SUMMARY

• Network Engineer with 7 years of experience in testing, troubleshooting, implementing, optimizing and maintaining enterprise data network and service provider systems.
• Implementing IP addressing schemes, LAN/WAN protocols, IP Services, to fulfill network requisites in different environments.
• Hands on experience in configuring Cisco Catalyst 2960, 3750, 4500, 6500 series, and Cisco 2600, 2800, 3600, 3800, 7200, 7600 series routers, Cisco Nexus 7000 series, 5000 series, 2000 series data center switches.
• Proficient in Configuring Virtual Local Area Networks (VLANS) using Cisco routers and multi - layer Switches and supporting STP, RSTP, PVST, RPVST along with trouble shooting of inter-VLAN routing and VLAN Trunking using 802.1Q.
• Good working Experience with Aruba controller’s configuration
• Worked extensively on Cisco Firewalls ASA 5500(5510/5540)Series.
• Implemented redundancy with HSRP, VRRP, GLBP, Ether channel technology etc.
• Implemented traffic filters using Standard and Extended access-lists, Distribute-Lists, Route Maps and route manipulation using Offset-list.
• Hands on in deployment of GRE tunneling, SSL, Site-Site IPSEC VPN and DMVPN.
• Managed inventory of all network hardware, Management and Monitoring by use of SSH, Syslog, SNMP, NTP.
• Strong experience onJuniper SSG series Firewalls and Checkpoint R75, 76 Firewalls.
• Experience with F5 load balancers - LTM, GTM series like 6800 and 8900 for the corporate applications and their availability.
• Expertise in OSI layer model/TCP/IP.
• Well versed and experienced in routing and switching protocols RIP, OSPF, EIGRP, BGP and VLAN.
• Implemented VDC, VPC, VRF and OTV on the Nexus 5505 and 7009 switches.
• Knowledge of implementing and troubleshooting complex layer 2 technologies such as VLAN Trunks, VTP Ether channel, STP, RSTP and MST.
• Proficient in Cisco IOS for configuration & troubleshooting of routing protocols: MP-BGP, OSPF, LDP, EIGRP, RIP, BGP v4, MPLS.
• Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500/PIX security appliance, Failover DMZ zoning & configuring VLANs/routing/NATing with the firewalls as per the design.
• In-depth knowledge and hands-on experience in Tier II ISP Routing Policies, Network Architecture, IP Subnetting, VLSM, TCP/IP, NAT, DHCP, DNS, FT1 / T1 / FT3 / T3 Sonet POS OCX / GigE circuits, Firewalls.
• Primary responsibility is to design and deploy various network security & High Availability products lick Cisco ASA other security products.
• Managed URL filtering, File blocking, Data filtering by Palo Alto firewall, Barracuda NG Firewalls.
• Implementation and maintained intrusion detection/ prevention (IDS/IPS) system to protect enterprise network and sensitive corporate data. For Fine-tuning of TCP and UDP enabled IDS/IPS signatures in Firewall.
• Performed Installation of Cisco ASA 5585 & 5520 series firewalls as well as Palo Alto 3500 series.
• Proficient in using SolarWinds Network Management tools like Network Performance Monitor (NPM), Netflow Traffic Analyzer, Network Configuration Manager (NCM) and Cisco Prime.
• Provide 24/7 support

TECHNICAL SKILLS

Cisco Routers: 1600,1700,2600,2800, 2900, 3600, 3800, 7200 and 7600

Cisco L2 & L3 Switches: 1600,1700,2600,2800, 2900, 3600, 3800, 7200 and 7600

Cisco Nexus: 5020,5548,5596T,2148,2248TP,2348UPQ,7010,7702

Juniper: EX-2200, EX-4200, EX-4500, MX-480, M Series, SRX210, SRX240

LAN Technologies: Ethernet, Fast Ethernet, and Gigabit Ethernet, SMTP, VLAN, Inter-VLAN Routing, VTP, STP, RSTP, Light weight access point, WLC.

WAN Technologies: Frame Relay, PPP, HDLC, (E1/T1/E3T3), DS3, OC192

Network Security: Cisco ASA, ACL, IPSEC.

