SUMMARY

• 9 years of experience in Designing, Implementing and Troubleshooting Service Provider Networks and Enterprise Networks and Network administration, implementation, design and troubleshooting Seeking a challenging and interesting opportunity in computer/network engineering which enables me to maximize my technical and managerial skills.
• Working noledge of installing, configuring, and maintaining Cisco Switches (2900, 3500, 3700 series, 6500 series)
• Expertise in installing, configuring, and troubleshooting of Cisco Routers (3800, 3600, 2800, 2600, 1800, 1700, 800)
• Hands on experience of implementing and troubleshooting complex layer 2 technologies such as VLAN Trunks, VTP Ether channel, STP, RSTP and MST.
• Protocols working experience/Awareness: OSPF, EIGRP, RIP, BGP, HSRP, ACL, LDAP, VTP, NAT/PAT, GSLB, SSH, HTTP, HTTPS, NTP, SNMP, ARP, STP (802.1D), SNMP, DNS & DHCP.
• Work experience on Cisco catalyst 6509 and implemented VSS along with VDC and VPC on Nexus 5505, 7009 switches.
• Hands on Knowledge/experience on NetScaler, NSX, F5 load balancers, its methods, implementation and troubleshooting on APM, ASM (WAF), LTMs and GTMs.
• Extensive Knowledge on Riverbed performance manager, Wireshark, ticketing management systems like Jira, HPSM.
• Administration and diagnostics of LAN and WAN with in - depth noledge of TCP/IP, NAT, PPP, ISDN and associates network protocols and services.
• Wireless administration, setup and troubleshooting ofArubaand Cisco Meraki technologies.
• Extensive Knowledge on the implementation of Application Centric Infrastructure (ACI).
• Good Understanding of IPS/IDS, Proxies, encryption, FireEye, ASR and CRS routers and the configuration of MPLS, VRF's and BGP.
• Working noledge of TDM, SONET, OTN, DWDM, and OC technologies.
• Hands on experience working with Cisco Nexus 9K, 6K, 5K, 3K & 2K Switches.
• Experience in configuring HSRP and redistribution between routing protocols troubleshooting them.
• In-depth noledge of implementing, configuring and troubleshooting Routing Protocols Static Routing, EIGRP, OSPF, BGP
• Working noledge on cable Modem and CMTS testing.
• Performing PCI audit for all Capital-One products and remediate the deficiencies identified via Linux.
• Review of existing policies/standards/procedures and creation of new according to the requirements of PSI DSS and ISO 27001/27002 such as: Physical security standard, IDAM standard, Wireless security standard, Asset classification standard, PCI DSS trainings, User awareness training etc.
• Extensive experience in configuring Palo Alto Networks 2000, 4000, 5000.
• Strong understanding of Infoblox tool, to ensure high performance of Network services like DDI.
• Working noledge experience in Check Point, Fortinet, Palo Alto Firewalls, Bluecoat proxies.
• Good Knowledge/experience in configuration of cloud object storage (COS), Amazon S3 and PCI-DSS.
• Network management using Syslog, Packet Sniffers, SNMP etc.
• Working noledge in ITIL, Amazon Web Services (AWS), Virtualization,SD-WAN developing test plans, procedures, and testing Various LAN/WAN Products and Protocols.
• Level-1 Support forJuniperNetworks customers and partners related toJuniper'sM/T/MX series.
• Experience in MS Active Directory configurations, maintenance, and migrations
• Extensive noledge of deploying & troubleshooting TCP/IP, Implementing IPv6, Translation from IPv4 to IPv6, Multilayer Switching, UDP, Ethernet, ACI, Metro Ethernet Technologies.

TECHNICAL SKILLS

Routers: Cisco 7600, 7200, 3800, 3600, 2900, 2800, 2600, ASR 9K, ASR 12K, CRS

Routing Protocols: OSPF, EIGRP, BGP, RIP v1/v2, MPLS PBR, Route Filtering, Redistribution, Summarization, and Static Routing

Switches: Nexus 2K/5K/7K, Cisco Catalyst 6500, 4500, 3850,3560, 3750, 2960

Switching Protocols: LAN, VTP, STP, PVST+, RPVST+, Inter VLAN routing & Multi-Layer Switch, Ether channels, Transparent Bridging

Multicast Protocols: IGMP, IGMP version 2 and 3, CGMP, PIM-Sparse and Dense Mode DHCP, FTP, TFTP

LAN technologies: Ethernet, Fast & Gigabit Ethernet, VLANS, VTP, STP, RSTP, 802.1W, Cisco Prime

WAN technologies: Leased lines 128k - 155Mb (PPP / HDLC), Channelized links (T1/DS3/OC3/OC12), Fiber Optic Circuits, Frame Relay, ISDN, and ATM

Load Balancer: F5 Networks (Big-IP) LTM, APM, ASM, GTM.

