SUMMARY

• 7+ years of Experience in Designing, Deployment and Operations of complex enterprise and service provider networks
• Worked Extensively on Access Control Policies consisting of VLAN switching through SNMP, Applying downloadable ACLs through Cisco ISE, and Configuring Standard and Extended ACLs locally and on the upstream switch's for Cisco NAC & Forescout NAC Solution.
• In - depth experience with the following technologies: Networking Infrastructure (including TCP/IP, DHCP, DNS, GPO and WINS), Infloblox, PRTG, Windows Server 2003-2008, 2012 R2, Active Directory 2003, 2008 and 2012, Windows XP, 7 Pro and 8.1, MS SQL Server 2000/2005, Microsoft Exchange 2003, 2008 and 365, Cisco ASA Security Firewall Access Rule, Route Based and DMVPN-Site-to-Site VPN setup, IT Disaster Recovery backup / Symantec Backup Exec 10.x/11D, Cisco-7K,5K,2K,4500, 5596UP, VSS 6509, Cisco MDS, Cisco UCS interconnect, Cisco ASA 55x0 & 55xx, Checkpoint Firewall 4500-R75.40, F5 Load balancers, Cisco Routers ASR 1001, 2951XM, 3950, 4800 and SNMP and Netflow configuration and also routing protocol configurations (BGP, EIGRP, ISIS and OSPF) in CISCO ASR 9K.
• Excellent Hands on experience with Cisco ISE and the Migration of Wireless and TACACs to ISE
• Highly motivated with the ability to work independently or as an integral part of a team and committed to highest levels of professionalism.
• Build stable, productive and profitable operations within highly technical environment.
• Well experienced in configuring various routing protocols like RIP, EIGRP, OSPF, BGP, MPLS
• Experience with MPLS technology including L2/L3 VPN and traffic engineering. Deploy IP/MPLS services covering the installations, testing, cutover, migration and handover
• Well Experienced in configuring protocols like HSRP, GLBP, VRRP, ICMP, IGMP, PPP, HDLC, PAP, CHAP, and SNMP.
• Telecommunications management Avaya, Shoretel and Nortel phone system.
• Enterprise Switching with VLANs, Trunks, Spanning Tree, Port Spanning etc.
• Troubleshooting and installing of CRS, ISR, GSR, ASR9000 and Nexus devices.
• Well experienced in configuring gateway redundancy protocols like HSRP, GLBP, PPP and SNMP.
• Experience in WAN technologies like T1/T3, DS3, and Gigabit circuit types.
• Worked on Load Balancer F5 LTM, GTM series like 6400, 6800, and 8800
• Strong hands on experience in installing, configuring, and troubleshooting of Cisco 7600, 7200, 3800, 3600, 2800, 2600, 2500 and 1800 series Routers, Cisco Catalyst 6500, 4500, 3750, 2950 and 3500XL series switches.
• Experienced in various Juniper products: EX-2200,EX-4200, EX-4500, MX-480, M Series, SRX210, SRX240
• Experienced working with Nexus 7010, 5020, 2148 and 2248 devices.
• Experience with Firewall Administration, Rule Analysis, Rule Modification.
• Responsible for designing and deploying various network security & High Availability products like Cisco ASA and Checkpoint Firewall products.
• Experience in Checkpoint Firewall on SPLAT and VPN technologies, Stateful inspection, and Global rule base, address spoofing.
• Configured Security policies including NAT, PAT, VPN, Route-maps and Access Control Lists.
• Implemented traffic filters using Standard and Extended access-lists, Distribute-Lists, and Route Maps.
• Experience in installing and configuring DNS, DHCP server.
• Experience in configuring Site-to-site and remote access VPN solutions.
• Good noledge in configuration of Voice VLAN’s (VOIP), prioritizing the voice traffic over the data traffic.
• Proficient in deploying and troubleshooting mission-critical environments using proactive suite of support services - Wireshark and SolarWinds.
• Strong noledge on Wireless Standards and Technologies, me.e. Ethernet, WAN, LAN, IEEE 802.11 (Wi-Fi). Very good noledge on IEEE 802.15.1 (Bluetooth), IEEE 802.15.31a (UWB), IEEE 802.15.4 (Zigbee), Cognitive radio networks, Mesh networks, etc.

