SUMMARY

• CCNP certified Network Engineer with 7+ years of professional experience in Network Designing, Deployment, Configuring, Troubleshooting and Testing of networking system.
• Experience in Layer 3 Routing Protocol configurations: RIP, OSPF, BGP, EIGRP and MPLS.
• Strong hands on experience in installing, configuring, and troubleshooting of Cisco 7600, 7200, 3800, 3600, 2800, 2600, 2500 and 1800 series Routers, Cisco Catalyst 6500, 4500, 3750, 2950 and 3500XL series switches.
• Switching tasks include VTP, ISL/ 802.1q, IPsec and GRE Tunneling, VLANs, Ether Channel, Trucking, Port Security, STP and RSTP.
• Network security including NAT/PAT, ACL, VPN Concentrator, IDS/IPS, and ASA/PIX Firewalls.
• Proficiency in configuration of VLAN setup on various Cisco Routers and Switches.
• Experience with F5 load balancers - LTM, GTM series like 6400, 6800, 8800 for the corporate applications and their availability.
• Experience in Network Management Tools and sniffers like SNMP, HP-Open view, Wireshark and Cisco works to support 24 x 7 Network Operation Center.
• Experience in physical cabling, IP addressing and subnetting with VLSM, configuring and supporting TCP/IP, DNS, installing and configuring proxies.
• Experience working with Nexus 7010, 7018, 5020, 2148, 2248 devices.
• Experience in layer-3 Routing and layer-2 Switching. Dealt with Nexus models like 7K, 5K, 2K series, Cisco router models like 7200, 3800, 3600, 2800, 2600, 2500, 1800 series and Cisco catalyst 6500, 4500, 3750, 3500, 2900 series switches.
• Strong hands on experience on PIX Firewalls, ASA (5540/5550) Firewalls. Implemented Security Policies using ACL, Firewall, IPSEC, SSL, VPN, IPS/IDS, AAA (TACACS+ & RADIUS).
• A highly organized individual who adopts a systematic approach to problem solving, effectively analyzes results and implements solutions.
• Provided 24x7x365 availability and on-call support as required by the projects.
• Excellent working knowledge of TCP/IP protocol suite and OSI layers.
• Good knowledge and experience in Installation, Configuration and Administration of Windows Servers 2003/2008, Active Directory, FTP, DNS, DHCP, TFTP, Linux OS under various LAN and WAN environments.
• Implemented Site-to-Site VPNs over the internet utilizing 3DES, AES/AES-256 with ASA Firewalls
• Responsible for managing activities, Upgrading IOS - Upgrading hardware and installing new devices, Tuning (Configuration), make standardization for the topology
• Experience on HSRP for load balancing.
• Involved in the removal of EIGRP from all devices and making OSPF the primary routing protocol.
• Responsible for turning up BGP peering and customer sessions, as well as debugging BGP routing problems.
• Designing and Implementation of (LAN) VLANs, VTP, Spanning Tree (STP), Trunking (dot1q and ISL) and Ether channel.
• Key contributions include troubleshooting of complex LAN/WAN infrastructure that include routing protocols EIGRP, OSPF & BGP
• Installation & configuration of Microsoft Proxy Server 2.0 & Blue Coat Proxy
• Involved in design and implementation of Data Center Migration, worked on implementation strategies for the expansion of the MPLS VPN networks
• Experience converting Cat OS to Cisco IOS on the Cisco 6500 switches

TECHNICAL SKILLS

Cisco Switches: (2900, 2924, 2950, 3550, 5500, 6500, 65096513)

Cisco routers: (2600, 2800, 3640, 3700, 3825, 7200, 72047206), Cisco PIX 500 Series, CSU’s/DSU’s, Catalyst 6500, 7600, 4500, Juniper M320 and T640 routers.

Firewalls and Sniffers: Cisco PIX, FWSM, ASA, Check Point, OPNETWIRESHARK

Protocols: RIP, RIP2, PPP, OSPF, EIGRP, IS-IS, BGPSNMP, HTTP, FTP, TFTP, HTTP, DHCP, SMTP, ICMP

WAN Protocols and Technologies: HDLC, PPP, ATM, FRAME RELAY, IDSNMetro Ethernet

LAN Technologies: Ethernet, TCP/IP, CDP, STP, RSTP, VTPVLAN, Trunks, Ethernet channel, MPLS.

Redundancy Protocols: HSRP, VRRP, GLBP, RPR, RPR+, NSF-SSO.