Devices: i7800, i5600, 6800, 3900, 3600, 3400 seriesand BIG-IP Viprion

Network security: Cisco ASA 5540, F5 Load Balancer, Fortinet, Checkpoint, Palo Alto, Bluecoat proxies and Vyatta.

Network security protocols: ACL, NAT, IPSEC, IPSec VPN, GRE VPN, VTI VPN, open VPN, Encryption, Keys/rekeys, VFP

Network Management: SolarWinds, Proteus, Xilinx 9.21, HP Open-view, Wireshark, Spirent, SNMP

Operating systems: Windows XP/ 7/ 8, Windows Server 2003/ 2008, Mac OS X and Linux

Language skills: C, C++, Python, Bash, XML, SQL

Applications: MS (Office, Word, Outlook, Excel, PowerPoint, Visio), VMware.

PROFESSIONAL EXPERIENCE

Confidential, Dallas-TX

Sr. Network Engineer

Responsibilities:

• Configure site-to- site VPN and client-to- site VPN on Vyatta, Palo Alto firewall and Checkpoint.
• Troubleshoot routing and policy based vpn onVyatta and update the root cause related to Dead peer detection, IKE versions, VRRP, VFP, or any configuration changes to the customer
• Designed, configured, and led the deployment of Vyatta firewalls in the customer consisting of 20 sites.
• Configure and support application security policies via the F5 LTM/GTM and ASM modules.
• Troubleshoot WAF layer - F5 ASM issues like Securitypolicy deployment, fine tuning, Merging, Attack signatures, securing cookies and headers.
• Expertise in application switching and traffic management, deep noledge of application requirements (such as persistence), understand SSL offload.
• Perform requirement gathering along with stakeholders for creating F5 LTM VIPs and irules.
• Configuring’s policies for critical applications as well as configuring the F5 load balancing devices in SolarWinds Orion platform for the alerts.
• Implement SSL certificate and Key, and web acceleration and TCP optimization to LTM VIP as per customer’s request.
• Validating the configurations for new installations, troubleshooting DNS, DHCP issues and assessing the overall health of the Infoblox infrastructure for customers.
• Review technical documents for network architecture and design, troubleshoot, training materials, manuals during the network integration.
• Configured OSPF redistribution and autantication with type 3 LSA filtering to prevent LSA flooding.
• Configured OSPF over frame relay networks for NBMA and point to multipoint strategies.
• Perform the packet capture and analysis for the business users on the linux devices by using dig, iperf.
• Perform packet capture and use various scanning and sniffing tools like Wire-shark, Tcpdump.
• Executing the test cases using Ixia and Spirent simulation tools which simulate the entities and testing the features and functionality of Router, Load balancer, Firewall, DNS.
• Implemented, configured redundancy protocols HSRP, VRRP, GLBP for Default Gateway Redundancy.
• Perform troubleshooting, resource optimization across all ACI configurationsat scale including multi-pod and multi-site.
• Troubleshoot TCP/IP problems; troubleshoot connectivity issues in multi-protocol Ethernet, LDAP and MTR values.
• Rack and stack Nexus 9K series for the Austin data center tan install latest IOS for the hardware followed by Vlan configuration.
• Configure and deploy VDC and VPC between Nexus 9508 and Nexus 5548 switches along with FEX 2248.
• Built an accruing network via MPLS circuits to split the trusted and untrusted traffic via a Cisco ASR.
• Apply access lists and NAT configurations based on implementation guidelines.
• Create VLAN and Inter-Vlan routing with Multilayer Switching.
• Deep noledge of application requirements (such as persistence), understand SSL offload as well as class of services for outgoing traffic by using python/Bash script.
• Configure, upgrade and maintain router and switch configurations including AAA, Timestamps, NTP, syslogs, SNMP, VTY and console line configurations (CLI), SSH, and Telnet.
• Manage or participate in cross-functional teams to promote technology strategies, analyze, and test products, creating and updating Network Visio Diagrams.

Environment: AWS cloud, S3, Glacier,F5, WAF,OSPF, BGP, EIGRP,Cisco 3550/4500/6500 , Cisco 2900/3900/7200 routers, MS Visio, Palo Alto Firewall, Fortinet Firewall, ASA, Ansible, Python, LAN, WAN, CISCO IOS.

