SUMMARY

• Cisco Certified Network Engineer with 8+years of professional experience in performing Network analysis, design, Implementing, capacity planning with a focus on performance tuning and support of large Networks.
• Strong noledge in Cisco Routing, Switching and Security with Cisco hardware/software (heavy Cisco shop) experience.
• Strong hands on and exposure to Checkpoint&Palo Alto on a regular basis.
• Experience in working with Cisco Nexus Switches likeN7k, N5k, N3k, N2k.
• In - depth noledge on Routing Policies, Network Architecture, IP Subnetting, VLSM,TCP/IP, NAT, DHCP, DNS, Active Directory.
• Enterprise Routing experience using protocols RIP v1 & 2, EIGRP, OSPF and BGP.
• Experience in Designing and assisting in deploying enterprise wide Network Security and High Availability Solutions for ASA.
• Knowledge of advanced technologies like VOIP, H.323, SIP, QOS, Multicasting, MPLS and MPLS-VPN.
• Extensive work experience with Cisco Routers, Cisco Switches, Load Balancers and Firewalls.
• Experience in layer-3 Routing and layer-2 Switching. Dealt with Nexus models like 7K, 5K, 2Kseries, Cisco router models like 7200, 3800, 3600, 2800, 2600, 2500, 1800 series and Cisco catalyst 6500, 4500, 3750, 3500, 2900 series switches.
• Knowledge of Networking Switches, Routers, QOS, BGP, OSPF, ATM, PPP, Ethernet, Wi-Fi and Multicasting.
• Good understanding of VoIP implementation and protocols such as H.323, RTP, and SIP.
• Management and Monitoring by use of SSH, Syslog, SNMP and Bluecoat Proxies.
• Knowledge of implementing and troubleshooting complex layer 2 technologies such as VLAN Trunks, VTP, Ether channel, STP, RSTP.
• Implementation of HSRP, VRRP for Default Gateway Redundancy.
• Experience in managing routers such as Juniper, Cisco, HP and load balancers such as F5, Netscaler.
• Knowledge in implementing and configuring F5 Big-IP LTM 6400 load balancers.
• Experience working in Cloud infrastructure with VMware ESXi Server platforms for application servers.NetworkConfiguration for server apps and app migrations support.
• Worked on teh security levels with RADIUS, TACACS+.
• Experience with convert Checkpoint VPN rules over to teh Cisco ASA solution. Migration with Cisco ASA VPN experience.
• Extensive working experience on Switching (VLANs, STP, VTP, Ether channels, HSRP), WAN(Frame Relay, IPSec, VPNs, MPLS), VOIP, QoS.
• Hands-on experience of working on CISCO firewalls, CISCO PIX(506E/515E/525)& ASA 5500(5510/5540) Series.
• Experience configuring VPC and Fabric path on Nexus gear in Data center.
• Knowledge of Network troubleshooting, Organization, Network planning, Maintenance, Monitoring protocols and software.
• Involved in troubleshooting of DNS, DHCP and other IP conflict problems.
• Expertise in installing,configuring and troubleshooting Juniper Routers (E, J, M and T-series)
• Implementing security policies using Cryptography, ACL,AAA Security on different series of routers.
• Experience with different Network Management Tools and Sniffers like Wireshark (etheiral), HP-Open view, RSA envision, and Cisco works to support 24 x 7 Network Operation Center.
• ConfigureVRRP&GLBP andVLANTrunking802.1Q&ISL, STP, Port Security on Catalyst 6500 switches.
• Knowledge of JUNOS platform and worked with JUNOS upgrade of Juniper devices.

TECHNICAL SKILLS

Routers: (1800, 2500, 2600, 2800, 3600, 3750, 3800, 7200), ASR 1K.

Cisco Switches: (2900,3500,4000,4500,5000,5800,6500,7600Nexus2k,3k,5k,7k).

Juniper: E series, J series and Mseries. Juniper SRX & VPN, T-Series, MX-Series Routers.

RoutingProtocol: (BGP, OSPF, EIGRP, ISIS, IGRP, LDAP, IGMP), Routed protocol TCP/IP, SIPMulticasting(PIM), 802.1Q.