Servers: AD/DC, DHCP, DNS, VPN, NAP, WSUS, Email Server, Software Deployment Server, BHS, GC Server, Windows Deployment Service, Proxy Servers, Print Servers, Application servers, FTP Servers:

Operating Systems: Windows 2000/2003/2008 , windows XP/7LINUX, Red hat, UNIX, Macintosh

Anti-Virus & Internet Security: MacAfee, Symantec, Trend-Micro & e-Trust.

PROFESSIONAL EXPERIENCE

Confidential, LA, CA

Sr. Network Engineer

RESPONSIBILITIES:

• Experience working with market data networks and dealing with clients and deploying network designs
• Experience working with design and deployment of MPLS Layer 3 VPN cloud, involving VRF, Route Distinguisher (RD), Route Target (RT), Label Distribution Protocol (LDP) & MP-BGP
• Experience with convert PIX rules over to the Cisco ASA solution.
• Wide experience in implementing and managing F5 BIG-IP load balancing, including GTM, APM, ASM, and custom iRule development.
• Implemented MPLS VPN (RFC 2547) Mechanisms on Cisco IOS and Juniper Platforms
• Configured the Airwave's AMP Professional for the management of WLAN environment.
• Implementing & Supporting Data Centernetworkwhich involves configuration & support ofJUNIPER, HP & CISCO devices, Load Balancer Radware & Check Point, Cisco ASA,JuniperSRX
• Responsible for Cisco ASA,Palo Alto and Impervafirewalladministration across our global networks
• Migration of existing IPSEC VPN tunnels from one Data Center to another Data Center, due to decom of existing Data Center, which involved working with Partner Companies.
• Handling Load balancer F5, A10 (Configuration/troubleshooting of Load balancer.)
• Design and configuring of OSPF, BGP on Juniper Routers (MX960) and SRX Firewalls(SRX240)
• Experience working with High performance data center switch like nexus 7000 series
• Experience working with Nexus 7010,7018, 5020, 2148, 2248 device
• Worked onJuniperMX 480, MX 960 routers,QFX5100, 5200,10000series switches
• Experience troubleshooting and installing of CRS, ISR, GSR devices
• MonitoredLAN/WANnetworkactivity utilizing CA/Spectrum monitoring tools
• Configuring & managing around 500+Network& Security Devices that includes Cisco Nexus & Arista Switches,JuniperMX Series Routers,JuniperSRXFirewalls, A10 Load balancers
• Security policy review and configuration in Palo Alto, Cisco ASA firewalls in data center.
• Upgraded load balancers from Adware to F5 BigIPv9 which improved functionality and scalability in the enterprise.
• Configured BIG-IP Application Security Manager, Advanced Firewall Manager and BIG-IP DNS,APM, GTM/LTM, ASM, AFMand HTTPS for the F5BIG-IP 3900 and 6900 platforms.
• Responsible for antivirus solutions on entirenetwork.
• Palo Altostyleand installation (Application andURLfiltering, Threatbar,informationFiltering)
• Configuring rules and MaintainingPalo AltoFirewalls & Analysis of firewall logsexploitationvariedtools.
• Experience with converting WAN routing from EIGRP/OSPF to BGP (OSPF is used for local routing only) which also involved converting from Point to point circuits to MPLS circuits.
• Experience working with migration from 6500 series devices to 4500 Series switches in Campus deployments at Core, Distribution and Access Layers.
• Experience with LAN protocols like STP, RSTP, MST, VTP, VLAN and Port Channel Protocols like LACP, PAGP
• Experience with design and configuring Overlay Transport Virtualization (OTV) on Cisco NX-OS devices like Nexus 7000.
• Implemented Zoneprimarily basedFirewalling and Security Rules on thePalo AltoFirewall
• Using Wireshark Capture and analyze SIP/SDP, RTP, TCP, UDP, IP Packets
• Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500 with ACL, NAT, Object Groups, Failover, Multi-Contexts
• Responsible for layer 2 securities which was implemented using a dedicated VLAN ID for all trunk ports, setting the user ports to non-trucking, deployed port security when possible for user ports
• Enabled STP attack mitigation (BPDU Guard, Root Guard), using MD5 authentication for VTP, disabling all unused ports and putting them in unused VLAN
• Implemented Site-to-Site VPNs over the internet utilizing 3DES, AES/AES-256 with ASA Firewalls.
• Regular upgrade and maintenance of Juniper Routers and Firewalls, Nexus 7k,5k & 2k, f5 BIG IP, Palo Alto Firewalls, Bluecoat Proxy and Riverbed Steelhead appliances.
• Experience in Checkpoint IDS-IPS, McAfee Antivirus Endpoint Protection Solution EPS
• Responsible for managing activities, Upgrading IOS - Upgrading hardware and installing new devices, tuning (Configuration), make standardization for the topology
• Installation & configuration of Microsoft Proxy Server 2.0 & Blue Coat Proxy
• Configured, installed, & managed DHCP, DNS, & WINS servers
• Implement and configured VRRP/GLBP (on distro/core switching), HSRP on different location of office on the switched network and managing the entire multilayer switched network
• Configuring RIP, OSPF and Static routing onJuniperM and MX series Routers,JuniperSRX240, JUNOS
• Experience configuring VPC, VDC and ISSU software upgrade in Nexus 7010
• Experience in Configuring, upgrading and verifying NX-OS operation system with OSPF, BGP
• Key contributions include troubleshooting of complex LAN/WAN infrastructure that include routing protocols EIGRP, OSPF & BGP
• Provide front end on-call network support 24x7x365 for all network infrastructures in the co-operation

