SUMMARY

• CCNA CCNP CERTIFIED professional with 8+ years of experience in network design, implementation, and support. Routing, switching, firewall technologies, system design, implementation and troubleshooting of complex network systems.
• Hands - on experience on Up-gradation of Cisco IOS on different Cisco devices and modules
• Provided services in many industries such as Consulting, Telecommunications and IT Infrastructure. Specializing in LAN, WAN, SD WAN, WLAN, MAN and Data Center networks
• Extensive knowledge with VLAN’s, Trunking, RSTP, SNMP, Ether Channels, HSRP, Port Security, ACL’s, QoS, Traffic Policing, Shaping, EIGRP, OSPF, NAT, PAT, Inspections, VPN’s, DHCP, Wireshark etc; Experience working with Nexus 7K, 5K and 2K.
• Well experienced in configuring and troubleshooting of Palo Alto, Juniper NetScreen& SRX Firewalls and their implementation Experience in site-to-site and remote access VPN solutions.
• Has expertise to work in Cisco/Checkpoint/Juniper/F5/Riverbed Products.
• Has experience in maintaining huge datacenters with Heterogeneous environment.
• Implemented multiple Cisco Nexus based Data-Center environments, as well as 6500/4500/3750 series switches, 7200/3900/2900/1900 series router. Multiple datacenter migrations and transformation projects, with great expertise on Wireshark.
• Extensive experience in configuring and troubleshooting of protocols RIP v1/v2, EIGRP, OSPF, BGP and MPLS. Basic knowledge on Wireless Access points of 802.11 a, b, g
• Hands on Knowledge/experience on F5 load balancers, its methods, implementation and troubleshooting on LTMs and GTMs. Also worked on Citrix Load balancer
• Well experienced in configuring HSRP, GLBP, ICMP, IGMP, PIM, PPP, PAP, OSPF, CHAP and SNMP.
• Experience in installing and configuring DNS, DHCP server
• Expertise in installing, configuring, and maintaining Cisco Switches (2900, 3500, 7600, 3700 series, 6500 series) Cisco Routers (4800, 3800, 3600, 2800, 2600, 2900, 1800, 1700, 800)
• Expertise in installing, configuring and troubleshooting Juniper Routers (J, M and MX-series), QFX-series Routers/Switches, EX Series Ethernet Switches.
• Administration and diagnostics of LAN and WAN with in-depth knowledge of TCP/IP, NAT, PPP, ISDN and associates network protocols and services.
• In-depth knowledge and hands-on experience in ISP Routing Policies, Network Architecture, IP Sub netting, VLSM, TCP/IP, NAT, DHCP, DNS, FT1 / T1 / FT3 / T3 SONET POS OCX / GigE circuits, Firewalls. Hands on experience with HP Tipping Point IPS.
• Provided troubleshooting and diagnostic support at L2/L3 level using different technologies and tools such as spunk 6 (Log tool), Syslog and server monitoring and BMC Remedy ticketing tool.
• Extensive experience in dealing with Vendors for MPLS/DSL installations.
• Designed & Implemented DMZ solutions for data center environment, build checkpoint firewall policies for the same.

TECHNICAL SKILLS

Cisco Routers: 1700, 1900, 2500, 2600, 3600, 7200, ASR 1K and 9K

Cisco Switches: 6500, 7600, 5800, 2900, 4000, 3500, 4500, 5000

Cisco Nexus: 5020, 5548, 5596T, 2148, 2248TP, 2348UPQ, 7010, 7702

Juniper: EX-2200, EX-4200, EX-4500, MX-480, M Series, SRX210, SRX240

LAN Technologies: Ethernet, Fast Ethernet, and Gigabit Ethernet, SMTP, VLAN, Inter-VLAN Routing, VTP, STP, RSTP

WAN Technologies: Frame Relay, PPP, HDLC, (E1/T1/E3T3), DS3, OC192

Network Security: Cisco ASA, Firepower, ACL, IPSEC

OS products/Services: DNS, DHCP, Windows (2000/2003/2008 , XP)

Routing Protocols: OSPF, EIGRP, BGP, ISIS, VRF, PBR, Route Filtering, Redistribution, Summarization, and Static Routing.

