SUMMARY

• 9 years of professional experience in Network Engineering and Administration which involved extensive network planning, implementing, configuring and troubleshooting of networking system with Cisco Certification.
• Experience in datacenter migration, various LAN and WAN technologies, network refreshment and security audits, security policy, analysis, implementation, troubleshooting & documentation of LAN/WAN architecture and IP services.
• Planning, Designing, Installing, Configuring of Cisco 6500, 4500, 3750, 3500, 2900 XL series switches, Nexus switches - 7000, 6000, 5000, 4000 series, Cisco 7600, 7200, 3800, 3600, 2800, 2600, 2500, 1800 series Routers.
• In-depth knowledge of IP Addressing, VLSM, ARP, OSI and TCP/IP models.
• Experience in trouble-shooting connectivity issues and hardware problems on Cisco based networks.
• Configuration of Virtual Local Area Networks (VLANS) using Cisco routers and multi-layer Switches and supporting STP, RSTP, PVST, RPVST along with trouble shooting of inter-VLAN routing and VLAN Trunking using 802.1q.
• Implemented redundancy with HSRP, VRRP, GLBP and Ether channel technology.
• Expertise in IP subnetting and worked on various designing and allocating various classes of IP address to the domain.
• Strong knowledge in implementation and troubleshoot of routing protocols like OSPF, OSPFv3, EIGRP, BGP, RIP,RIP V2
• Troubleshooting Layer 1, 2, 3 issues using Wireshark.
• Configuring Network Address Translation (NAT) according to the connectivity requirements.
• Proficient in Cisco IOS for configuration & troubleshooting of routing protocols: MP-BGP, OSPF, LDP, EIGRP, RIP, BGP v4, MPLS.
• Worked on HPSM, ITSM ticketing systems, Configuring, Monitoring and Troubleshooting Cisco's ASA 5500/PIX security appliance, Failover DMZ zoning &configuring VLANs/ routing/ NATing with the firewalls as per the design.
• Designed QoS policies for critical applications based on requirements and traffic patterns.
• Extensively worked on Cisco catalyst 6509 and implemented VSS, VDC and VPC on Nexus 5505, 7009 switches.
• Hands-on experience in Tier II ISP Routing Policies, Network Architecture, IP Subnetting, VLSM, TCP/IP, NAT, DHCP, DNS, FT1 / T1 / FT3 / T3 Sonet POS OCX / GigE circuits, Firewalls.
• Involved in troubleshooting of DNS, DHCP and other IP conflict problems.
• Experience with F5 load balancer - Big IP, Viprion series, GSS, ACE, IP Addressing, Subnetting, VLSM, ARP, OSI and TCP/IP models, implementing L2 technologies including VLAN’s, VTP, STP, RSTP and Trunking, Frame mode MPLS, MPLS VPNs design, troubleshooting, blue coat systems, Trunking Protocols (802.1q, ISL), Link Aggregation Protocol (LACP, PAGP).
• Configured WLAN controllers and AP’s with GUI, console port and CLI, Security policies including NAT, PAT, VPN’s and Access Control Lists, Configuration and Support ofLAN protocols on Cisco Switches such as (Layer2, Layer3 and Multi-Layer).
• Implementing security policies using ACL, ASA, Routers and PIX firewall.
• Installing, configuring and troubleshooting DNS and DHCP servers, firewalls (Checkpoint NG & NGX, Cisco ASA, Cisco Pix, Juniper Netscreen).
• Responsible for Check Point and Cisco ASA firewall administration across global networks.
• Designing and implementing F5 BIG-IP load balancer and also monitor the Packet Flow in the load balancers, OSPF, BGP on Juniper Routers (MX960, MX480) and SRX Firewalls(SRX240, SRX550)
• Efficiently used Microsoft VISIO/Office for technical documentation and presentation.
• Working knowledge of Citrix NetScalar, citrix Xenserver.
• Verifying and configuring rules on a firewall.
• Designing & Implementing different connectivity solutions.
• Designed QoS policies for critical applications based on requirements and traffic patterns.
• Installed, configured, maintained online/offline servers and Interactive Voice Response Systems (IVRS).
• Planning & implementing information security guidelines as per the security standards.
• Worked on F5 LTM, GTM series like 6400, 6800, 8800 for the corporate applications and their availability.
• Design and configuring of In-depth knowledge and hands-on experience in Tier II ISP Routing Policies, Network Architecture, IP Subnetting, VLSM, TCP/IP, NAT, DHCP, DNS, FT1 / T1 / FT3 / T3 SONET POS OCX / GigE circuits, Firewalls.
• Strong knowledge of TACACS+, RADIUS implementation in Access Control Network.
• Experience in Designing and assisting in deploying enterprise wide Network Security and High Availability Solutions for ASA.
• Expertise in installing, configuring and troubleshooting Juniper Routers ( E, J, M and T series)
• Implementing security policies using Cryptography, ACL, SDM, PIX Firewall, IPsec, VPN, and AAA Security on different series of routers.
• Knowledge of implementing and troubleshooting complex layer 2 technologies such as VLAN Trunks, VTP, Ether channel, STP, RSTP and MST. Implementation of HSRP, VRRP for Default Gateway Redundancy.
• Experience with different network management tools like Wireshark, HP-Open view, and Cisco works
• Self-motivated and dedicated team player with positive result-oriented attitude that thrives on problem solving and analysis.
• Proficient oral and written communication and organizational skills to effectively communicate with operations and other technical groups for troubleshooting and problem resolution
• Strong leadership skill ability to work independently and in a team environment.