Environment: Cisco routers (7200, 3800, 2800) and Cisco switches SD-Wan (6500, 3700, 4900, 2900), F5 (AFM, APM,GTM/LTM), Nexus (7K, 5K & 2K) Routing Protocols (EIGRP, OSPF, BGP), A10 AX ADC, switching protocols (VTP, STP, GLBP, HSRP), Cisco PIX (525, 535), Juniper IDP, ASA (5505, 5510) firewall.

Confidential, Santa Ana, CA

Network Engineer

RESPONSIBILITIES:

• Configured OSPF redistribution and authentication with type 3 LSA filtering and to prevent LSA flooding.
• Configured OSPF over frame relay networks for NBMA and point to multipoint strategies.
• Implementing traffic engineering on top of an existing Multiprotocol Label Switching (MPLS) network using Frame Relay and Open Shortest Path First (OSPF).
• Configuring RIP, OSPF and Static routing on Juniper M and MX series Routers
• Configuring VLAN, Spanning tree, VSTP, SNMP on EX series switches
• Design and configuring of OSPF, BGP on Juniper Routers and SRX Firewalls.
• Worked on HSRP for load balancing.
• Server load-balancing utilizing F5 LTM-Big IP, including APM, ASM and viprion device modules
• ConfiguredACIPolicies, Tenants, Bridge Domain, PrivateNetworks, Contracts and Filters
• Good understanding onWLAN, access points and RF Expertisewithtools and processes used in incident detection and handling
• Involved in L2/L3 Switching Technology Administration including creating and managing VLANs, VxLAN, Port security, Trunking, STP, Inter-Vlan routing, LAN security.
• Maintenance of client wide areanetworks(WAN) and local areanetworks(LAN)
• Experience in designing data communications and networks utilizing that utilize a mixture of frame relay,
• Involved in design and implementation of Data Center Migration, worked on implementation strategies for the expansion of the MPLS VPN networks
• Used Cisco ACI (Application Centric Infrastructure)SDNarchitecture to reduce operating costs, automate IT tasks, for greater scalability and visibility in a data center environment
• Experience with security assessment tools (NMAP, ISS, Nessus)
• Experience converting Cat OS to Cisco IOS on the Cisco 6500 switches
• Designed MPLS VPN and QoS for the architecture using Cisco multi-layer switches
• Successfullyput inPalo AltoPA 3060 firewalls to protectsinformationCenter and provided L3support for routers/switches/firewalls
• Configuring Virtual Chassis for Juniper switches EX-4300, Firewalls SRX-210
• Ensure that all system in the domain have McAfee Antivirus Protection Installed.
• Cisco IOS experience on 3600/7200 class hardware in complex WAN environment and experience on Cisco OS and IOS on CAT6500 in a complex data center environment.
• Configuring Palo Alto’s for inline use and Adding signature attacks on prevention lists.
• Auto Tuning Palo Alto Signatures and syncing between the data centers, working onPCI’s and managing it during peak if needed.
• Punched lines down in DMarc and monitored network traffic upholding antivirus solution.
• Hands on experience installing Sup720 for Cisco 6509-E series and its Gigabit Ethernet port deployment in the core network
• Working on ArubaWireless LAN Implementation for 11n Infrastructure across the Corporate Network.
• Configuring IP, RIP, EIGRP, OSPF and BGP in routers.
• Experience in deploying EIGRP/BGP redistribution and the changing the metrics for the primary and backup paths for the packet prioritization and EIGRP tuning
• Experience on a mesh 6500 and 5500 series routers and switches to support the core trading system. Involved
• Manage Cisco Routers and troubleshoot layer1, layer2 and layer3 technologies for customer escalations
• Taking Regular backups & testing the backups by restoring in test lab frequently
• Responsible for the design, deployment, configuration, and troubleshooting the F5 Load Balancing platform configuring, and integrating F5BIG IP GTM, LTM, APM, ASM
• Managing a TACACS server for VPN user authentication and network devices authentication
• Handled Corporate and Review Audits from the perspective of IT Security for Network Devices and Servers under our control
• Configuring IPSEC VPN on SRX series firewalls
• Troubleshooting and installing of CRS, ISR, GSR, ASR9000 and Nexus devices.
• Installation, Configuration and Administration of ADS, DNS, DHCP and Web proxy(ISA)server
• Upgrade Cisco Routers, Switches and Firewall (PIX) IOS using TFTP
• Implemented the concept of Route Redistribution between different routing protocols
• Switching related tasks included implementing VLANS, VTP, STP and configuring on Fast Ethernet
• Administered secure console and MGMT access using local and TACACS accounts. Configuration of VRF, VPC,VXLAN, VTEP on Nexus Series of routers.
• Administration of Cisco 11.x and 12.1 versions and higher
• Monitored all Cisco equipment’s using Cisco Works
• Responsible for design and deployment Huawei SDN datacenterSpineandLeafswitches.
• This includes Artifacts for regular Health Checks, IP and System Integrity, Change management, Problem management, Logical Access Controls, Network Connectivity, Service Registration and Performance Management
• Installed and configured the Cisco routers 2800 in two different customer locations. It includes coordinating with Verizon and AT&T in order to bring the serial interface up for T3 link. Also, configuration includes frame relay, BGP and VPN tunnel on GRE
• VLAN Configurations, troubleshooting and Firewall ACLs and Object-Groups configuration and support
• Configured IPsec site-to-site VPN connection between Cisco VPN 3000 Concentrator and Cisco 3800