Gateway Load Balancing: HSRP, VRRP, GLBP, EBGP

Various Features / Services: IOS and Features, IRDP, NAT, SNMP, SYSLOG, NTP, DHCP, CDP, TFTP and FTP

Network Management Tools: SolarWinds, HP NNMi 8xi (Network Node Manager), Net flow, Ethereal / Wireshark, Cisco Prime, Cisco Migration Assist

Security Server Protocols: TACACS+, RADIUS

Facilities: DS0, DS1, DS3, OCX, T1/T3

Load Balancers: F5 Networks (BIG-IP) LTM 8900, BIG-IP GTM 6800, Cisco ACE

Operating Systems: Windows, Cisco iOS XR, Cisco Cat-OS, IOS, Juniper Net Screen, Checkpoint SPLAT, Checkpoint Gaia, HP Procurved switching

Firewall & Security: Checkpoint (R62, R65, R70, NGX), Cisco ASA, Palo Alto, Juniper SRX, FortiGate 5000-series

Scripting: Python

PROFESSIONAL EXPERIENCE

Confidential, Waukegan, IL

Network Security Engineer

Responsibilities:

• Responsibilities included not limited to upgrading, maintaining Infrastructure, Installing, configuring various Cisco, Arista, Juniper Routers, Switches, Checkpoint, Palo Alto’s FW, Citrix NetScaler Gateways, Bluecoat Proxy SG, Riverbed Steelhead appliances.
• Installed and configured of Cisco Routers (1700, 1800, 2500, 2600, 3200, 3600, 3700, 3800 and 7200, 7609) & Cisco L2 & L3 Switches (2900, 3560, 4500 & 6500).
• Performed OSPF, BGP, ISIS, DHCP, HSRP, IPV6 implementation on Cisco IOS 1800, 2800, 3600, 3800, 4500, 6500, 7000, 7200, 7609, ASR 9K, 1K, ISR 4K, 3K, 2K Juniper MX (960, 480), M routers.
• Efficient in configuring, maintaining, upgrading Cisco IOS on network devices routers3800, 3900, 4331, 7200, 7600,Cisco Catalyst & Multilayer 6500, 4500, 3850, 3750, 3650, 3500 XL, Nexus 2k/5k/7k.
• Experience in Design, Implement, migration & troubleshooting of Juniper switches, routers and Firewalls and also with Juniper: EX-2200, EX-4200, EX-4500, MX-480, M Series, JunOS and Screenos, SRX210, SRX240.
• Configured & troubleshoot routing/switching, wireless protocols: OSPF, ISIS, EIGRP, LDP, RIP, Multicast, PIM, BGP, RADIUS, TACACS+, DMVPN, CDP, VRF’s, 802.11 (a, b, g, n).
• Responsible for configuration, installation, troubleshoot, & maintenance of Juniper, Cisco router, switch network devices,MPLS technologies like LDP, TDP, MPLS L2/L3VPN's, analyze, troubleshoot & resolve LAN/WAN/SD WAN, firewalls, Layer-2/3 network issues.
• Extensively worked in network performance testing, administration,installation, maintenance, troubleshoot of Advanced TCP/IP management, IP Addressing & subnetting VLSM, CIDR, LAN/WAN.
• Configured, monitored Palo Alto PA-3K, PA-5K models, implemented Policies, URL filtering, App, User ID, & threat Prevention on the internal network via Panorama also configured policies on Cisco ASA, Checkpoint WEB Gateways for Site-to-Site, Web & SSL VPN purpose.
• Configured STP, VSTP, PVST+, VLAN, SNMP, HSRP, ARP, SPAN, RSPAN, 802.1 (q, s, w), 802.3 ae Tagging on Cisco catalyst 6500, 4500, 3750, 3500, 2900, EX-4500, 4300, 3k series Ethernet switches.
• Maintained complex LAN/WAN networks with multiple VLANS & provided support for OSPF, RIPv1, v2, EIGRP, BGP routing protocols, Static &default route, Multicast, MTU throughput, Jumbo frames.
• In the process of implementing network security policies for remote access configured site-to-site & client-to-site VPN tunnels on Cisco ASA 5500, Checkpoint (13K, 12K), Juniper SRX (1500, 3400, 3600, 5800), Palo Alto PA-3K, 5K firewalls.
• Efficient with Layer 2 protocols STP, VSTP, PVST+, VLAN, SNMP, HSRP, ARP, SPAN, RSPAN, 802.1 (q, s, w), 802.3 ae and associated enhancements related to LACP, L2 ECMP, 802.1d/w/s, 802.1X, 802.1Q
• Performed Installation, configuring, troubleshootProxy, DHCP, DNS, VPN, and Protocols, Subnetting.
• Configured MPLS, VPN (IPsec, Web, SSL, Remote, Site-to-Site), NAT policies in integrated networks also improved transmission rates using Checkpoint, Cisco ASA, PIX 6.X, Juniper SRX.
• Monitored & administer perimeter security systems including firewalls and IDS/IPS systems like Checkpoint IPS, Cisco Sourcefire, HP Tipping Point, FireEye on Checkpoint, Palo Alto’s
• Worked on Traffic generating, monitor, troubleshoot & testing tools IXIA, Splunk, Spirent Test Center, Net scout, iTest, Wireshark, TCP dump. Effectively handled problem on pre and post production issues.
• Monitorand analyze network traffic with QRADAR, Cisco ISE, Cacti, SolarWinds Orion, tcpdump, Firemon, Wireshark for Packet capturing, logging to resolve network bottleneck and reduce downtime.
• Experience with Installing and troubleshooting Data center migration with 24/7 support.
• Monitoring Cisco ASR9K series aggregation services router which are running with Cisco IOS XR.
• Maintaining and designing documentation of various changes using Visio and submits them for approvals and works along with alerts team and intimates them the changes to be made.
• Design Aruba WLAN for remote airfield access utilizing solar-powered access points.
• Detailed technical knowledge of either Cisco ACE, F5, A10 load balancer technology. Detailed technical knowledge of F5, A10 load balancers - LTM, GTM.
• Worked on GTMs like F5 and A10's on DNS issues and also was a part of A10 to F5 GTM migrations.