Confidential, Houston-TX

Sr. Network Engineer

Responsibilities:

• Designed inter-site high availability clustering solutions comprising of ASAs and Nexus switches - 9000, 7000 and 6000 seriesutilizing global datacenters for providing redundancy.
• Planned, tested, and implemented the IOS upgrade of Nexus 9K/7K and Catalyst 9500 and several 6509 production switches to ensure normal business continuity.
• Involved in the requirements for security management, policies, procedures, network architecture, software design and other critical protective measures.
• Provides IT VPN appliance engineering and VPN remote access solutions and support for new innovations, projects, and standards development.
• Architect LTM design and deployments, while also troubleshooting WIPs, topology as well as application security manager (ASM) configurations.
• Work closely with software development teams to file and test product defects and enhancements to improve product stability, usability, and serviceability on Cisco ACI platform and Nexus 9000 series.
• Provided customers with configuration advice on new features such as policy-based routing & BGP on ASAs.
• Feasibility engagements with business groups to ensure integrated VPN strategies are incorporated early in the process of APM deployment with bash scripting on Linux platform.
• Responsible for testing and documenting Information securities issues, creation of ASM policies, VPN upgrades.
• Performed application buildingtemplates and AutomaticPolicy Builder for applications/stakeholders.
• Networks using routing protocols such as RIP, OSPF, BGP, EIGRP and manipulated routing updates using route-map, distribute list and administrative distance.
• Configure and update Network Storage NFS / NAS as well as on the AWS cloud.
• Working noledge of wireless security parameters type and configuration including WEP, WPA-PSK TKIP, WPA2-PSK AES, MAC Filtering on Aruba devices.
• Involved in Switching Technology Administration including creating and managing VLANS’s, Port security, Trunking, STP, Inter-VLAN routing, LAN security with the help of scripts on Linux.
• Deploying Layer 2 security in Server Farms by configuring switch for 802.1x port based autantication.
• Multiple vendor devices - ASR9K, CRS-16, QFX-5100, EX-4200, Cat switches 7600 series, etc.
• Identify opportunities to innovate, extend and enhance service delivery within the DNS/DHCP/IPAM Services space.
• Troubleshooting the Site-Site VPN, firewalls, irules and WAF layer on F5 viprion devices.
• Advanced Aruba noledge and troubleshooting experience of wireless (Wi-Fi) networking (802.11a/b/g/n).
• Performed configuration on CMTScisco UBR under Linux Environment Configured and troubleshooting HSRP, BGP, OSPF, EIGRP, MPLS WAN, QoS and Route Maps.
• Automating configuration management system using Ansible.
• Reproducing issues on Lab setup, submitting Bug depending on issues and creating feature request for load balancers (F5 & Netscaler).
• Launching and configuring of Amazon EC2 (AWS) Cloud Servers using AMI's (Linux/Ubuntu) and configuring the servers for specified applications in non-production.
• Perform end-to-end network testing, manual and automated testing using test platforms such as IXIA or Spirent.

Environment: F5 LTM / GTM / APM, OSPF, BGP, EIGRP, RIP, LAN, WAN, NAT, DNS, DHCP, QIP, IPAM, VPN, Cisco IOS, TMOS, HPSM, Putty, Palo Alto Firewalls, Infoblox, Bluecoat proxy, Solarwinds, Linux, Wireshark, VMWare and Wireless networks.

Confidential, Cherry Hill, NJ

Network Engineer

Responsibilities:

• Involved in configuring and implementing of composite Network models consists of Cisco 7600, 7200, 3800 series routers and Cisco 2950, 3500, 5000, 6500 Series switches.
• Responsible for testing and documenting hosted VoIP/PBX. Programming of VoIP/SIP endpoints, Routers, switches, cabling, DHCP/ FTP/ TFTP servers and firewalls.
• Implemented Vxlan routing plus bridging on setup containing low latency 7150s switches and deep buffer Arista 7500series switches.
• Identify, log and reproduce bugs, verify fixes for bugs and improve test coverage by adding additional test cases throughout testing for Arista networks.
• Implementing traffic engineering on top of an existing Multiprotocol Label Switching (MPLS) network using Frame Relay and Open Shortest Path First (OSPF).
• Worked on F5 BIG-IP LTM 8900, WAF, configured profiles, provided and ensured high availability.
• Worked on F5reverse proxy and load balancers deploying many load balancing techniques with multiple components for efficient performance.
• Responsible for implementing, supporting, and maintaining 24x7 network services.
• Coordinated efforts with Engineer’s to ensure all network devices conformed to defined network standards.
• Manages the configuration, deployment, and administration of voice and Networking systems including routers, switches, Call Manager, Unity, Wi-Fi and Contact Center.
• Train the Customer’s design, implementation and support personnel to configure and operate the Juniper Networks products.
• Configure advanced features for like session tracking, web scraping, Login enforcement and Layer 7 DoS on NetScaler and F5 platforms.
• Worked on Multicast PIM SM, SSM, NAT, High Availability methods like SSO, ISSU, VSS, MPLS, MPLS VPN, Routing.
• Bidirectional Forwarding Detection (BFD) between Tunnel Endpoints on NSX platform.
• Knowledge of Aruba clearpass administration and packet analysis via tools like Netscoutand Infoblox.
• Responsible for troubleshooting VIPs, ASM policies for various applications like to manage health checks, iRules, HTTP headers, SSL offloads, Pools, and application attacks.
• Implementation and Management of Clusters / Load Balancer Citrix Netscaler, F5 (High availability).
• Implemented security systems including various Access control list (ACL), Context-Based Access Control,PIX Firewall (PIX 506, 515), Network Intrusion Detection System.
• Worked extensively on CheckPoint Firewalls, Cisco PIX (506E/515E/525/)&ASA 5500(5510/5540) Series, experience with convert PIX rules over to the Cisco ASA solution.
• Installing and configuring Infoblox network appliances running Network Automation.
• Experience with Cisco ASR’s, Catalyst 6500 series switches, 2800 series, and 3800 series. 2900 series and 3900 series routers and Monitoring links using Solar Winds.
• Maintained redundancy on Cisco 2600, 2800 and 3600 router with HSRP.
• Responsible for Configuration of BGP and OSPF - BGP convergence on CRS routers.
• Configured VPC, FEX and VDC’s on Nexus 5K, 7K series and upgrade latest NX-OS.
• Migration from legacy data center route/switch platforms (Cisco 6500, Nexus 5500) to a high density 10G/40G datacenter switching fabric, utilizing Cisco 9k/2k and Application Centric Infrastructure (ACI/APIC) with ASR 1K.

