SUMMARY

• CCNP certified with 7+ years of professional experience in Network designing, Implementing, Configuring, Troubleshooting and Testing of networking and Security protocols.
• Willing to relocate.
• Strong hands on experience on PIX 525, ASA (5520/5510) Firewalls. Implemented security policies using ACL, Firewall, IPSEC, SSL, VPN, IPS/IDS, AAA (TACACS+ & RADIUS).
• Dealt with the escalation problems for Routing, Switching and WAN connectivity issues using ticketing system remedy.
• Strong hands on Palo Alto Firewalls
• Expertise in network protocols, Firewalls and Communication Network design.
• In - depth Cisco technology experience/knowledge in design, implementation, administration and support.
• Dealt with Cisco ASA Firewalls
• Efficient at use of Microsoft VISIO/Office as technical documentation and presentation tools.
• Hands on experience with Cisco MDS Fiber switches
• Familiar with Amazon Web Services
• Expertise in Network Design
• Dealt with monitoring tools like (Solar Wind, Kiwi-cat tool), network packet capture tools like Wire-shark.
• In-depth knowledge of deploying and troubleshooting LAN, WAN, Frame-Relay, Ether-channel, IP Routing Protocols - (RIPV2, OSPF, EIGRP & BGP), ACL's, NAT, VLAN, STP, VTP, HSRP & GLBP.
• Strong hands on experience in layer-3 Routing and layer-2 Switching. Dealt with Nexus models like 7K, 5K, 2K series, Cisco router models like 7200, 3800, 3600, 2800, 2600, 2500, 1800 series and Cisco catalyst 6500, 4500, 3750, 3500, 2900 series switches.
• Excellent working knowledge of TCP/IP protocol suite and OSI layers.
• Good knowledge and experience in Installation, Configuration and Administration of Windows Servers 2000/2003, Active Directory, FTP, DNS, DHCP, TFTP, Linux OS under various LAN and WAN environments

TECHNICAL SKILLS

Cisco & other vendor equipment’s: Nexus 7K, 5K, 2K & 1K, Cisco routers (7200, 3800, 3600, 2800, 2600, 2500, 1800 series) & Cisco Catalyst switches (6500, 4900, 3750, 3500, 2900 series). PIX Firewall (506/515/525/535 ), ASA Firewall (5505/5510), Cisco ACE Load Balancers.

Routing Protocols: RIP, IGRP, EIGRP, OSPF, IS-IS, BGP, HSRP, VRRP & GLBP.

Infrastructure services: DHCP, DNS, SMTP, FTP, TFTP.

LAN technologies: Ethernet, Fast Ethernet, Gigabit Ethernet, 10 Gigabit Ethernet, VLANS, VTP, STP, RSTP and 802.1Q.

WAN technologies: Frame Relay, ISDN, ATM, MPLS and leased lines.

Network Management: SNMP, Cisco Works, Kiwi-cat, What's-Up Gold, Ethereal.

Platforms: Cisco IOS (11.x, 12.x), PIX IOS (6.x, 7.x), CAT-OS UNIX, LINUX.

Documentation: MS Office, MS Visio.

Network Security: DS1, DS3, OC3, T1 /T3 & SONET, NAT/PAT, Ingress & Egress Firewall Design, VPN. Internet Content Filtering, Load Balancing, IDS/IPS and URL Filtering. Web-sense, Kiwi Syslog Server Logging, SSL, IPSEC, IKE, Static. Dynamic, Reflexive ACL, and authentication AAA(TACACS+ RADIUS)

PROFESSIONAL EXPERIENCE

Confidential, Milwaukee, WI

Sr. Network Engineer

Responsibilities:

• Enabled STP attack mitigation (BPDU Guard, Root Guard), using MD5 authentication for VTP, disabling all unused ports and putting them in unused VLAN and ensuring DHCP attack prevention where needed
• Implement and configured GLBP (on core switching and also for VPN redundancy), HSRP on different location of office on the switched network and managing the entire multilayer switched network
• Used Kiwi-Cat tools to manage configurations from desktop for network devices, including routers, switches and firewalls. Generate network device configuration reports, such as port, MAC, APR and version details
• Conversions to BGP WAN routing. Which will be to convert WAN
• Migration of existing IPSEC VPN tunnels from one data center to another.
• Responsible for managing activities, Upgrading IOS - Upgrading hardware and installing new devices, Tuning (Configuration), make standardization for the topology
• Performed basic security audit of perimeter routers, identifying missing ACL’s, writing and applying ACL’s
• Responsible for layer 2 securities which was implemented using a dedicated VLAN ID for all trunk ports, setting the user ports to non-trunking, deployed port security when possible for user ports
• Substantial lab testing & validation prior to implementation of Nexus 7K, 5K & 2K connecting to blade servers
• Configured, installed, & managed DHCP, DNS, & WINS servers
• Implemented Site-to-Site VPNs over the internet utilizing 3DES, AES/AES-256 with PIX Firewalls
• Secured network access with Cisco Secure (RADIUS/ TACACS+)

Environment: In Corporate office architecture with highly reliable & secured network including Cisco routers (7200, 3800, 2800) and Cisco switches (6500, 3700, 4900, 2900), Nexus(7K, 5K & 2K) Routing Protocols (EIGRP, OSPF, BGP), Switching protocols (VTP, STP, GLBP,HSRP), Cisco PIX(525, 535), ASA(5505, 5510) firewall

Confidential, Rochester, New York

Network Engineer

Responsibilities:

• Experience in migration of Frame-relay based branches to MPLS based technology using multilayer stackable switch like 6500 series and 2800 series router
• Created engineering configuration, Security Standards, documenting processes and Network documentation using Microsoft Visio
• Installation, Configuration and Administration of ADS,DNS,DHCP and Web proxy(ISA)server
• Upgrade Cisco Routers, Switches and Firewall (PIX) IOS using TFTP
• Installed and configured four PIX 525 and two ASA 5505 in customer locations. In addition to that, two PIX firewall configured for the Guest access
• Involved in design and implementation of Data Center Migration, worked on implementation strategies for the expansion of the MPLS VPN networks
• Enabled STP attack mitigation (BPDU Guard, Root Guard), using MD5 authentication for VTP, disabling all unused ports and putting them in unused VLAN and ensuring DHCP attack prevention where needed
• Implement and configured GLBP (on core switching and also for VPN redundancy), HSRP on different location of office on the switched network and managing the entire multilayer switched network
• Used Kiwi-Cat tools to manage configurations from desktop for network devices, including routers, switches and firewalls. Generate network device configuration reports, such as port, MAC, APR and version details
• Managing a TACACS server for VPN user authentication and network devices authentication
• VLAN Configurations, troubleshooting and Firewall ACLs and Object-Groups configuration and support
• Configured IPsec site-to-site VPN connection between Cisco VPN 3000 Concentrator and Cisco 3800

Environment: Router series (2800, 3800, 7200) and switch series (3750, 3550, 4509E, 6509E), Cisco PIX: 525, 535, ASA: 5505 and 5510 firewall. Routing Protocols: EIGRP, OSPF, and BGP. Switching protocols: (VTP, STP), Site to Site VPN, Remote Access VPN, Cisco VPN 3000

Confidential, Minnesota, MN

Network Engineer

Responsibilities:

• Worked onCiscoLayer 2 switches (spanning tree, VLAN).
• Configured HSRP and VLAN trucking 802.1Q, VLAN Routing on Catalyst 6500 switches.
• Configuration and troubleshooting of Cisco 7200, 3800, 3600, 2800, 2500, 1800 Series routers.
• Optimized performance of the WANnetworkconsisting of Cisco 3550/4500/6500 switches by configuring VLANs.
• Design and configuring of OSPF, BGP on Juniper Routers and SRX Firewalls.
• Configuration 7609, 7606 with OSPF and catalyst 6505, 4500, 3550 switches with various VLAN.
• Planning and configuring the routing protocols such as OSPF, EIGRP, RIP, and Static Routing on the routers.
• Supported networks, which are comprised of 2000+Ciscodevices.
• Supported nationwide LAN infrastructure consisting ofCisco4900 and catalyst 6513.
• Deployed the switches in high availability configuration with HSRP.
• Configured port-fast, uplink fast and other spanning tree features.
• Support various Series ofCiscoRouters like 7200/7600 series.
• Support Complex 0 Series Switches.
• NetworkMonitoring using tools likeCiscoWorks 2000 and Net flow Analyzer.
• Troubleshootnetworkproblems using Packet Analysis tools like Ethereal.
• Create and testCisco router and switching operations using OSPF routing protocol, ASA Firewalls, and MPLS switching for stable VPNs.
• Experience working with Nexus 7K, 5K, 2K & 1K devices.
• Performed load balancing and application level redundancy by deploying F5 BIG-IP LTM 3900.

Environment: Cisco switches 3750/3550/3500/2960 and Cisco routers 3640/ 0/3845/3600/2800 , Cisco ASA5510, Checkpoint, Palo Alto,Cisco Nexus7K/5K.

Confidential, Colorado

Network Engineer

Responsibilities:

• Implementing traffic engineering on top of an existing Multiprotocol Label Switching (MPLS) network using Frame Relay and Open Shortest Path First (OSPF).
• Cisco Secure Access Control Server (ACS) for Windows to authenticate users that connects to a VPN 3000 Concentrator.
• Experience with Synchronous Optical Networking (SONET) over optical fiber.
• Involved in Configuring and implementing of Composite Network models consists of Cisco7600, 7200, 3800 series and ASR 9k, GSR 12K routers and Cisco 2950, 3500, 5000, 6500 Series switches.
• Responsible for the installation, configuration, maintenance and troubleshooting of the company network. Duties included monitoring network performance using various network tools to ensure the availability, integrity and confidentiality of application and equipment
• Worked on FTP, HTTP, DNS, DHCP servers in windows server-client environment with resource allocation to desired Virtual LANs of network.
• Troubleshoot and Worked with Security issues related to Cisco ASA/PIX, Checkpoint, IDS/IPS and Juniper Net screen firewalls.
• Worked on Juniper J series j230, M 320 routers and EX 3200 series switch.
• Implemented Hot Standby Router Protocol (HSRP) by tuning parameters like preemption.
• Configured policy based routing for BGP for complex network systems.
• Configured Multiprotocol Label Switching (MPLS) VPN with Routing Information Protocol (RIP) on the customer’s Site.

Environment: In Corporate office architecture with highly reliable & secured network including Cisco routers(7200,3800,2800), Cisco switches(4900,2900), Cisco ASA Firewall(5510), Routing Protocols(EIGRP, RIP, BGP), Switching protocols(VTP,STP,GLBP)

Confidential

Cisco Network Engineer

Responsibilities:

• Responsible for configuring GLBP between multilayered switch networks
• Involved in troubleshooting of DNS, DHCP and other IP conflict problems. Implementation of name resolution using WINS & DNS in TCP/IP environment
• Installation & configuration of Cisco VPN concentrator 3060 for VPN tunnel with Cisco VPN hardware & software client and PIX firewall
• Configured Firewall logging, DMZs & related security policies & monitoring
• Creating Private VLANs & preventing VLAN hopping attacks & mitigating spoofing with snooping & IP source guard
• Hands on Experience working with security issue like applying ACL’s, configuring NAT and VPN
• Configured network access servers and routers for AAA Security (RADIUS/ TACACS+)
• Worked on Cisco routers 7200, 3800, 2800 and Cisco switches 4900, 2900