LAN Protocols: VLAN, PVLAN, VTP, IPX, Inter-VLAN routing, ISL, dot.1q, STP, IS-IS, RSTP, MSTP IPVST, LACP, HSRP, GLBP, VPC, VDC, Ethernet, Port security.

WAN Technology: Frame Relay, ISDN, ATM, WAAS, PPP, ICMP, WiSM Module in 6509 X.25, L2VPN, L3VPN, E1/T1/DS1/DS3.

NetworkManagement: SNMP v2, v3, Syslog, HP Open View NNM, Net flow Analyzer, Sniffer Wireshark, Cisco Works, 3ComNetwork Analyzer, Solarwinds, Orion.

AAA Architecture: TACACS+, RADIUS, Cisco ACS.

Operating systems: Linux, UNIX, DOS, Windows 2003 server and Windows 2008 server.

NetworkSecurity: NAT/PAT, Ingress &Egress Firewall Design, VPN ConfigurationInternet Content Filtering, Knowledge of Firewall, ASA, Cisco FWSM/PIX/ASDM, Cisco NAC, IPsec, Checkpoint, SPLAT, IPS/IDS (Snor), IPS 4260.

Application Protocols: DHCP, DNS, FTP, HTTP, SMTP, TFTP.

Documentation: Microsoft Office Suite, Visio.

PROFESSIONAL EXPERIENCE

Confidential, Lincoln, Nebraska

Sr. Network Engineer

Responsibilities:

• Involved in teh configuration & troubleshooting of routing protocols: MP-BGP, OSPF, LDP, EIGRP, RIP, BGP v4. Configured IP access filter policies.
• Involved in complete LAN, WAN development (including IP address planning, designing, installation, configuration, testing, maintenance).
• Configured VLANs with 802.1q tagging. Configured Trunk groups, Ether channels, and STP for creating Access/distribution and core layer switching architecture.
• Configuration and troubleshooting of Cisco Nexus switches7K, 5K, 3K, 2Kswitches.
• Designed 10 gigabit networks using Cisco Nexus 7K series switches, and Cisco 3K series routers.
• Testing BGP, OSPF, RIP and static route between Arista 7k, nexus 6k devices and Juniper MX series.
• Support third party technologies within teh ACI ecosystem such as VMware ESX, OpenStack.
• Provide Tier III Level Load Balancer expertise on F5 BigIP Local Traffic Managers (LTM). Designing F5 solutions/support for migration work of applications and websites from Cisco CSS Load Balancers to teh F5 BigIP Load Balancers.
• Involved in originating VoIP telephone calls are similar to traditional digital telephony and involve signaling, channel setup.
• Creating, Managing and maintaining rules to adhere corporate security standards using checkpoint Firewall.
• Utilize server-based tools (VMware, IIS) to reconfigure and optimize server performance.
• Coded a lot ofnetwork, VMware, Ubuntu Linux and application-specific monitoring in Python/SSH with associated shell script.
