshooting Data center migration with 24/7 support
• Expert in configuring Cisco Routers, Catalyst Switches, Nexus Switches
• Worked extensively with ASR 9K, Nexus 7000, 5000, 2000, Cisco 6500, 3560/3750s series multilayer switches
• Upgraded from Cisco Catalyst 6500, 3750 to Nexus 5500 & 2000
• Experienced working on CISCO NEXUS data center infrastructure with 2k, 5k and 7k series switches by enabling networked devices to communicate effectively
• Configured Nexus 2000 Fabric Extender (FEX) which acts as a remote line card (module)for the Nexus 5000 to connect servers and storage devices
• Perform ISSU upgrade on Nexus 7010 devices by operating the supervisors in active/standby mode on the devices by determining ISSU compatibility
• Configured and maintained VDCs in 7018 switches, maintained VRFs in those separate VDCs. Operated in OTV to extend L2 VLANs amongst data centers over IP on Nexus 7018 switches.
• Scheduled maintenance of Nexus 2248, 5548 and 7010 switches so that there are no Orphan ports in the network.
• Upgradation of nexus OS from 6.2.2a to a higher version to increase performance and support new features on both N7010 & N7710 chassis
• Worked on configuring cisco 3850, 4500E series switches to implement information sharing and resource allocation for increased productivity
• Created object, groups, updating access-lists on Check Point Firewall, apply static, hide NAT using smart dashboard.
• Monitor performance of network appliances and WAN utilizing using network analyzers like Wireshark and SolarWinds
• Experience with the connectivity of Cisco Networking Equipment with F5 Load Balancer
• Implemented Zone-Based Firewalling and Security Rules on the Palo Alto Firewall
• Configuration and providing management support for Palo Alto and Checkpoint Firewalls (R75 and R77)
• Security configuration on Wireless LAN using protocols PEAP, EAP-FAST
• Experienced with Aruba and Cisco WLAN and Controller config files to help Admin with WLAN troubleshooting
• Worked with Aruba Access point as a Public Wi-Fi and successfully implemented Wireless Access Point
• Assigning RADIUS and TACACS+ for new deployments in production environment. AAA for users to implement changes on production devices. Most of these devices are cisco propriety
• Successfully configured and maintained Site to Site IPSEC and SSL VPN's on Palo Alto firewalls
• Palo Alto design and installation (Application and URL filtering, Threat Prevention, Data Filtering)
• Helped installed F5 VIPRION load balancers for one of our new data centers
• Configured Cisco ISE for Wireless and Wired 802.1x Authentication on Cisco Wireless LAN Controllers, Catalyst Switches, and Cisco ASA Firewalls
• Extensive Knowledge on the implementation of Cisco ASA 5500 series and checkpoint R 75 firewalls
• Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500/PIX security appliance, Failover DMZ zoning & configuring VLANs/routing/ NATing with the firewalls as per the design.
• Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500
• Experience with the connectivity of Cisco Networking Equipment with F5 Load Balancer
• Implemented Zone-Based Firewalling and Security Rules on the Palo Alto Firewall
• Configuration and providing management support for Palo Alto and Checkpoint Firewalls (R75, R76 and R77).
• Designing and implementing F5 BIG-IP load balancer (VIPRION PLATFORM)
• Administering and deployment of servers and services as needed in large WAN
• Designed application mapping and application delivery using F5 BIG IP LTM. Configured Virtual IPs and servers on F5 and associated pool and pool members to it
• Installed high availability Big IP F5, configured LTM and GTM Services to provide uninterrupted service to customers
• Design and implement Wireless Intrusion Prevention Systems (WIPS) to enforce security policies
• Installing Cisco Wireless LAN Controllers and Wireless Access Points
• Install and upgrade Cisco Wireless LAN equipment including but not limited to: 1100, 1200, 1300 and 3500 series Access Points; 4400 and 5500 series Wireless LAN controllers; 6500 & 3750 Core switch routers; 3560 & 3750 series switches
• Monitor and troubleshoot BGP, EIGRP, IS-IS Routing protocols, and cellular backup circuits via ICMP and SNMP ticketing systems
• Implementing Citrix NetScaler 10 for Networking and Traffic Optimization (CCA) (BETA)
• Working on Cisco Catalyst 6509 and 4507 series switches for LAN requirements that include managing VLANs, Port Security and troubleshooting LAN issues
• Implemented SNMP on Cisco routes to allow for network management. Completed the installation and configuration of T1, T3 & OC3 circuits
• Responsible for implementing QoS prioritizing voice traffic over a data.
• Blacklisting and Whitelisting of web URL on Blue Coat Proxy servers
• Worked on design, configuring and managing of Blue Coat Proxy Servers
• Deploying Cisco ASA and Bluecoat ProxySG (Web Security Appliance) S170 for URL Filtering Policies
• Worked on Blue Coat Proxy SG to safeguard web applications (Blacklisting and Whitelisting of web URL) in extremely untrusted environments such as guest Wi-Fi zones
• Adding agents (IDS/IPS) at Host and Network level to Bluecoat Sentinel