OS products/Services: DNS, DHCP, Windows (2000/2003/2008 , XP), UNIX, LINUX

Routing Protocols: OSPF, EIGRP, BGP, ISIS, VRF, PBR, Route Filtering, Redistribution, Summarization, and Static Routing

Gateway Load Balancing: HSRP, VRRP, GLBP, EBGP

Various Features / Services: IOS and Features, IRDP, NAT, SNMP, SYSLOG, NTP, DHCP, CDP, TFTP and FTP

Network Management Tools: Wireshark, Netflow Analyzer, Cisco Works, Ethereal, SNMP, HP open view

Security Server Protocols: TACACS+, RADIUS

Facilities: DS0, DS1, DS3, OCX, T1/T3

Load Balancers: Cisco CSM, F5 Networks (BIG-IP) LTM 8900, BIG-IP GTM 6800, Cisco ACE 4710

Operating Systems: Windows (98, ME, 2000, XP, Server 2003/2008, Vista, Windows 7/8), Linux, UNIX

Firewall & Security: Checkpoint (R62, R65, R70, NGX), Cisco ASA, Palo Alto

PROFESSIONAL EXPERIENCE

Confidential, Detroit, MI

Sr. Network engineer

Responsibilities:

• Analyzed the Policy rules, monitor logs and documented the Network/Traffic flow Diagram of the Palo Alto Firewalls placed in the Data Center with MS Visio.
• Configuring rules and Maintaining Palo Alto Firewalls & Analysis of firewall logs using various tools.
• Migrated Juniper SRX 5400 series to Palo Alto firewalls 7000.
• Implementation of F5 includes configuration/creation of Network Element, Pool, pool members and virtual servers.
• Completed a wiredISEdeployment for a medical devices company ensuring network segmentation and posture impacted the security classification of the device.
• UpgradeCisco6500-E, 3560, and 2960 switches to IOS software that is on theISEcompatibility matrix.
• Well versed in developing cloud strategies, roadmaps, architecting (hands-on) new cloud solutions end to end or enterprise level AWS/Azure migrations.
• Migrated complex, multi-tier applications on AWS. Defined and deployed monitoring, metrics and logging systems on AWS. Migrated existing on-premises applications to AWS
• Designing and Deploying dynamically scalable, Highly available, fault tolerant and reliable applications on AWS.
• Great exposure to SDN and Network Function Virtualization (NFV) technologies like Cisco ACI.
• Migrate from CISCO ACE to F5 Load Balancer
• Designed VLAN’s and set up both L2 and L3 logical to have it communicate to the Enterprise network.
• Installed and configured of SDN and NFV solutions (cloud-based solutions) and integration of SDN and NFV solutions
• Selecting appropriate AWS service to design and deploy an application based on given requirements.
• Working experience on upgrading Checkpoint Firewall old devices/Software to new platforms like R70 to R75.20. s
• Worked extensively on Cisco ASA 5500(5510/5540) Series, experience with convert PIX rules over to the Cisco ASA solution.
• Support customer with the configuration and maintenance of PIX and ASA firewall systems.
• Worked on migration of existing PIX firewall to ASA firewall, PIX OS upgrade from 6.3 to 7.0.
• Responsible for Cisco ASA firewall administration across our global networks.
• Worked with Cisco ASA 5500-X with Firepower services, Firepower 4100 and Palo-alto Next-Gen PA-5000 Firewalls implementing and managing NAT, IPsec, site-to-site and remote VPNs, advanced inspection, anti-spoofing and AAA policies
• Configuring, maintaining and troubleshooting with Fortinet firewall and security.
