SUMMARY

• CCNA, CCNP certified Network Engineer with 8 years of experience in providing solutions, implementation, configuration of Cisco Routers and switches, troubleshooting. & fine tuning of firewalls, VPN configuration, troubleshooting network related problems in Enterprise Network.
• Experience in Configuring, upgrading and verifying the NX - OS operation system.
• Extensive experience in configuring and troubleshooting of routing protocols RIP v1/v2, EIGRP, OSPF, BGP and MPLS.
• Understanding the JUNOS platform and worked with IOS upgrade of Juniper devices.
• Worked on network topologies and configurations, TCP/IP, UDP, Frame Relay, bridges, routers, hubs and Switches.
• Switching tasks include VTP, ISL/ 802.1Q, IPsec and GRE Tunneling, VLAN, Ether Channel, STP and RSTP, PVST+.
• Strong hands on experience in installing, configuring, and troubleshooting of Cisco 7600, 7200, 3800, 3600, 2800, 2600, 2500 and 1800 series Routers, Cisco Catalyst 6500, 4500, 3750, 2950 and 3500XL series switches.
• Hands on experience in configuring and supporting site to site and remote access Cisco IPSec VPN solutions using ASA/PIX firewalls, Cisco VPN client in addition to providing TACACS+ and RADIUS services .
• Expertise in implementation of IP addressing schemes (includes VLSM) and IP services to meet medium level enterprise level network requirement.
• Experience working withNexus7K, 5K, 2K devices.
• Experience with configuring Nexus2000 Fabric Extender (FEX) which acts as a remote line card (module) for the Nexus5000.
• Well Experienced in configuring protocols HSRP, GLBP, VRRP, ICMP, IGMP, PPP, HDLC, PAP, CHAP, and SNMP.
• Implemented traffic filters using Standard and Extended access-lists, Distribute-Lists, and Route Maps.
• Experience in installing and configuring DNS, DHCP server.
• Moderate knowledge in configuring and troubleshooting Cisco Wireless Networks: LWAPP, WLC, WCS, Standalone APs, Roaming, Wireless Security Basics, IEEE 802.11 a/b/g, RF spectrum characteristics.
• Worked on F5 LTM, GTM series like 6400, 6800, 8800 for the corporate applications and their availability.
• Associate level of System (Linux) administration experience.
• Good knowledge and experience in Installation, Configuration and Administration of Windows 2000/2003, HTTP, FTP, DNS, NTP, DHCP servers under various LAN and WAN environments.
• Proficiency in handling Network Monitoring tools and Packet capture tools.
• Adept in preparing Technical Documentation and presentations using Microsoft Visio / Office.
• Excellent analytical, organizational, problem solving & resolution skills.

TECHNICAL SKILLS

Routers: Cisco 2620, 2901, 3925, 3945E, 7201, 7613 Juniper M-series router.

Switches: Cisco 3550, 3750, 45XX, 65XX series Nexus 2232,2248, 5596, 7009

Routing: RIP, EIGRP, OSPF, BGP, Route Filtering, Redistribution, Summarization, Static RoutingSwitching LAN, VTP, STP, PVST+, RPVST+, Inter VLAN routing & Multi-Layer Switch, Ether channels, MPLS, fabric Path

Network Security: Cisco ASA, Checkpoint, Juniper SRX

Load balancer: Cisco CSS, NetScalar, Big IP f5

Languages: C, VHDL, Verilog HDL, 8086/8085 Assembly language.

Scripting: Perl, Unix shell Scripting.

Wireless Technologies: WCDMA, CDMA, GSM/GPRS, UMTS, CDMA2000, LTE.

Operating Systems: Windows, Linux, Unix, mac

Monitoring Tools: Netscout, Sevone, Netflow, Harbornet, Wireshark

PROFESSIONAL EXPERIENCE

Confidential

Network & Security Engineer

Environment: Cisco 6500, 4500, 3750, 2950, Checkpoint firewalls, Cisco ASA firewalls, Big IP F5 LTM 3900, 4000, Nexus 2k, 5k & 7k, McAfee Web gateway, Safenet Authentication

Responsibilities:

• Responsible for service request tickets generated by the helpdesk in all phases such as troubleshooting, maintenance upgrades and fixes with all around technical support.
• Providing daily network support for national wide area network consisting of 2 data centers and multiple sites across the globe.
• Responsible for Cisco ASA, Checkpoint firewalls across our global network.
• Configured VPC and VDC's on Nexus 5K, 7K respectively.
• Upgraded Hotfix on all Big IP F5 LTMs on our network to address SSL vulnerabilities.
• Extensively worked on F5 LTM to create Virtual servers, Pools.
• Replaced Juniper wireless access points (WAP) with Aruba WAPs.
• Migrated firewall rules from checkpoint to cisco ASA firewall.
• Upgraded checkpoint firewalls to address SSLv3 Vulnerability issues.
• Coordinated with Certificate Authorities like Comodo to generate/renew SSL certificates for enterprise websites and applied them on F5 LTM.
• Configuration of Standard and Extended ACLs for Security.
• Configured network using routing protocols such as EIGRP, BGP and troubleshooting L2/L3 issues.
• Worked on Mc Afee proxy servers to whitelist the web URLs.
• Worked on Safenet’s cloud based two factor authentication service.
• Configured QoS to shape voice traffic in DMVPN environment.
• Configured DMVPN, IPsec VPN on cisco devices.
• Follow Cherwell Service Manager Change management process in zero tolerance network environments.