• Configured Cisco 7200 routers which were also connected to Cisco ASA5500 security appliances providing firewall security.
• Configure VDCs and implement Layer2 topologies using Fabricpath, VPC+, L2-L3, VRFs, HA and Port Channel.
• Monitoring Traffic and Connections in Checkpoint and ASA Firewall.
• Designed and configured teh commands for QoS and Access Lists for Nexus 7K and 5K.
• Involved in L2/L3 Switching Technology Administration including creating and managing VLANs, Port security.
• Extensive Working & Troubleshooting Exposure to VOIP Phones, Dial Peers, Dial Plan, DID and other telephony services related to CME.
• Worked on firewall Pix525, ASA and other tools like SNMP, AAA, RADIUSand designed VPN with IPSEC security layer.
• Proposed upgrades, installed, and configured Solarwinds Log and Event Manager.
• Lead and identify key process improvements as they relate to teh Solarwinds server environments in dev/test and production.
• Configuring NAT onto teh Juniper SRX firewalls using Infoblox.
• Experience with VOIP and QOS implements and support.
• Involved in Switching Technology Administration including creating and managing VLANS’s, Port security, Trunking, STP, Inter Vlan routing, LANsecurity.
• Configured and performed troubleshooting on link state protocols like OSPF in single area and multiple areas.
• Successfully installed Palo Alto Next-Generation PA-3060, PA-5060 firewalls to protect Data Center with teh use of IPS feature.
• Configured HSRP and VLAN trucking 802.1Q, VLAN Routing on Catalyst 6K switches.
• Optimized performance of teh WANnetworkconsisting of Cisco 3550/4500/6500 switches by configuring VLANs.
• Performed IOS upgrades on Catalyst 2900, 3500, 4500 series switch and 2500, 2600, 3600 series routers.
• Testing codes (images) and interfaces for nexus 6k, Arista 7k.
• Experience in Layer 2 LAN technologies including but not limited to Ethernet (Switched, FastE, and GigE), Spanning-Tree, VLANs, VTP, and Trunking (802.1q).
• Modified internal infrastructure by adding switches to support server farms and added servers to existing DMZ environments to support new and existing application platforms.
• Maintained redundancy on Cisco 2600, 2800 and 3600 routers with HSRP.
• Configured BPDU Guard, port-fast, uplink fast and other spanning tree features.
• Checking and configuring Cisco 7600 and 7200 routers at data center for remote sites’ issues.
• Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500/PIXsecurity appliance, Failover DMZ zoning & configuring VLANs/routing/NATing with teh Firewalls as per teh design.