• Responsible in troubleshooting on Cisco ISE added new devices on network based on policies on ISE.
• Created Virtual Servers on F5 Load balancer.
• Worked extensively on Controlling the Traffic, creating the groups, SSL offload and SSL certification on F5 load balancer.
• Provided application level redundancy and availability by deploying F5 load balancers LTM.
• Hands on experience in implementation and deploying BIG-IP F5 LTM load balancers for load balancing and network traffic management for business applications.
• Experience in working with LTM and GTM for scaling and securing DNS infrastructure during high volumes.
• Worked on the project of F5 LTM and GTM code upgrade project, doing couple of them every week.
• Hands on Experience in configuring F5 objects, components and provisioning various modules like LTM, GTM, ASM, APM.
• Migration of Bluecoat proxy configuration/setup and policies to F5 forwarder and WSS cloud environment.
• Configured Palo Alto firewall for outbound traffic via Bluecoat Proxy server.
• Expertise in installing, configuring and troubleshooting Juniper EX-Switches (EX2200, EX2500, EX3200, EX4200, EX4500, EX8200 series).
• Experience with working on latest cisco switches like Nexus 2000, 5000 and 7000 series switches while implementing advanced features like VDC and VPC.
• Experience in layer 3 routing protocols including BGP and OSPF.
• Troubleshooting, optimizing and documenting LAN/WAN technologies and T1/T3 WAN technologies.
• Upgraded Virus definition on messaging and enterprise servers MacAfee.
• Troubleshoot end-to-end call flow issues in enterprise market involving various VoIP elements.
• Configured and Installed Network/VOIP solution for remote sites small, mid-size and large.
• Creating IP-prefix-list, route-map, distribution list for performing route manipulations.
• Experience in Solarwinds Network Performance Monitor, Network Configuration Manager, Network Traffic Analyzer (Netflow) and IP Address Manager.
• Performed network analysis using various tools like Wireshark and Solarwinds.
• Experienced with IP Address management (IPAM), DNS, DHCP by using Infoblox.
• Troubleshooting and resolve the Splunk performance, search poling, log monitoring issues, role mapping, dashboard creation etc.
• Used Infoblox to manage and optimize DNS, DHCP and other solutions.
• Refreshed, maintained and provisioned forty Cisco 6500 access switches and four core switches for East Hanover data center, assigned VLANS and servers over MPLS network.
• Configured MPLS CE (Customer edge router) and complete support for MPLS POP & Relate discuss in MP& CG
• Experience with setting up MPLS Layer 3 VPN cloud in data center and also working with BGP WAN towards customer
• Expertise in implementing, maintaining and troubleshooting L2 switching tasks such as VLANs, VTP, VLAN Trunking using ISL and 802.1Q, STP, RSTP, PVST+, Ether channel using LACP and PAGP, Inter-VLAN routing.
• Provided redundancy to the network, implemented hot standby routing protocol (HSRP) and Load sharing for effective utilization of router.
• Configured Routing protocols such as OSPF, RIP, EIGRP, static routing and policy based routing.
• Troubleshooting Network Migrations and new client connections Network Routing protocols (BGP, EIGRP and RIP).