TECHNICAL SKILLS

Experience: Cisco 3900 / 7600 Series Routers, Alcatel Lucent 7750, BRAS - Redback Edge Routers, T1s, DS3s, OC3/12/48s, IMA, GigE, Calix E5, E7, C7, Adtran (1148,1100,1248,1200,3K,5K) and UMC 1000Applications: Remedy Ticketing System, IPAM, Citrix XenApp, Calix CMS and IMS, SAM 5620, Secure CRT and Cirus.

AAA Architecture: TACACS+, RADIUS, Cisco ACS.

Networking Protocols: RIPv1, RIPv2, BGP, OSPF, EIGRP, NAT, ACL, Frame-Relay, MPLS.

Networking Terminologies: OSI Model, ARP, ICMP, TCP/IP, VLAN’s, Spanning Tree, DNS, DHCP, SNMP, SSH, Telnet, HTTP, IPv4, IPv6, GRE Tunneling, Ethernet, ATM.

Networking: Network Design & Engineering, Operations Research, Cisco Routers (800, 2600, 2800, 3800, 4500), Switches (2950, 3560, 6500), Snort network intrusion detection systems (IDS). Network penetration testing tools like NMAP, Netfilter, IPTables, Etheiral, SONNET, MPLS, IP/MPLS migration, DSU/CSU, ASR9K and Octane Line Cards.

Routers & Switches: GSR 12000, 2900 3900, 7200, 7600, ASR 1002. 6500, 4506, 4510, Nexus 7000

Wireless: 802.11 (a, b, g, n), 802.16/WiMax, 3GPP, LTE, GSM, UMTS, CDMA, 3G, RF.

Programming Languages: Basics of C/C++, Python, and Matlab.

Software: Microsoft Office Suite, Visio, Lucid Charts, Wireshark.

Operating System: LINUX, Windows.

PROFESSIONAL EXPERIENCE

Confidential, PLYMOUTH, MN

NETWORK ENGINEER

Responsibilities:

• Designed and Configured Cisco Identity Services Engine (ISE v2.3) to support corporate connectivity to a new wireless environment utilizing Active Directory Autantication and Authorization with EAP-TLS client certificates.
• Managing daily global Infrastructure network of RA over 80 countries (AP, EMEA, LA and NA).
• Dealing with clients for resolving/troubleshooting issues on LAN Inventory management.
• Data center migration was involved in Access, Distribution and Core layers.
• Layer 3 Network Engineer for Data Centers support for Confidential .
• Designed, configured, and support Regional Network Hub for Confidential .
• Worked in Meraki Dashboard and provisioningMX, MS, MR
• Managed Cisco Meraki MX Series Security devices, and Meraki iWAN/VPN deployment
• Strong Knowledge in working with F5 Load Balancers and their Implementation in various Networks.
• Configuring various advanced features (Profiles, monitors, iRules, Redundancy, SSL Termination, Persistence, SNATs, HA on F5 BIGIP appliances SSL termination and initiation, Persistence, Digital Certificates, Executed various migration/upgrade projects across F5 and hands on with F5 BIGIP LTMs/EM.
• Configured Cisco ISE for Wireless and Wired 802.1x Autantication on Cisco Wireless LAN.
• Consisted of ISE Deployment, Autantication with Active Directory and Microsft Certificate Authority.
• Work with Wintel, UNIX, Sun Solaris, DBA, VMware, SAN, Datacenter, and Hands and feet teams for all connectivity requests.
• Responsible for turning up BGP peering and customer sessions, as well as debugging BGP routing problems and also manipulating BGP attribute
• Involved in Configuring and implementing of Composite Network models consists of Cisco7600, 7200, 3800 series and ASR 9k, GSR 12K routers and Cisco 2950, 3500, 5000, 6500 Series switches.
• Experience working with ASR 1000 series with IOS-XR.
• Configured various Router interfaces like ATM interface, T3 & Channelized T1 interfaces.
• Configure BGP, OSPF and ISIS routing protocols in Cisco routers 3950, 4800, ASR 1001 and 9K .
• Configuring and troubleshooting CISCO catalyst 6509, 7609, 7613 with Supervisor cards, Cisco 3640, Cisco GSR 12416, 21418 (with PRP and RPR processors)
• Experience working JuniperT-Series, M-Series, MX-Series, J-Series Routers.
• Implemented WLAN CIsco Wireless Access Points 3500 and its Cisco Controllers 5500 at various corporate sites fort 11n Infrastucture and its legacy technologies.
• Experince in working with cisco Nexus 5000 series switches for data center.
• Configured various BGP attributes such as Local Preference, MED, Extended Communities, Route-Reflector clusters, Route-maps and route policy implementation.
• Converting CatOS to Cisco IOS Config Conversion on distribution layer switches.
• Configuring Vlan’s, VTP’s, enabling trunks between switches.
• Configured VLANs with 802.1q tagging. Configured Trunk groups, ether channels, and Spanning tree for creating Access/distribution and core layer switching architecture.
• Configuring static NAT, dynamic NAT, inside Global Address Overloading, Access-Lists.
• Configuration and extension of VLAN from one network segment other segment between Different vendor switches (Cisco, Juniper).
• Replace branch hardware with new 2851 routers and 2960 switches.
• Responsible for layer 2 securities which was implemented using a dedicated VLAN ID for all trunk ports, setting the user ports to non-trunking, deployed port security when possible for user ports.
• Assist with identification of root cause analysis for software and hardware issues.
• Technical assistance for LAN/WAN management and complex customer issues.
• Performed Troubleshooting and monitored routing protocols such RIP, OSPF, EIGRP & BGP.
• Analyze Remedy Ticket issues for repeat issues and corrective actions.

Confidential

NETWORK ENGINEER

Responsibilities:

• Responsibilities include functions as site lead for migration of sites from ATM to Ethernet.
• Provisioning, troubleshooting on various calix devices including E and C series.
• Configuration and provisioning on cisco routers and switches (76, 65 seriess)
• Configure BGP, OSPF and ISIS routing protocols in Cisco routers 3950, 4800.
• Configuration and Provisioning on ALU 7750 routers. Epipes building. Experience with SAM (Service Aware manager).
• Configuration and provisioning on various platforms including calix (C7, E5, E7), Adtran (1148, 1100, 1248, 1200, 3K, 5K) and UMC 1000.
• Manage over 400 servers- Wintel servers, VMware 5.1 and 5.5 and Xenserver 5.6 and 6.5 (Citrix) and HP Proliant ML and BL servers.
• Setup and configure Cisco UCS 5108.
• Configure vPC and etherchannel- LACP and pAgP and create the vlan interfaces with HSRP.
• Conversions to BGP WAN routing. Which will be to convert WAN routing from OSPF to BGP (OSPF is used for local routing only) which involves new wan links.
• Troubleshoot network issues and servers related to HP servers, UCS Blades 5108, Cisco switches and routers.
• Worked on the redistribution of connected routes on all OSPF devices so that all connected subnets are advertised via OSPF.
• Experience working with SIP to setup multimedia sessions between two groups.
• Worked on SIP to negotiate media capabilities.
• Worked on SIP to transfer, terminate, and change call parameters in mid-session.
• Design and configuring of OSPF, BGP on Juniper Routers and SRX Firewalls.
• Configuring IPSEC VPN on SRX series firewalls.
• Implemented EAP (Extensible Autantication Protocol) for Wireless Networks.
• Analysis of basic network designs and corresponding changes.
• Provisioning of Vlans and configuration on layer 2 and 3 aggregators like Cienna, Calix, Adtran, and AFC devices.
• Worked on Cisco 5500 wireless controller, Cisco Prime and Cisco WAPs.
• Configuring DSL, ADSL devices for ATM to Ethernet changes.
• Troubleshooting of ADSL customers on routers and switches.
• Worked on different cable technologies like twisted pair, fiber optic and coaxial.
• Deploying and decommissioning the VLANs on core ASR 9K, Nexus 7K, 5K and its downstream devices.
• Experience with migrating from IOS to IOS-XR on ASR 9K.
• Performed OSPF, BGP, DHCP Profile, HSRP, IPV6, BundleEthernet implementation on ASR 9K redundant pair.
• Designed and configured the commands for QoS and Access Lists for Nexus 7K and 5K.
• Responsible for turning up BGP peering and customer sessions, as well as debugging BGP routing problems.
• Performing troubleshooting on slow network connectivity issues, routing issues involves OSPF, BGP and identifying the root cause of the issues.
• Performed Break Fix support through driving to different buildings, identifying the root cause of the hardware issues with switches, routers.
• Experience in configuring vdc, fex pinning, fex port-channel, port-channel, peer keep alive,peer link.
• Experience in working and designing configurations for vPC, vPC domian, vpc peer-gateway, vPCpeer-switch, auto-discovery, vPC singlesided, vPC double sided, NX-OS, Vfr, Otv, fabric path.
• Deploying and decommissioning the TOR switches and their respective software upgrades.
• Performing the ACL requests changes for various clients by collecting source and destination information from them.
• Configure Corporate, Wireless and Lab Devices which includes Bandwidth Upgrade, Adding New Devices, Decom the Devices, Testing( Pilot ) .
• Design, implementation and operational support of routing/switching protocols in complex environments including BGP, OSPF, EIGRP, Spanning Tree, 802.1q, etc.
• Correspondence and fixing RCAs.
• Outages escalation and troubleshooting.
• Inband and out of band IPv4 management and maintenance on service provider and customer ends.
• Experience with testing and maintenance of various ATM, Ethernet and fiber links like DS1,DS3,OC3,T1s, IMA, GigE, 10 GigE
• Experience with various VPN technologies.
• Documentation with aid of various software tools like MS office suite, Excel spreadsheets, Lucid charts and Visio
• Worked with different DSLAM and router management tools like Calix CMS and IMS
• IP provisioning, IP changes on routers, monitoring performance of devices for particular IP range.
• Creation of MOPs (Method of Procedure).
• Data Centers and global infrastructure support.
• Coordination of Speed tests and loop back tests for access devices (DSLAM devices).

Confidential

NETWORK ENGINEER

Responsibilities:

• Worked on configuring Site-to-site and remote access VPN solutions
• Worked with team to design and implementtwo-tier network with collapsed Distribution/Core and Access-layer for campus Network.
• Worked on implementing and maintaining security systems: Firewalls, IPS and VPN solutions (Palo-Alto, Cisco)
• Configured Catalyst 3750-x Switches for Access layers and Catalyst 6509-E for Distribution.
• Physical / hands-on support in corporate Data Centers
• Configured and installedwireless access points (WAP) at various locations in the company.
• Troubleshot LAN/WAN by using routing protocols EIGRP, OSPF, & BGP.
• Configured QOS for Traffic priority, policing and shaping and congestion management.
• Upgrade of Cisco IOS and troubleshooting of network connectivity.
• Configuration and commissioning of the MPLS circuits for various branch offices.
• ImplementAccess lists and policy based routing in Cisco routers and Layers 3 switches.
• Perform IP address planning, designing, installation, configuration, testing, maintenance, and troubleshooting in complete LAN, WAN environment.
• ImplementSite-to Site IPSecVPN between two branch offices and SSL VPN for user’s connecting from various locations on ASA security system.
• Provide Layer-3 redundancy by implementing HSRP and GLBP for High availability.
• Configuring, Monitoring and Troubleshooting Cisco’s ASA 5500(5505, 5510, 5550)series firewalls,
• Configured Client VPN technologies including Cisco’s VPN client via IPSEC