TECHNICAL SKILLS

CISCO & OTHER VENDORS EQUIPMENT: Cisco routers (7600, 7200, 3800, 3700, 3600, 2600 series), & Cisco Catalyst Switches (2900, 3500, 5000, 6500, 6800 series), Nexus 2000, 5000, 7000 series; Juniper Load Balancer DX3280,3680, Cisco PIX 506/515/525/535 Series, ASA Firewall 5505/5510, Cisco IOS 15x, 12x, NX-OS, PIX OS 6x, 7x

LAN/WAN PROTOCOLS AND TECHNOLOGIES: Ethernet, Fast Ethernet, Gigabit Ethernet networks, VLAN, VTP, STP, RSTP, 802.1X, Frame Relay, ISDN, PPP, ATM, MPLS, Leased line exposure to PPP, T1/T3, DS1, DS3, OC3, OC12

ROUTING PROTOCOLS: OSPF, OSPFv3, EIGRP, BGP, VRF, EBGP, HSRP, VRRP, RIP, RIP V2

NETWORK SECURITY: NAT/PAT, ACL, IPSec, WEP, WPA, IDS/IPS, Internet Content Filtering, Load Balancing, VPN configuration, Ingress and Egress Firewall Design.

INFRASTRUCTURES SERVICES: DHCP, DNS, SMTP, TFTP, FTP

NETWORK MANAGEMENT: SNMP, Cisco Works LMS, Wireshark, HPSM

PLATFORMS: VMware, Windows 7, Windows XP, NT, 2000, 2003

DOCUMENTATION: MS Office, MS Visio

PROFESSIONAL EXPERIENCE

Confidential, Newark, NJ

Sr. Network Engineer

Responsibilities:

• Managing and supporting large scale MPLS & Frame relay on Cisco & Juniper environment for more than 5000 Retail sites, 100 Distribution centers, 100 offices and 3 datacenters.
• Troubleshooting issues related to Layer 1/2/3 skills like switching / routing, WAN /Hardware and critical network links by coordinating with the vendor.
• Experience working with MPLS Layer 3VPN on ASR 9006 with IOS-XR
• Managing and upgrading IOS image files and taking configuration back-up.
• Configuring Static, EIGRP, RIP and OSPF Routing Protocols on Cisco 1600, 2600, 2800, 3600, 7300 series Routers.
• Design, and configuring of OSPF, BGP on Juniper Routers and SRX Firewalls.
• Designing, Implementing and Troubleshooting Cisco 3750, 3550, 3560, 2924, 6509-V-E, 6513, 6504, 6503, 6506, 6500 series switches, GSR, ASR routers with Cisco IOS and IOS-XR
• Configured Site to Site IPsec VPN tunnels to peer with different clients and each of client having different specifications of Phase 1 and Phase 2 policies using Cisco ASA 5500 series firewalls.
• Used IPSec VPN tunneling to provide access to user machines and partners in other network. Provided application level redundancy and availability by deploying F5 load balancers LTM.
• Configured VLAN Trunking 802.1Q, STP (802.1d),Port Security on Catalyst 6500 switches
• Created Visio Dean / Visio Documentation to give complete picture of network design for each building.
• Designing and implementing Wireless network in the Campus for both internal and project requirements.
• Configuring and Maintaining Cisco Wireless LAN controllers, Access points and Airtight Sensors and SpectaGuard.
• Analyzing and closing the Vulnerabilities found in the Wireless using Airtight SpectaGuard.
• Worked extensively in Configuring, Monitoring and Troubleshooting Check point security appliance, Failover DMZ zoning & configuring VLANs/routing/NATing with the firewalls per design.
• Responsible for Checkpoint firewall management and operations across our global networks.
• Working with Checkpoint Support for resolving escalated issues.
• Planned and implemented network designs, including WAN, LAN, MPLS.
• Racking, Stacking, configuring, Nexus 2K, 5K and 7K in data center environment
• Working with BGP, EIGRP protocols in MPLS Cloud.
• Remediation of firewall rules from checkpoint firewalls to Cisco ASA firewalls and their implementation
• Configured and managed VLANs, 802.1Q Trunk, RPVST+, Inter-VLAN routing, HSRP and LAN security for Layer-2 and Layer-3 switching domains as per the organization's requirement plan. IP Allocation for all applications and servers with high availability throughout the company.
• Participate in all technical aspects of LAN, WAN, VPN and security Internet Service projects including, short and long term planning, implementation, project management and operations support as required.
• Having Data Center Design Experience, installing and Configuring Network Devices in a Data Center including patching the cables in the Patch Panel. Design and implemented network
• Hands-on experience in the network management of circuits using TDM and Frame Relay network, performing configuration and provisioning management, fault management and performance monitoring
• Expertise in developing Complex Automated Script Framework, utility functions manually for HTTP(S) Protocol.
• Configuring Virtual Chassis for Juniper switchesEX-4200,Firewalls SRX-210
• Deploying Layer 2 security in Server Farms by configuring switch for 802.1x port based authentication.
• Replaced old 6500 and WAN routers from DR testing site and Installed Nexus 7K and ASR 1006 routers.
• Implemented, configured BGP WAN routing, converting OSPF routes to BGP (OSPF in local routing).
• Packet capturing, troubleshooting on network problems with Wireshark, identifying and fixing problems
• Performing network monitoring, providing analysis using various tools like WireShark, Solarwinds etc.
• Implementation and configuration of F5 Big-IP LTM-6400 load balancers
• Deployments for use cases such as SaaS, IaaS, and data center migration.

Environment: Cisco 1600/2600/2800/3600/7300 Routers,Cisco 2948/3560/4500/3560/3750/3550/3500/2960 Switches, RIP, OSPF, BGP, EIGRP, VLAN, MPLS, ASA 5500, F5 Load Balancer 6400, STP, RPVST, LAN, WAN and HSRP

Confidential, Broomfield, CO

Sr. Network Engineer

Responsibilities:

• Responsible for the installation, configuration, maintenance and troubleshooting of the company network. Duties included monitoring network performance using various network tools to ensure the availability, integrity and confidentiality of application and equipment.
• Configured and Maintained the Local Network using Cisco Switches 2900, 4500, 6500 and Cisco Routers 2800, 3600/7200.
• Hands on experiments on Cisco CSS/GSS for future Implementation.
• Configuration and testing of routing protocols like OSPF and BGP.
• Involved in Switching Technology Administration including creating and managing VLANS’s, Port security, VTP, STP, Inter-VLAN routing, LAN security etc.
• Managing MPLS / LAN based configuration of internal LAN based VRF and mapping them to the VLAN for tagging Switching related tasks included implementing VLANS, VTP and configuring ISL Trunk on Fast-Ethernet channel between switches
• Configured VPN to allow remote users access to corporate network. Configured Client VPN technologies including Cisco’s VPN client via IPSEC.
• Troubleshoot of tunneling protocols like PPTP, L2TP.
• Design, Implement and configured HSRP on different location of office on the switched Network and Managing the Entire multilayer switched network.
• Upgrade Cisco router, switches and firewall PIX IOS using TFTP.
• Migrated from Cisco PIX Firewall to Cisco ASA Firewalls.
• Installed and configured Cisco ASA 5500 series.
• Experience working with Network Security like Create Access Lists (ACL), NAT on Routers and Firewalls.
• Configured Firewall logging, DMZs and related security policies and monitoring.
• Designed perimeter security policy; Implemented Firewall ACL’s; Allowed access to specified services; Enabled IDS/IPS signatures in Firewall & fine-tuned TCP & UDP.
• Configured and Implemented Frame Relay for WAN connectivity. Troubleshooting issues related to Frame relay networks.
• Provide Network Support in the designing and implementation of P2P over T1s Frame Relay, MPLS over Frame Relay.
• Secured network access with Cisco Secure (RADIUS/ TACACS+).
• Configured voice VLAN’S and implemented QoS for VOIP.
• Network Monitoring with Cisco Works 2000, HP open view, Network Sniffer and Net flow Analyzer.
• Substantial lab testing & validation prior to implementation of new technologies
• Troubleshoot TCP/IP problems, troubleshoot connectivity issues in multi protocol Ethernet Networks
• Experience in using packet capture tools like Wireshark Network Analyzer

Environment: Routers (7200, 3600, 2800), Switch (CSS, 6500, 4500, 2900), Routing Protocols (OSPF, BGP, RIP), MPLS, VLAN, HSRP, Route Distributions, Cisco ACE GSS, VPN, DNS and DHCP issues, PPTP, L2TP, Windows server 2003, 2008, Cisco works, HP Open View, Wireshark, ACLs, NAT, PIX Firewall, IDS/IPS, Cisco ASA 5500, Cisco VPN Client.

Confidential, Cincinnati OH

Network Engineer

Responsibilities:

• Configured VLAN’s with 802.1q tagging. Configured Trunk groups and Spanning tree for creating Access/distribution and core layer switching architecture and also for security.
• Configuring BGP, EIGRP, OSPF and RIP routing protocols for enterprise network and provided Support.
• Managed IP Addressing and configured Access Lists.
• Installation of Cisco Routers - GSR 7600, 4500, 2800
• Hands-on experience with WAN (ATM/Frame Relay), Routers, Switches, TCP/IP and IP addressing.
• Configured Net Scout packet sniffer and Solarwinds to collect statistics and analyze the bandwidth utilization on the network.
• Implemented and troubleshot communication networks including TCP/IP and IPSEC.
• Configured VLAN, VTP and STP.
• Enabled STP attack mitigation (BPDU Guard, Root Guard), disabling all unused ports and putting them in unused VLAN and ensuring DHCP attack prevention where needed.
• Configuring and troubleshooting Multiprotocol Label Switching (MPLS) like levels of control, MPLS forwarding, traffic engineering.
• Configured and managed DNS and DHCP server.
• Troubleshooting the network for the network connectivity issues and network performance issues.
• Responsible for SNMP Monitoring and Performance Tuning software.
• Installing and configuring of an F5 load balancer.
• Configured HSRP, Ethernet Channel in the LAN environment.
• Designed QoS policies for critical applications based on requirements and traffic patterns.
• Implemented Security policies using Cisco PIX firewalls.
• Planning & implementing information security guidelines as per the security standards on the firewalls.
• Implementing Cisco Secure Access Control Server (ACS 4.0) for Tacacs+/ Radius

Environment: Cisco 7600, 3725, 3600, 2600, 1800 series router, Cisco Catalyst 6500, 3500 and 2950 series switches, Cisco PIX 515E

Confidential, Charlotte NC

Network Administrator

Responsibilities:

• Assisted with troubleshooting all network issues with routers and switches when necessary and consulted with on call tech as needed for client.
• Configured all devices for remote sites/plants, vendors and added new equipment to RADIUS and worked with MPLS-VPN configurations.
• Evaluate and Analyze router and switch configurations.
• Created load balancing policies using BGP attributes such as Local Preference, AS-Path, MED, Community etc.
• Validate existing infrastructure and recommend new network designs.
• Manages network device configurations, logical names and addresses, network design and implementation.
• Has expertise in LAN/WAN technologies (Ethernet, L2/L3 Switching, and Frame Relay).
• Implements network management and automate system troubleshooting.
• Expert in configuration and troubleshooting complex Routing Protocols (EIGRP, OSPF and BGP) and stand-by routing protocols such as HSRP.
• Configured STP, VTP and improved Spanning Tree Protocol efficiency by adding Port Fast, Backbone Fast and Uplink Fast.
• Excellent troubleshooting knowledge on T1, T3, OC-3 and OC-12.

Environment: Cisco Catalyst 1900, 2900, 3500, 4500 and 7200 switches. Cisco 2600, 2800, 3600 and 7200 routers BGP, OSPF, FRAME RELAY.

Confidential, New York City, NY

Network Support Engineer

Responsibilities:

• Actively participated in upgrading LAN infrastructure from Cisco 3640 to Cisco 2811 ISR routers and switches at access level to 2950, 3550. This project also involved in configuring and testing EIGRP and BGP protocols.
• Implemented and Maintained Cisco 7940 and 7960 VOIP systems.
• Configuring and Utilized network monitoring software to ensure network availability to all system users and Communication Manager.
• Installed and Configured Juniper and Cisco Routers - GSR 12000, 7600series, 4500, 2800s.
• Performed the design and deployment of Citrix production environments in the company.
• Implemented VLAN, VPN and other switching protocols.
• Configuring EIGRP, OSPF and RIP routing protocols for enterprise network and provided Tier 2 Support.
• Implementing and troubleshooting (on-call) IPsec VPNs for various business lines and making sure everything in place.
• Involved in troubleshooting of DHCP and other IP conflict problems.
• Worked primarily as a part of the security team and daily tasks include firewall rule analysis, rule modification and administration.
• Modified internal infrastructure by adding switches to support server farms and added servers to existing DMZ environments to support new and existing application platforms.
• Designed, developed and implemented engineering solutions aligned with enterprise architecture framework based on latest Windows 2003/2008 and Active Directory-based LAN/WAN environment consisting of Development, Testing and Productions servers.
• Supporting project test teams in analyzing and bandwidth utilization.
• Developed backups using BackupExec Software.
• Installed Checkpoint Firewall & Administered security policy with Rules Base, different levels of authentication and interpreted log messages.
• Configured NetScout sniffer to collect statistics and analyze the bandwidth utilization on the network.

Environment: Cisco Catalyst 3500, 4500 and 7200 switches. Cisco 2600, 2800, 3600, 7600 and GSR 12000 routers. STP, VTP, OSPF, EIGRP, BGP and 802.11 a/b/g.

Confidential, Mayfield, OH

Network Administrator

Responsibilities:

• Configuration & maintenance of Cisco 2900 switches, including VLANS & Trunking protocols.
• Configuring and maintaining Cisco PIX firewalls as well as TACACS+ for AAA
• Configured NAT to allow internal users to access the internet using Overloading.
• Maintain various server technologies including, TCP/IP, Active Directory, Routing and Remote Access, Terminal Services, Microsoft Exchange 2003.
• Part of team which developed and implemented strategies like selecting cost efficient operating systems, virus protection, mail systems and Internet services.
• Designing network diagrams with Microsoft VISIO.
• Involved in troubleshooting of DNS, DHCP and other IP conflict problems. Implementation of name resolution using WINS & DNS in TCP/IP environment
• Maintaining the Anti-Virus and Personal Firewall infrastructure for customers.
• Involving in Data Center day-to-day tasks.
• Use network analysis tools to monitor and shape traffic for optimum performance.
• Conducted Tape Backup utilizing Microsoft backup utility.

Environment: Main office with Cisco devices in a Microsoft Windows Client - Server Environment, 70 users, 35+ network devices including 2600 and 3600 series routers and 2900, 1900 series switches, NAT, DHCP, DNS, Microsoft VISIO, TACACS+, AAA, Anti-Virus.