Environment: Cisco 2948/3560/4500/3560/ 3750/3550/3500/2960 /6500 switches and Cisco 3640/12000/ 7200/3845/3600/2800 routers,Cisco Nexus 7K/5K, F5 BIGIP LTM,RIP,OSPFEIGRP,LAN,WAN,VPN,HSRP, Juniper 3600, 5600, Arista, Infoblox.

Confidential, Dallas, Texas

Sr. Network Engineer

Responsibilities:

• Implementation of Wireless access points, Cisco 3750, 3850 switches and Cisco 3900 and ASR 1000s routers to new sites.
• Experience in implementing and configuring F5 Big-IP load balancers 6400-LTM (V9).
• Configured IP, EIGRP, RIP, BGP and OSPF in routers. Configured and installed multi-protocol (IP, IPX) multi-interface Cisco routers.
• Deployed Site to Site and Client to Site VPNs utilizing Checkpoint Firewall-1/VPN-1.
• Testing QoS for nexus 6k and Arista 7k using Ethanalyzer and TCPDump.
• Implementing and troubleshooting (on-call) IPsec VPNs for various business lines and making sure everything is in place.
• Once trouble ticket TEMPhas been created keep customer informed of status of ticket and estimated time to repair.
• Configured Nexus 7018 including NX-OS Virtual Port Channels, Nexus port profiles, Nexus VPC peer link.
• Design and configuring of OSPF, BGP on Juniper Routers and SRX Firewalls.
• Firewall technologies including general configuration, risk analysis, security policy, rules creation and modification of Palo Alto Next-generation firewall working with PANORAMA.
• Integrate a virtual version of Nexus: Nexus1000v into VMWare to extend Nexus capabilities directly adjacent to virtual machines so that they benefit from Cisco switching capabilities andnetwork topology consistency ensuring VMs maintain their subnet/VLAN relationships during failover.
• Configured ASA 5540 to ensure high-end security on teh network with ACLs and Firewall.
• Monitor, troubleshoot, test and resolve Frame Relay, ATM, MLPPP, PPP, and Dial-up.
• Configure and implement remote access solution for customers: IPSECSite2Site, GRE tunnel end-to-end.
• Design and configuring of OSPF, BGP on Juniper Routers (MX960, MX480) and SRX Firewalls (SRX240, SRX550).
• Configure all Palo Alto Networks Firewall models (PA-2k, PA-3k, PA-5k) as well as a centralized management system (Panorama) to manage large scale firewall deployments.
• Created TEMPeffective network security by migrating from Check Point FW-1 NG to ASA 5510 Firewalls.
• Managed teh F5 BigIP GTM/LTM appliances to include writing iRules, SSL offload and everyday task of creating WIP and VIPs.
• Experience through Hand-on Experience with configuring T1.5, Gigabit Ethernet, Channelized T3 and full T3, OCX, ATM, Frame-Relay and VOIP (Voice-Over Internet Protocol).
• Upgraded Cisco Routers, Switches and Firewall (PIX) IOS using TFTP.
• Configuring various advanced features (Profiles, monitors, iRules, Redundancy, SSL Termination, Persistence, SNATs, HA on F5 BIGIP appliances SSL termination and initiation, Persistence, Digital Certificates, Executed various migration/upgrade projects across F5 and hands on with F5 BIGIP LTMs/EM.
• Configured and basic trouble shoot of IP phones VoIP, configured gateways and gatekeepers.
• Providing daily network support for national wide area network consisting of MPLS, VPN and point-to-point site.
• Involved in migration from Frame-Relay/ATM network to MPLS-based VPN for customer’s WAN infrastructure.
• Provides updates and upgrades to teh Palo alto firewalls, FPCs/NTSA Managers and Panorama devices.
• Installed and configured PIX 520, 525, 535 series firewalls, configured standard and extended access-lists and policy- based filters.
• Proficient in operation of Cisco Nexus 5K switches with Fabric Extender using VPC, VLAN, STP and LACP.
• Configured asterisk voice server using command line Interface including IP phones VoIP.
• Installation and administration of Cisco ASA 5500 series firewalls, Cisco 6500, 3560, 4500, 2950, 2924 series switches, Cisco Router 7200, 3945, 3640, 2600, 2500 and Checkpoint R 75.40 Firewall
• Optimized performance of teh WANnetworkconsisting of Cisco 3550/4500/6500 switches by configuring VLANs.
• Configuring HSRP between teh 3845 router pairs of Gateway redundancy for teh client desktops andGLBP, VLAN Trunking 802.1Q, STP, Port security on Catalyst 6500 switches.
• Configured various Router interfaces like ATM interface, T3& Channelized T1 interfaces
• Troubleshooting CISCOcatalyst 6509, 7609, 7613 with Supervisor cards, Cisco 3640, Cisco GSR 12416,21418(with PRP and RPR processors)
• Configuring MPLS in Cisco IOS XR.
• Configured Routing protocols such as RIP, OSPF, EIGRP, BGP, static routing and policy based routing.
• Providing Level 3 support to customers, resolving issues by attending to conference calls.
• Providing Level 3 Engineering and Support to other internal network engineers and contractors.
• Working with BGP, OSPF protocols in MPLS Cloud.
• Installed, configured and supported Server 2003, 2008 and 2012 domainnetworksrunning virtual on VMWareESXi 5 and some standalone servers.