Confidential

Network Engineer

Environment: Cisco Routers 7200, 3800, 3700, 2800; Cisco Catalyst switches 6500, 4500, 3500, 2900; Cisco PIX Firewalls 535, 525; Cisco ASA 5550, 5520; VTP, VLAN and 802.1Q trunking; Routing Protocols OSPF ; VPN, Frame Relay, Big-IP F5 Load Balancer, MS Visio.

Responsibilities:

• Supporting Data centre activities for Disney, ABC and ESPN.
• Responsible for Data Center Migrations and its operations.
• Installed, configured and managed Cisco routers such as 7200 series, 3800 series, 3700 series, 2800 series and Cisco Catalyst switch series 6500, 4500, 3500, 2900.
• Racking, stacking, configuring NEXUS 5K and 2K and 7K.
• Performed IP address planning, designing, installation, configuration, testing, maintenance, and troubleshooting in complete LAN development.
• Upgraded NX-OS from 5.2(1)N1(1) to 5.2(1)N1(6) on all Nexus 5000 access switches.
• Upgrade the Orlando Data Center Cisco Catalyst 6500 series switches to Cisco IOS version 15.1(1)SY2.
• Configured New Nexus 2K FEX Modules which acts as remote line card to Nexus 5K.
• Actively involved in Switching technology Administration including creating and managing VLANS, Port security- 802.1x, Trunking 802.1Q, RPVST+, Inter-VLAN routing, and LAN security on Cisco Catalyst Switches 4507R+E, 6509-E and Cisco Nexus Switches 2232, 5596, 7009.
• Upgraded Big P F5 LTM from 11.x to 11.4 .1 HF5.
• Design large number Virtual IP address, Pools and Persistence profiles on F5 LTMs.
• Implementation and Configuration ( Profiles, iRules) of F5 Big-IP LTM-6400 load balancers.
• Configured pools, virtual servers, nodes on different BIG-IP F5 load balancers and assisted in modifications of virtual server configuration on existing applications.
• Documenting workflow process, managing and implementing standard policy and procedures.
• Supporting EIGRP and BGP based on the network by resolving level 2 &3 problems of internal teams & external customers of all locations.
• Configuring HSRP between the 3845 router pairs for Gateway redundancy for the client desktops.
• Switching related tasks included configuring VTP for Inter-VLAN Routing, EtherChannel (LACP & PAgP) and RPVST for loop avoidance.
• Implemented Migration of Legacy switches SUPS7’s and 6509 Switches to Nexus 5k/2k/7k.
• Upgraded the data centre network environment with Cisco ASA 5520 . Configured Access Control Lists on Cisco Switches. Also configured routers as terminal servers.
• Involved in operations and administration of WAN consisting Ethernet Handoffs, T1, DS3, and Optic Fiber Handoffs.
• Good knowledge of WLAN including 802.11 standards, Lightweight and Autonomous systems, WPA, PEAP.
• Actively involved in Switching technology Administration including creating and managing VLANS, Port security- 802.1x, Trunking 802.1Q, RPVST+, Inter-VLAN routing, and LAN security on Cisco Catalyst Switches 4507R+E, 6509-E and Cisco Nexus Switches 2232, 5596, 7009.
• Worked on configuration and commissioning of the MPLS circuits for various branch offices.
• Providing daily network support for national wide area network consisting of MPLS, VPN and point-to point site.
• Implemented Site-to Site IPSecVPN between two branch offices and also SSL VPN for user’s connecting from various locations.
• Configuration of ACLs in Cisco 5520 ASA firewall for Internet Access requests for servers, Protocol Handling, Object Grouping and NAT.

Confidential

Network Engineer

Environment: Cisco Routers 7600, 3800, 7200; Cisco Catalyst switches 6500, 5000, 3500, 2950;; VTP, VLAN and 802.1Q trunking; Routing Protocols OSPF, BGP ; MS Visio.

Responsibilities:

• Worked as part of a team to manage Enterprise Network Infrastructure as a Tier 3 Support Engineer.
• Involved in Configuring and implementing of Composite Network models consists of Cisco 7600,7200,3800 series routers and Cisco 2950, 3500,5000, 6500 Series switches.
• Configuring Firewall switch module on Cisco 6506 distribution layer switches.
• Configuring VTPs, trunking, inter-vlan routing, port fast, uplink fast, backbone fast on access layer switches.
• Enable STP attack mitigation (BPDU Guard, Root Guard), using MD5 authentication for VTP..
• Great Understanding of WLAN including 802.11 standards, Lightweight and Autonomous systems, WPA, PEAP.
• Assisted in MPLS migrations
• Implemented a back up for the existing WAN connection using site to site IPsec VPN tunnels.
• Configuring Cisco ACS 4.0 along with TACACS+ server authentication.
• Configuring and troubleshooting OSPF routing protocol on the corporate network.
• Worked on the migration of Frame Relay based branches to MPLS based VPN for customer’s WAN infrastructure.
• Worked on the migration of existing PIX firewall to ASA firewall. PIX OS upgrade from 6.3 to 7.0 (x)
• Has done the Configuration on BIG IP (F5) Load balancers and also monitored the Packet Flow in the Load balancers.
• Has a good experience working with the Trouble Tickets on F5 Load balancers.
• Switch experience includes Cisco Catalyst switches: CISCO 3750, 4500, 6500 series switches.
• Administration of ASA firewalls in the DMZ and FWSM in the Server Farm to provide security and controlled/restricted access.
• Dealt with implementation of deployment related to Cisco devices and applying security policies on it.
• Troubleshoot issues related to VLAN, VLAN Trunking, HSRP failovers, related issues.
• Configuration of NAT.
• Maintain effective communications with vendors, peers and clients in resolution of trouble-tickets, equipment RMAs, and support requests.
• Planning for upgrade of IOS on devices and performing the upgrade.
• Assisted in the architecture, evaluation and recommendations related to purchasing and installing hardware, software related to IP Networking.
• Monitored network traffic and developed capacity planning initiatives, making necessary recommendations for additional resources or hardware.
• My responsibilities also include writing and executing Test Plan, and Desk level procedures for smooth network operations.

Confidential, San Jose, CA

Network Engineer

Environment: Cisco routers 7200, 3800, 2800; Cisco Catalyst switches 6500, 4500, 3500, 2900; Cisco PIX Firewalls 535, 525 Routing Protocols OSPF, BGP ; STP, VTP, VLAN ; VPN, MPLS, HSRP, GLBP; Cisco Works; MS Visio.

Responsibilities:

• Installed and configured Cisco 7200 series router and Cisco 2950, 4500, 6500 Series switches.
• Configured network using routing protocols such as RIP, OSPF, BGP and troubleshooting L2/L3 issues.
• Time to time upgrade network connectivity between branch office and regional office with multiple link paths and routers running HSRP, EIGRP in unequal cost load balancing to build resilient network.
• Design and implement Catalyst/ASA Firewall Service Module for various LAN’s.
• Key contributions include troubleshooting of complex LAN/WAN infrastructure that include routing protocols EIGRP, OSPF & BGP.
• Configured Client VPN technologies including Cisco’s VPN client via IPSEC.
• Configuring ACL to allow only authorized users to access the servers.
• Participated in on call support in troubleshooting the configuration and installation issues.
• Installation, Maintenance, Troubleshooting Local and Wide Areas Network (ISDN, Frame relay, NAT, DHCP, TCP/IP).
• Provided Technical support in terms of upgrading, improving and expanding the network.
• Providing technical security proposals, detailed RFP responses, security presentation, installing and configuring ASA firewalls, VPN networks and redesigning customer security architectures.

Confidential

Network Engineer

Environment: Cisco 3800, 2800, 2600, and 1721.

Responsibilities:

• Responsible for the configuration of Cisco Routers ( 7000, 5300, 4000, 2500, 3000,2600) using RIP, IGRP, OSPF, EIGRP, BGP
• Implement Cisco IOS Firewall IDS using 2600 series router
• Implement Cisco Secure Access Control Server (ACS 3.0) for TACACS+/RADIUS
• Redistribution of routing protocols and Frame-Relay configuration
• Network Migration from RIP to OSPF
• Implementation of TCP/IP and related Services-DHCP / DNS /
• Upgrade Cisco Routers, Switches and Firewall (PIX) IOS using TFTP
• Acted as Tier 3 support for connectivity, failures, configuration, implementation, and troubleshooting
• Troubleshot various network devices for connectivity and performance issues; used tools such as Cisco Works.
• Provide expertise with secure communications to remote users and business partners with multiple Cisco VPN concentrators and PIX/ASA firewalls in addition to TACACS+ and RADIUS services
• Provide project management for data center cabling, documented all network drawings using Visio
• Design, test, and implement global Next Generation MPLS network (150 sites) using Cisco 3800, 2800, 2600, and 1721 routers using BGP and EIGRP protocols
• Implementing traffic policy changes with Cisco PIX Firewall appliance switch and WAP configuration and installations

Confidential

Network Support Engineer

Responsibilities:

• Manage office network with Cisco devices with network devices including 2500 and 3600 series routers and 3500, 2900, 1900 series switches.
• Configured and managed networks using L3 protocols like RIPv2, IGRP.
• Designed networks and provided security between various offices of the organization.
• Configured VLANs, Private VLANs, VTP and Trunking on switches.
• Configured L2 and L3 security features on devices.
• Hands on Experience in Inter-vlan routing, redistribution, access-lists and dynamic Natting.
• Log messages using Syslog server and analyze the issues related to high CPU utilization and parameters that can degrade performance of the network.
• Experience on Cisco IOS and Upgrading Cisco IOS using TFTP server.
• Involved in SNMP Network management.
• Worked on various Sniffing tools like wireshark, Packet Sniffer.
• Backups of Cisco router configuration files to a TFTP server.