Environment: Cisco 2948/3560/4500/3560/3750/3550/3500/ switches and Cisco 3640/1200/ 7200/3845/3600/2800 routers, Cisco ASA 500, Palo Alto Firewalls PA-7000, PA-9000, AWS, Checkpoint, windows server 2003/2008: F5 BIGIP LTM, RIP, OSPF, BGP, VLANS, EIGRP, LAN, WAN, VPN, HSRP.

Confidential, Freeport, ME

Sr. Network Engineer

Responsibilities:

• Configuring Static, IGRP, EIGRP, and OSPF Routing Protocols on Cisco 1600, 2600, 2800, 3600, 7300 series Routers.
• Deployed on Nexus 7000, 5000 and 2000 series with V-Block servers and Cisco UCS E-series.
• Experience in working with Cisco Nexus 2148 Fabric Extender and Nexus 7010, 5000 series to provide a Flexible Access Solution for datacenter access architecture.
• Switching related tasks included implementing VLANs, VTP and configuring and maintaining multi VLAN environment and inter-VLAN routing on Fast-Ethernet channel. Worked with different vendors and implement Site-to-Site VPNs over the Internet. Involved in L2/L3 Switching Technology Administration including creating and managing VLANs, Port security, Trunking, STP, Inter-VLAN routing, LAN security.
• Implementing, configuring and troubleshooting routing protocols such as OSPF (v3, v2), RIPv2, BGPv4, EIGRP, HSRP, GLBP and MPLS.
• Designed and implemented city wide MPLS/VPLS network to support High Speed Internet and Metro Ethernet Business Customers
• Troubleshoot and repair layer one issues such as copper, Fiber and power.
• Experience in configuring, upgrading and verifying the NX-OS.
• Configuration and support of Juniper Net Screen firewalls and Palo Alto firewalls. worked on data center by patching fiber cables to QFX10K series and put new blade for new service for server and configured them
• Expansion and implementation of current data center for different phases of migration.
• Maintain a secure perimeter using Cisco ASA 5500-X with Firepower Services
• Experienced in securing configurations of SSL/VPN connections, troubleshooting Cisco ASA firewalls and related network security measures
• Configure and maintain Cisco switch configurations along with Cisco ISE.
• Participated in Installation and configuration of Bluecoat Proxy SG in the network for web traffic management and policy configuration
• Configure various LAN switches such as CISCO CAT 2900, 3550, 4500, 6509 switches and Access layer switches such as Cisco 4510, 4948, 4507 switches for VLAN, Fast Ether Channel configuration.
• Experience in migration of VLANS & Configured VLANs with 802.1q tagging, Ether channels, and Spanning tree for creating Access/distribution and core layer switching.
• Administrating on F5 LTM, GTM, ASM, APM on series 5050 .
• Performed load balancing and application level redundancy by deploying F5 BIG-IP LTM 3900.
• Creating Wide IPs with various load balancing methods like, Global Availability, Topology and Round Robin.
• Selecting the appropriate AWS service based on data, compute, database or security requirements
• Designed AWS Cloud Formation templates to create custom sized VPC, subnets, NAT to ensure successful deployment of Web applications and database templates
• Creating Virtual IP address, Pools and Persistence profiles on F5 LTM.
• Involved in deployment of new F5 LTM for Datacenter and Implementation and troubleshooting F5 Load balancers. worked with Cisco Channel partners to build practices around Cisco ACI
• Installation and service of broadband services including telephony, internet, security and video services on customer premise
• Configured and maintained IPSEC and SSL VPN's on Palo Alto Firewalls.
• Successfully installed Palo Alto PA-3060 firewalls to protect Data Center.
• Utilized Check Point smart-dash board for Firewall and troubleshooting
• Drafting and Installation of Checkpoint Firewalls rules and policies.
• Hands on experience on all software blades of Check Point firewall.
• Using Smart Update, User Management and Authentication in Check Point Firewall.
• Implementing Citrix NetScaler 10 for Networking and Traffic Optimization (CCA) (BETA), Citrix License CTX482174
• Provide backup support on all infrastructure system servers and network, Microsoft Exchange, NetApp, Cisco, Citrix, and ShoreTel products
• Upgrading and Migrating the Splunk Components and setting up the Retention Policy for the indexes
• Hands on experience in deployment of projects for network monitoring software like Solarwinds and Whatsup Gold.
• Configuring & Administration of the Checkpoint Firewall that includes creating Hosts, Nodes, Networks, Static & Hide NAT's.
• Checkpoint Firewall upgraded from Checkpoint R65 to Checkpoint GAIA R77.
• Working with Checkpoint Support for resolving escalated issues.
• Creation of firewall rules on Checkpoint Smart Dashboard and install policies.
• Management of corporate Checkpoint Firewall implementing security protocols and alleviating network attacks
• Mapped, Network Diagrams and physical identification in MS Visio.
• Worked with engineering team to resolve tickets and troubleshoot L3/L2 problems efficiently.
• Configured Cisco 2800, 3800 routers and 3750, 4500, 6500 switches as part of the implementation plan.

Environment: Palo Alto PA-3060 & 5050 Firewalls, Bluecoat Proxies, Juniper IPD, Juniper NSM, Panorama, Splunk, F5 LTM, GTM 6600, 6800, Nexus (2K, 5K, 7K and 9K), Nek, Cisco ISE, Websense, SolarWinds NPM, ISIS, PRTG, Wildfire.