Environment: Juniper firewalls 5GT, 208, SSG 5, 140, 550, 550M, NSM, IDS/IPS 6500/3750/3550/3500/2950 switches, Juniper (M320, T640), Juniper, Load balancing, Cisco 7200/3845/3600/2800 routers, security assessment tools (NMAP, ISS, Nessus), TACACS, EIGRP, RIP, OSPF, BGP, VPN, WLan, MPLS, Ether Channels.

Confidential, Chicago, IL

Network Engineer

RESPONSIBILITIES:

• Installation and Configuration of Cisco Catalyst switches 6500, 3750 & 3550 series and configured routing protocol OSPF, EIGRP, BGP with Access Control lists implemented as per Network Design Document and followed the change process as per IT policy It also includes the configuration of port channel between core switches and server distribution switches
• Experience with Juniper routers M7i, M320, MX series platforms Juniper switches EX 4500, EX 4200 & EX 3200 and Juniper QFX switches.
• Router/ Microsoft VPN Server in order to access certain limited network resources from customer locations
• Involved in the redistribution into OSPF on the core ASA firewall.
• Experience on HSRP for load balancing.
• Experience working with Cisco WAN Automation Engine (WAE) forSDNcomponent to automate the engineering and operations of multivendor physical and virtual infrastructure
• Involved in the removal of EIGRP from all devices and making OSPF the primary routing protocol.
• Performed RIP and OSPF routing protocol administration.
• Supporting EIGRP and BGP based company network by resolving level 2 & 3 problems of internal teams and external customers of all locations.
• Cisco Secure Access Control Server (ACS) for Windows to authenticate users that connects to a VPN 3000 Concentrator.
• Responsible for turning up BGP peering and customer sessions, as well as debugging BGP routing problems.
• Designing and Implementation of (LAN) VLANs, VTP, Spanning Tree (STP), Trucking (dot1q and ISL) and Ether channel.
• Key contributions include troubleshooting of complex LAN/WAN infrastructure that include routing protocols EIGRP, OSPF & BGP
• Involved in Configuring and implementing of Composite Network models consists of Cisco7600, 7200, 3800 series and ASR 9k, GSR 12K routers and Cisco 2950, 3500, 5000, 6500 Series switches.
• Worked on configuring and installingjuniperSecurity products such asSRX240h,SRX650, SSG 5, SSG 500M, ISG 2000
• Configured networkaccess servers and routers for AAA Security (RADIUS/ TACACS+)
• Configured networks using routing protocols such as RIP, OSPF, BGP and manipulated routing updates using route-map, distribute list and administrative distance for on-demand Infrastructure.
• Implemented Hot Standby Router Protocol (HSRP) by tuning parameters like preemption.
• Worked on FTP, HTTP, DNS, DHCP servers in windows server-client environment with resource allocation to desired Virtual LANs of network.
• Responsible for day to day management of Cisco Devices, Traffic management and monitoring.
• Experience in HSRP standby troubleshooting & Experience in configuring & upgrading of Cisco IOS
• Installation, Configuration and troubleshooting Cisco switches and Firewall on multi-mode context based environments
• Implemented various OSPF scenarios on networks consisting of 7600 routers.
• Configured policy based routing for BGP for complex network systems.
• Configured Multiprotocol Label Switching (MPLS) VPN with Routing Information Protocol (RIP) on the customer’s Site.