Environment: Cisco 3750/3550/3500/2960 switches and Cisco 3640/12000/ 7200/3845/3600/2800 routers, MPLS,Checkpoint,OSPF,BGP,VLAN,HSRP,LAN,WAN,IPV4,ASAFirewall, Nexus 7K/5K/2K, Ipsec, VMWare, VoIP.

Confidential, Austin,TX

Network Engineer/Network Security Engineer

Responsibilities:

• Configuring RIP, OSPF and Static routing on Juniper M and MX series Routers
• Worked on F5 BIG-IP LTM/s6900, configured profiles, and provided and ensured high availability and maintained policies on F5 Application Security Manager (ASM).
• Checkpoint Firewall upgrade from Checkpoint R65 to Checkpoint GAIA R77.
• Configured ASA5540 to ensure high-end security on teh network with ACLs and Firewall.
• Used IPSec VPN tunneling to provide access to user machines and partners in other network. Provided application level redundancy and availability by deploying F5 load balancers LTM.
• Worked on server’s migration and understanding teh VMware and virtualization which connected to End of life and End of support switches from 3560, 3750, 3850, which are having no dual power source to teh Nexus-5x as part of power redundancy.
• Design and create dedicated VLANs for Voice and Data with QOS for prioritizing VOICE over teh DATA on Catalyst switches and basic VOIP configurations.
• Provided technical support TDM/VoIP soft-switch and new VoIP broadband telephone services division.
• Successfully installed Palo Alto PA 3060 Firewalls to protect Data Centre and provided L3 support for routers/switches/Firewalls.
• Replaced old 6500 and WAN routers from DR testing site and Installed Nexus 7K and ASR 1006 routers.
• Implemented Zone Based Firewalling and Security Rules on teh Palo Alto Firewall.
• Configuring TACACS, LDAP and RADIUS for Cisco ASA and Palo Alto firewalls.
• Configured routing protocols like EIGRP, OSPF & BGP and troubleshooting layer3 issues.
• Implemented Quality of service (QoS) to increase bandwidth utilization in LAN and WAN interface using RSVP and Packet prioritization.
• Maintained TACACS+and RADIUS servers for AAA and user authentication.
• Configured PVSTP+ for loop prevention and VTP for Inter-VLAN Routing.
• Worked on Extensively on Cisco Firewalls ASA5500(5510/5540) Series.
• Support third party technologies within teh ACI ecosystem such as VMware ESX, OpenStack. configuration of HSRP for load balancing on L3 switches on different location of office on teh switchedNetwork.
• Established IPSec VPN tunnels between branch offices and headquarter using ASA Firewall 5505/5510.
• Troubleshot IPSec/GRE VPN tunnels and implementation of QoS.
• Implemented Site-to-Site VPNs over teh internet utilizing 3DES, AES/AES-256 with ASA and JUNIPER SRX Firewalls Worked on configuring and supporting Cisco ASA, Checkpoint, Juniper firewalls.
• Configured and deployed BIG-IP LTM 6900 for providing application redundancy and load balancing.
• ImplementedNetworkpacket level monitoring using Wireshark, Solarwinds.
• Expertise in maintenance of layer2 switching tasks which advocate VLAN, VTP, STP, RSTP, PVST,RPVST,configuring of ether channel with LACP and PAGP along with troubleshooting of inter-VLAN routing.
• Worked on commissioning and decommissioning of teh MPLS circuits for various field offices & POPs.
• Configured VPN to allow remote users access to corporatenetwork. Configured Client VPN technologies including Cisco's VPN client via IPSEC.
• Installation, configuration, maintenance & troubleshooting of Cisco ASA 5500 and Cisco PIX Firewall 500.
• Worked with ASA Firewall configuration and Participated in Migration of PIX to ASA for hardware devices.
• Involved in setting up Voice VLANs on distribution switches, and configuring access switches ports for AVAYA IP PHONES.
• Configured ASA 5520 to ensure high-end security on thenetworkwith ACLs and Firewall.
• Build IT security infrastructure including Checkpoint, Juniper and Palo Alto firewalls.
• Worked on Check Point Firewalls NG, NGX, R61, R65, R70, R75, R77.
• Worked with Cisco Catalyst 6500, 4500, 4900 switches and Cisco 2800, 3600, 3800, 7200 & 7600 seriesRouters.
• Involved innetworkDesigning, Routing, DNS, IP Subnetting, TCP/IP protocol.
• Worked with Routing Protocols of EIGRP and BGP.
• Configured PVSTP+ for loop prevention and VTP for Inter-VLAN Routing.
• GRE tunneling &Site-to Site VPN configuration between other two sites in USA.

Environment: NetFlow,TACACS,EIGRP,RIP,OSPF,BGP,VPN,CSM,SUP720,EtherChannels,Cisco 7200/3845/3600/2800 routers, Wireshark and Sniffer, Cisco 6509/ 3750/3550/3500/2950 switches, Cisco ASA firewalls, F5 BIGIP LTM, GRE, Ipsec, Checkpoint, Junipiter, Vmware, Ipsec.

Confidential

Jr. Network Engineer

Responsibilities:

• Managing teh service request tickets within teh phases of troubleshooting, maintenance, upgrades, fixes, patches and providing all-round technical support.
• Commissioning and Decommissioning of teh MPLS circuits for various field offices.
• Migration of existing IPSEC VPN tunnels from Pre-Shared key to Certificate.
• Maintained redundancy on Cisco 2600, 2800 and 3600 routers with HSRP.
• Troubleshooting complex networks layer 1, 2 and layer 3 (routing with MPLS, BGP, EIGRP, OSPF protocols) technical issues.
• Debugging problems in a multi-protocolnetworkenvironment such as RIP, OSPF, STP, RSTP, MSTP and VRRP.
• Worked on Avaya propriety loop prevention protocol like SLPP (Simple loop prevention protocol).
• Configuring/Troubleshoot issues with teh following types of routers Cisco (7200, 6500, 4500,1700, 2600 and 3500 series), to include: bridging, switching, routing, Ethernet, NAT, and DHCP, as well as assisting with customer LAN /MAN, router/firewalls.
• Performing troubleshooting for IOS related bugs by analyzing past history and related notes.
• Modified internal infrastructure by adding switches to support server farms and added servers to existing DMZ environments to support new and existing application platforms.
• Configured switches with port security and 802.1 xs for enhancing customer’s security.
• Monitored network for optimum traffic distribution and load balancing using Solar winds.
• Implementing security policies using ACL, Firewall, IPSEC, SSL, VPN, IPS, AAA (TACACS+ & RADIUS).
• Installation, Configuration and Administration of Windows Servers2008/2012, Active Directory, FTP,DNS, DHCP, TFTP, Linux OS under various LAN and WAN environments.
• Troubleshooting of LAN/WAN infrastructure, including routing protocols EIGRP, OSPF, BGP, VRRP, GLBP, VLANS, Trunks, Ether-channels, STP, RSTP, SPAN, RSPAN and inter VLAN routing.including creating and managing
• VLANs, Port security, Trunking, STP, Inter-Vlan routing, LAN security.
• Completed service requests (me.e. - IP readdressing, bandwidth upgrades, IOS/platform upgrades,).
• Configured STP for loop prevention on Cisco Catalyst Switches.
• Install, upgrade, support and troubleshoot applications hosted on windows server 2000/2003/2008.
• Handled installation of WindowsNT Server and Windows NT Workstations.
• Handled Tech Support as it relates to LAN & WAN systems.
• Experience in working with Cisco Nexus 5000 series switches for data center.

Environment: Netflow, TACACS, EIGRP, RIP, OSPF, BGP, SUP720, EherChannelsCisco 7200/3845/3600/2800 routers and Cisco 6509/3750/3550/3500/2950 switches.

Confidential

Network Administrator

Responsibilities:

• Configuring/Troubleshoot issues with teh following types of routers Cisco (7200, 6500, 4500, 1700, 2600 and 3500 series), to include: bridging, switching, routing, Ethernet, NAT, and DHCP, as well as assisting with customer LAN /MAN, router/firewalls.
• Wrote IOS and CAT OS upgrade procedures and Pre/Post checks for customer production upgrades.
• Excellent Troubleshooting Skills and Customer Centric approach.
• Switches Replace branch hardware with new 2851 routers and 2960 switches.
• Implemented Cisco Wireless Access Points and WLC’s at various corporate sites fort 11n Infrastructure and its legacy technologies.
• Provided estimated bandwidth requirements for data replication, to best determine adequate timing for migration service levels.
• Configured and Administered Windows 2003, 2008, Active Directory.
• Configuring HSRP between VLANs, Configuring Ether-Channels, Port Channel on 6500 catalyst
• Configuring, managing and troubleshooting networks using routing protocols like RIP,EIGRP and OSPF (Single Area and Multi Area).
• Configured OSPF on CISCO devices with multiple routing processes and redistributed them. Tested and hands on experience in multi area OSPF topologies.
• Configured VLANs with 802.1q tagging. Configured Trunk groups, ether channels, and Spanning tree for creating Access/distribution and core layer switching architecture.
• Assisted in network engineering efforts consistent with teh infrastructure of an Internet Service Provider and support of such network services. Helped in designing and implementation of VLAN for teh new users.
• Administered all user accounts in Active Directory.
• Responsible for designing, installation and maintenance of LAN & WANnetwork, Manage Windows 2003/ Windows xp clients.
• Installation and configuration of 2800 and 3500 series switches
• Creating VLAN and inter-vlan communication
• Installation of Windows 2003 servers, Windows XP and Windows 7 Operating System.
• Installation & maintenance of desktop applications like MS Office, Antivirus, PostgreSql and Personal firewalls.
• User and resource management such as resource sharing, permissions.
• Installation and managing DNS, DHCP and AD.
• Support for day-to-day LAN/ WAN connectivity.
• Work with OS and application teams to ensure client service success.
• Documentingnetworkproblems and resolutions for future reference.
• Hardware Maintenance and troubleshooting.

Environment: Cisco routers (7900,3600,2500), Cisco switches (4500,6500), Cisco ASA Firewall (5510), Routing Protocols (EIGRP, RIP, BGP), Switching protocols (VTP, STP), Active directory.