Confidential, Santa Ana, CA

Network Engineer

Responsibilities:

• Troubleshooting the TCP/IP networks for connectivity, outages and slow network issues and recommended appropriate and cost-effective solutions for the congestion.
• Network consists of Heavy Cisco equipment such as: Cisco 3560,2950, 2924 switches, Cisco 6509, 6513, 5500 series Layer 3 switches, Cisco 3825, 3640, 7200 series routers, Cisco Pix firewall 500 series and Wireless Access points Cisco 1230.
• Expertise in Palo Alto design and installation for Application, URL filtering, Threat Prevention and Data Filtering.
• Worked on F5 BIG-IP LTM 8900, configured profiles, provided and ensured high availability.
• Worked on F5 and CSM load balancers deploying many load balancing techniques with multiple components for efficient performance.
• Responsible for deploying various network security & High Availability in Checkpoint Firewall
• Configured Site to Site IPsec VPN tunnels to peer with different clients and each of client having different specifications of Phase 1 and Phase 2 policies using Cisco ASA 5500 series firewalls.
• Documenting and Log analyzing the Cisco ASA 5500 series firewalls
• Configuration and troubleshooting of Site to Site as well as Remote Access VPN on Cisco ASA.
• Configuring failover and working on ssl-vpn when in active/standby failover on ASA.
• Upgraded Cisco Routers, Switches and Firewall (ASA) IOS using TFTP.
• Involved in Configuration of Access lists (ACL) on ASA firewall for the proper network routing for the B2B network connectivity.
• Experience QFX, SRX, MX, EX Series Routers and Switches, Aruba wireless 7200 series
• Responsible for managing AWS platform including IAM, VPC, EC2, S3 and RDS
• Experienced in the Design/Architecture of AWS and hybrid cloud solutions.
• Created network architecture on AWS VPC, subnets, Internet Gateway, Route • Table and NAT Setup.
• Performing URL filtering and content filtering by adding URL’s in Bluecoat Proxy SG’s.
• Worked on 2600, 3500, 7613 Cisco Routers and 4500 and 6500 series Cisco Switches.
• Configured STP for loop prevention and VTP for Inter-VLAN Routing.
• Experiencing working with end users supporting and setting up new accounts with 7900 series VoIP phones for Configuring CUC & CUCM.
• Experience in configuring DNS Properties and maintaining DNS Database.
• Responsible for managing DHCP services, creating DHCP network templates and DHCP pool.
• Responsible for all routing, switching, VPN, network security, and server load balancing.
• Configured PPP, HDLC, BGPv4, EIGRP, MPLS and OSPF routing.
• Experienced designed and upgrade MPLS backbone capacity from 155 Mbps TDM base to 10Gbps Ethernet base by Cisco Nexus 9000.
• Configuring HSRP between VLANs, Configuring Ether-Channels, Port Channel on 6500 catalysts
• Build Logical design and Implementation of Wireless Solution.
• Migration of application, server, service groups from Citrix Netscaler to F5.
• Proactively monitored and managed all productions network systems to maximize system availability in Citrix Netscaler.
• Configured, implemented, and supported Infoblox Devices at various call centers
• Experience with configuring VMware and managing and maintenance of VMs (virtual server).
• Configured various BGP attributes such as Local Preference, MED, Extended Communities, Route-Reflector clusters, Route-maps and route policy implementation.
• Actively participated in upgrading fast Ethernet, Layer 3 switched/routed LAN infrastructure from Cisco 3640 to Cisco 2811 ISR routers and switches at access level to 2950, 3550.
• Configured Nexus 5020 and 7702 with multiple distribution VDC’s running EIGRP for route propagation between them.
• Experience with configuring Nexus 2000 Fabric Extender (FEX) hitch acts as a remote line card (module) for the Nexus 5000.
• Continual network monitoring of data center support, troubleshoot and diagnose hardware problems.
• Configured various Router interfaces like ATM interface, T3 & Channelized T1 interfaces

Environment: Juniper routers and switches, Cisco routers 7200; Cisco Catalyst switches 6500, 4500, 2950; Big-IP F5 Load Balancer, Cisco Works; MS Visio, Checkpoint, Cisco ASA and Palo Alto firewalls, Blue Coat Proxy, Cisco PIX Firewalls 535, 525 Routing Protocols OSPF, BGP, STP, VTP, VLAN, VPN

Confidential, Raleigh, NC

Network Engineer

Responsibilities:

• Involved in the configuration & troubleshooting of routing protocols: MP-BGP, OSPF, LDP, EIGRP, RIP, BGP v4. Configured IP access filter policies. Cisco CLI, Cisco works, Network Security, Network Analysis Tools
• Experience with Checkpoint Firewall policy provisioning.
• Firewall Policy implementation on Checkpoint R62 and R65 using Provider 1
• Designed, configured, implemented VPN Tunnels using IPSec encryption standards and implementing site-to-site VPN, Remote Access VPN on ASA Firewall.
• Implemented failover (Active-standby and Active-Active) and clustering with ipv4 on ASA Firewall.
• Develop, design and implement firewall infrastructure surrounding Checkpoint and Cisco Firewalls and a good experience with security tools and protocols like NERC/CIP and SOX.
• Troubleshoot traffic passing managed firewalls via logs and packet captures.
• Configured and resolved various OSPF issues in an OSPF multi area environment.
• Hands-on experience with WAN (ATM/Frame Relay), Routers, Switches, TCP/IP, Routing Protocols(BGP/OSPF), and IP addressing.
• Created and delivered internal trainings for BGP.
• Configured egress and ingress queues for ISP facing routers using CBWFQ.
• Generating RCA (Root Cause Analysis) for critical issues of layer1/layer2/layer3 problems.
• Ability to analyze, configure and troubleshoot networks.
• Responsible for service request tickets generated by the helpdesk in all phases such as troubleshooting, maintenance, upgrades, patches and fixes with all around technical support
• Supporting EIGRP and BGP based PwC network by resolving level 2 &3 problems of internal teams & external customers of all locations
• Experience in Layer 3 Routing Protocol configurations: RIP, OSPF, BGP, EIGRP and MPLS.
• Switching tasks include VTP, ISL/ 802.1q, IPsec and GRE Tunneling, VLANs, Ether Channel, Trucking, Port Security, STP and RSTP.
• Configuring and troubleshooting CISCO catalyst 6509, 7609, 7613 with Supervisor cards, Cisco 3640, Cisco GSR 12416,21418(with PRP and RPR processors)
• Configuring and implementing F5 BIG-IP LTM, GTM load balancers to maintain global and local traffic.

Environment: Cisco Catalyst 2960/3750/4500/6500 Series Switches, Linux, Cisco 2800/2900/3000 Series ISR's and Cisco 3640/ 0/3845/3600/2800 routers, SQL, Cisco ASA 5500, Active Directory, Windows Server 2003/2008, ACL, SIP, RIP, OSPF, MPLS, BGP, EIGRP, Wi-Fi, LAN, MacAfee, WAN, WAP, IDS, IPS, WLAN, VPN, HSRP.

Confidential

Network Engineer

Responsibilities:

• Connected switches using trunk links and Ether Channel.
• Responsible for maintenance and utilization of VLANs, Spanning-tree, HSRP, VTP of the switched multi-layer backbone with catalyst switches.
• Implemented redundant Load balancing technique with Internet applications for switches and routers.
• Support Network Technicians as they require training & support for problem resolution including performing diagnostics, & configuring network devices
• Used Network Monitoring tool to manage, monitor and troubleshoot the network.
• Configured Cisco IOS Feature Set, NAT and Simple Network Management Protocol (SNMP) for Network Security implementation.
• Provided 24/7 rotational on call supports for branch offices.
• Configured Routing protocols such as RIP, OSPF, EIGRP, static routing and policy based routing, infrastructure and configured the entire network Infrastructure devices including network printers.
• Configured RIP, OSPF and Static routing
• Configured VLAN, Spanning tree, VSTP, PSTP, SNMP on switches.
• Installed and configured workstations for IP based LAN's
• Configured VLANs, Private VLANs, VTP and Trunking on switches.
• Hands on Experience in Inter-Vlan routing, redistribution, access-lists.
• Performing troubleshooting on slow network property problems, routing problems that involves OSPF, BGP and distinctive the foundation reason for the problems.
• Installed and configured DHCP Client/Server.

Environment: Cisco 2950 switches and Cisco 3825 Routers, LAN, WAN EIGRP, OSPF, RIP, BGP, MPLS, VLAN, QOS, DHCP, DNS.