Environment: Cisco 7600/7200/3800 routers, Cisco 2950/3500/5000/6500 switches, Arista 7500 Switches, ASA Firewall 5510/5520, Juniper SRX100, OSPF, BGP, EIGRP, RIP, VLAN, LAN, WAN, VPN, F5 BIG-IP LTM 8900, F5 load balancers, Nexus 5K/7K, Linux, Citrix Netscaler, NetScout, Ansible.

Confidential

Network Engineer - Associate

Responsibilities:

• Optimized performance of the WANnetworkconsisting of Cisco 3550/4500/6500 switches by configuring VLANs.
• Maintaining Core Switches, creating VLANs and configuring VTP.
• Performed redistribution with OSPF, EIGRP, RIP version 1 and 2 to enable communication with backbone.
• Network response time analysis and latency metrics provide granular understanding with the help of Riverbed, showing how the network affects application behavior and user experience.
• Troubleshooting of Cisco 2900, 3900, 6500, 7500, 7200 Series routers.
• Configured static NAT, dynamic NAT, dynamic NAT overloading.
• Troubleshooting Netscaler, Access Gateway, Load balancing, web application firewall issues, GSLB.
• In-depth expertise in the implementation, optimization, troubleshooting and documentation of LAN/WAN networking systems.
• Worked with vendors and Engineering team to test new hardware with the help of Python scripting.
• Solution of Fault Tickets of Enterprise Customers & decrease MTTR (Mean time to Resolve) to the minimum & Maintain their SLA (Service Level Agreement).
• Install, configure/provision, turn-up, andtest a variety of WDM and DWDM optical systems
• Configured BGP interfaces on CRS routers followed by troubleshooting of BGP and OSPF.
• Upgrade Cisco Routers and Switches IOS using TFTP.
• Performed different testing phases like Unit Integration, System, Acceptance, Regression testing and should be capable to perform these tests with the help of ready-test cases.
• Installed and configured Cisco IP Phone 794x, 796x, 7937’s and IP Communicator.
• Creating dedicated VLANs for Voice & Data with QOS for prioritizing VOICE over DATA.
• Performed installation and management of overall administration of LAN, WAN, systems involving design of network layouts on Visio, configuration and maintenance, Commissioning Routers & Switches, firewalls, IPS and ensuring maximum uptime during site deployment to VoIP.
• Configuring and adding, moving, removing of various IP phones like (7941, 7961, and 7971)
• Knowledge on VOIP protocols like H.323, SIP, IVRU and good understanding about VOIP devices.
• Packet capturing, troubleshooting on network problems with Wireshark, identifying and fixing problems
• Performing network monitoring, providing analysis using various tools like WireShark, Solarwinds etc.
• Implementation and configuration of F5 Big-IP LTM-6400 load balancers
• Experience with convert Checkpoint VPN rules over to the Cisco ASA solution. Migration with both Checkpoint and Cisco ASA VPN experience
• Responsible for Cisco ASA firewall administration across our global networks.

Environment: Cisco 3550/4500/6500 , Cisco 2900/3900/7200 routers, Juniper EX2200, F5 Load Balancer, ASA, Netscaler, VOIP, IP Phone, OSPF, BGP, RIP, EIGRP, LAN, WAN, CISCO IOS.