Environment: CISCO routers and switches, Juniper, Access Control Server, VLAN, Trunk Protocols, CISCO ASA, DHCP, DNS, Spanning tree, Nimsoft.

Confidential

Network Engineer

RESPONSIBILITIES:

• Configured Cisco Routers for OSPF, IGRP, RIPv2, EIGRP, Static and default route.
• Worked on HSRP for hop redundancy and load balancing.
• Design and configuring of OSPF, BGP onJuniperRouters andSRXFirewalls
• Configured the Cisco router as IP Firewall and for NATing Configured RSTP, MST and used VTP with 802.1q trunk encapsulation.
• Provided port binding, port security and router redundancy through HSRP.
• Designed ACLs, VLANs, troubleshooting IP addressing issues and taking back up of the configurations on switches and routers.
• Switching related tasks included implementing VLANS and configuring ISL trunk on Fast-Ethernet and Gigabit Ethernet channel between switches.
• Experience in Cisco switches and routers: Physical cabling, IP addressing, Wide Area Network configurations.
• Responsible for Internal and external accounts and, managing LAN/WAN and checking for Security
• Assisted in backing up, restoring and upgrading the Router and Switch IOS
• Assisted university campus for VOIP network management and troubleshoot
• Settings of the networking devices (Cisco Router, switches) co-coordinating with the system/Network administrator during any major changes and implementation
• Routing protocols OSPF, RIP & BGP
• Implementation of name resolution using WINS & DNS in TCP/IP environment
• Configured FTP server for inside/outside users & vendors

Environment: Cisco 7200/3845/3600/2800 routers, TACACS, EIGRP, RIP, and Vulnerability Assessment tools like Nessus, Red Hat, Solaris, Juniper VPN’s, and SSL.

Confidential

Network Engineer

RESPONSIBILITIES:

• Configured Routing protocols such as OSPF and policy based routing.
• Team member of Configuration of Cisco 7206 router and Configuration of Catalyst switches.
• Configuration 7609, 7606 with OSPF and catalyst 6505, 4500, 3550 switches with various VLAN.
• Create and test Cisco router and switching operations using OSPF routing protocol.
• Configuration and troubleshooting link state protocols like OSPF in multiple areas.
• Configured HSRP and VLAN trucking 802.1Q, VLAN Routing on Catalyst 6500 switches.
• Optimized performance of the WAN network consisting of Cisco 3550/4500/6500 switches by configuring VLANs.
• Configured BPDU Guard, port-fast, uplink fast and other spanning tree features.
• Configuration and troubleshooting of Cisco 2500, 2600, 3000, 6500, 7500, 7200 Series routers.
• Providing Technical Support and solutions for Network Problems.
• Involved in migration of ACE 10 and ACE 20 to ACE 30 module.
• Implementing NAT solutions on Cisco IOS routers.
• Worked on Data Center which has, ASR 1000.
• Worked on Cisco Routers, Active /Passive Hubs, Switches.
• Having Data Center Design Experience, installing and Configuring Network Devices in a Data Center including patching the cables in the Patch Panel. Design and implemented network infrastructure and configured all the network Infrastructure devices including Network Printers and Registers.

Environment: CISCO routers and switches, Access Control Server, VLAN, Trunk Protocols, CISCO ASA, DHCP, DNS, Spanning tree, Nimsoft.