Environment: Juniper routers and switches, Cisco routers 7200; Cisco Catalyst switches 6500, 4500; Routing Protocols OSPF, BGP; Layer 2 protocols STP, VTP, VLAN; FHRP like HSRP, GLBP; Aruba Controllers 6000, 3600, 3400 Big-IP F5 Load Balancer; MS Visio, Blue Coat Proxy Checkpoint, Cisco ASA and Palo Alto firewalls

Confidential, Montgomery, AL

Sr. Network Engineer

Responsibilities:

• Installing, Configuring and troubleshooting Cisco Routers (ASR 1001, ISR 900, 2800) and Catalyst Switches (6500, 3750) to perform functions at the Access, Distribution, and Core layers
• Experience with configuring routing protocols such as OSPF and EIGRP. Configure Policy based Routing
• Implementation and troubleshooting of Juniper switches, Routers and Firewall.
• Experience with configuring Load Balancing methods in F5 LTM
• Worked on Catalyst 6509 switches and configured Inter-VLAN Routing
• Experience with configuring Hot Standby Routing Protocol (HSRP) and VLAN Trunking Protocol (VTP)
• Installed and configured Firewalls for LAN and WAN
• Performed Configuration on ASR 9K Pairs includes HSRP, Ether-channels and VRF’s
• Involved in Migration from EIGRP to OSPF as the primary routing protocol
• Deployed the Cisco 3500 Access Points using Cisco Wireless controllers 5500 and 2500 and WCS System
• Experience working in environments with diverge network systems and components like Nexus 5000, Nexus 1000V, Nexus 7000
• Performed load balancing and application level redundancy by deploying F5 BIG-IP LTM 3900
• Analyzed, designed and replaced aging Cisco ASA firewall architecture with the new Next Generation Palo Alto firewalls for URL filtering and DPI
• Configuring rules and maintaining Palo Alto Firewalls and analyzing of firewall logs
• Software Upgrades for Palo Alto Devices and integrating Active Directory/LDAP services
• Virtual Port Channel configuration on the Cisco Nexus 5000 series
• Virtual Device Context configuration on the Cisco Nexus 7010 series
• Configuring Virtual Chassis for Juniper switches EX-4200; Firewalls SRX-210
• Used Spanning Tree Protocol and configured BPDU Guard, Port-Fast, Up-Link Fast
• Experience with installing and configuring Spanning Tree Protocol, (dot1q) and Ether-channels on Campus Network Design Architecture.
• Configuring, testing, and troubleshooting routing and switching issues and related protocols associated with packet networks including MPLS and traffic engineering (QoS)
• Performed installation and configuration Cisco Secure Access Control Server (ACS) configuration for AAA (RADIUS) authentication
• Experience with Monitoring wireless networks and performing site surveys
• Cisco ASA Firewall troubleshooting and policy change requests for new IP segments that either come on line or that may have been altered during various planned network changes on the network
• Extensive Knowledge on the implementation of Cisco ASA 5500 series and checkpoint R-75 firewalls
• Experience with troubleshooting network outages and upgrading Cisco OS (IOS, IOS-XR)
• Implemented NAT’s solutions on Cisco Routers and configured IP access filter policies
• Experience with implementing and maintaining network monitoring systems such as Cisco works and HP Open view and have experience with developing complex network design documentation and presentations using VISIO

Environment: Cisco 7200/7600/3800/3600 routers, Cisco 6500 switches, Cisco 3500 Access points, Cisco Wireless controllers 5500/2500, Nexus switches 5000/1000V/7000, Cisco ASA 5500, Load Balancer F5, Checkpoint R75, SRX -210

Confidential, Boston, MA

Network Engineer

Responsibilities:

• Configuring routing protocols OSPF, EIGRP, MP-BGP, LDP and BGPV4.
• Configuring HSRP between VLANs, Configuring Ether-Channels on 6500 catalyst Switches
• Replaced old routers with new 2851 routers
• Migrated, upgraded and patched management for Fortinet Firewalls
• Experience in working with cisco Nexus 7000 series switches for the data center
• Conversions to BGP WAN routing, which converts WAN routing from OSPF to BGP (OSPF is used for local routing only) that involves new wan links
• Configuring various advanced features (Profiles, monitors, iRules, Redundancy, SSL Termination, Persistence, SNATs, HA on F5 BIG-IP appliances SSL termination and initiation, Persistence, Digital Certificates, Executed various migration/upgrade projects across F5 and hands-on with F5 BIG-IP LTMs/EM
• Configuring, Installing and troubleshooting on Check Point Devices
• Configured various BGP attributes such as Local Preference, MED, Extended Communities, Route-Reflector clusters, Route-maps and route policy implementation
• Actively participated in upgrading Fast Ethernet, Layer 3-switched/Routed LAN infrastructure from Cisco 3640 to Cisco 2811 ISR routers and switches at access level to 3550
• Converting CatOS to Cisco IOS Config Conversion on distribution layer switches
• Configuring VLAN’s, VTP’s, enabling trunks between switches
• Configured VLANs with 802.1q tagging. Configured Trunk groups, ether channels, and Spanning tree for creating Access/distribution and core layer switching architecture
• Worked Extensively on Cisco Firewalls ASA 5500(5510/5540) Series
• Experience with design and implementation of Data center migration at NBC Universal
• Involved in Data center migration at Access, Distribution and Core layers
• Wrote IOS and CAT OS upgrade procedures and Pre/Post checks for customer production upgrades
• Strong Knowledge in working with F5 Load Balancers and their Implementation in various Networks
• Created MOPS and get approval from peers to perform configuration add/ remove changes
• Excellent Troubleshooting Skills and Customer Centric approach

Environment: Cisco 3750/3550/3500/2960 switches and Cisco 3640/12000/ 7200/3845/3600/2800 routers Cisco Nexus 5K, 2248/3560/5020/6509 , Cisco ASA 5510, Checkpoint.

Confidential

Network Engineer

Responsibilities:

• Responsible for the configuration of Cisco Routers (7000, 5300, 4000, 2500, 3000, 2600) using RIP, OSPF, EIGRP, BGP.
• Implemented Cisco IOS Firewall IDS using 2600 series router
• Managed office network with Cisco devices with network devices including 2500 and 3600 series routers
• Analyzed and resolved a high percentage of initial customer contact in the areas of PC/LAN
• Dealt with customer problems to management and support groups utilizing standard escalation model.
• Extensive experience in configuring and implementing OSPF and BGP
• Supported core network consisting of Cisco 7200 series routers running multi-area OSPF
• Configured EIGRP and OSPF as interior gateway protocol with route filtering and route redistribution, installed and maintained Cisco 3600, 2600 and 7200 backbone routes with HSRP
• Implemented stub/Totally stub areas and various OSPF features like route-summarization and SPF throttling
• Hands-on experience with WAN technologies like T1/T3, DS3, STM1 and STM4 circuit types
• Implemented Cisco Secure Access Control Server (ACS 3.0) for TACACS+/RADIUS
• Knowledge with redistribution of routing protocols and Frame-Relay configuration
• Handled Network Migration from RIP to OSPF
• Implementation of TCP/IP and related Services (DHCP/ DNS/ WINS)
• Configured, maintained and troubleshot routing protocols such as OSPF, EIGRP and BGP
• Performed troubleshooting, while maintaining trouble ticket tracking, following both internal/external routes.
• Assisted with escalation procedures and customer notifications.
• Configured Cisco Routers for OSPF, RIPv2, EIGRP, Static and default route.
• Upgraded Cisco Routers, Switches and Firewall IOS using TFT
• Acted as Tier 3 support for connectivity, failures, configuration, implementation, and troubleshooting
• Provided project management for data center cabling, documented all network designs using Visio
• Design, test, and implement global Next Generation MPLS network (150 sites) using Cisco 3800, 2800, 2600, and 1721 routers using BGP and EIGRP protocols

Environment: Cisco 2600/2800/3600/2950/2960 series switches, Cisco Routers 7000, 5300, 4000, 2500, 3000, 2600, NAT, PAT, DHCP, DNS, OSPF, EIGRP, ASR, TCP/IP, LAN, WAN.

Confidential

Network Engineer

Responsibilities:

• Supported for new customer rollout, circuit and WAN installations
• Worked on Cisco routers 7200, 3700, 3800 and Cisco catalyst switches 4900, 3750 and 6500
• Configured and supported multiple remote site installations
• IP Address management using IPAMs
• Created private VLANs & preventing VLAN hopping attacks
• Key contribution included troubleshooting of complex LAN/WAN infrastructure.
• Maintained and troubleshooted Hub and spoke frame relay with EIGRP
• Implemented port-security on Cisco switches
• Hands on experience to applying ACLs, configuring NAT and VPN
• Worked primarily as a part of security team and daily tasks included firewall rule analysis, rule modification, and administration
• Involved in troubleshooting of DNS, DHCP and other IP conflict problems
• Used various scanning and sniffing tools like Wire-shark
• Documented and Log analyzing the Cisco routers/switches/firewalls

Environment: Switches (4900, 37550, 6500), Routers (7200, 3700, 3800), VLANS, VTP, OSPF, FRAME-RELAY, RIPv2, EIGRP