Confidential, Milwaukee WI

Network/Network Security Engineer

Responsibilities:

• Regular upgrade and maintenance of Infrastructure, Installing, configuring, and maintaining Cisco Switches Routers, Juniper Routers, Switches and Firewalls, Palo Alto FW
• Configure & troubleshoot Layer-2/3 technologies routing/switching protocols: OSPF, LACP, OMP, ISIS, EIGRP, LDP, VRF, VTP, RIP, BGP, DMVPN, STP, NHRP, 802.11 (a, b, g, n),802.1 (q, x, w), 802.3 ae, MPLS, TPLS, ATM, Frame Relay. Security protocols IPSec, SSL VPN, VRF, TACACS+, RADIUS.
• Involved in configuring MPLS, VPN (IPsec, Web, SSL, Site-to-Site & Remote) & QOS in integrated networks to improved transmission rates on Cisco ASA, Checkpoint GAIA, Provider-1, SRX/ISG.
• Worked on Juniper MX 960, 480, M series, implemented STP, RSTP, PVST+, 802.1 q, s, w, 802.3 ae on EX-4500, 4300, 4200, 3k, Cisco IOS Catalyst 6500, 4500 & 3850 switches, ASR-1k/9k ISR (2800/2900/3800/3900 ) routers.
• Deployed Cisco ASA and Bluecoat ProxySG (Web Security Appliance S200/S400/S500) for URL Filtering Policies.
• Worked on Citrix NetScaler load balancer for load balancing and failover across data center and between web servers
• Configuring Firewall, NAT policies, maintained IDS/IPS & monitoring of health onPalo Alto, Checkpoint, Juniper SRX (1500, 3400, 3600, 5800) firewalls& analysis offirewalllogs using various tools.
• Well experienced in document creation with technical configurations, securitystandards design and network documentation using MS Visio & office along with-it Security Assessments, Risk Assessments.
• ConfiguredJuniper EX switches andQFXswitches. UsedQFX-5100, 3500 switches & configured various VLAN’s on it.
• Perform Security Health Checks to identify vulnerabilities in Systems, Applications & Networks network monitoring, provide analysis using various tools like TUFIN, Firemon, Riverbed, Solar winds.
• Switchingtasks include VTP, ISL/802.1q, IPsec VPN Tunneling, VLANs, Ether Channel, Trunking, Port Security, STP & RSTP on Cisco IOS catalyst 6500, 4500, 3750, 3500, 2900, Juniper EX switches.
• Responsible for configuration, maintenance, installation, optimization of network security, routing, switching, LAN/WAN/SD WAN/MAN, testing, and repairing network infrastructure containing Cisco, Juniper appliances.
• Provided DMVPN, VPN services to site-to-site and, Remote access VPNs using IPsec, GRE tunneling mechanisms, installations, resolution of issues on Cisco ASA, PIX (5.x, 6.x), Juniper SRX firewalls.
• Big involvement in the deployment of rules on Routers, Switches, F5 Load Balancers of different vendors such as Cisco IOS, Juniper (M, MX), Checkpoint, ASA 5585x, 5540, PIX, Palo Alto.
• Effectively maintained & administer perimeter security systems including firewalls and IDS/IPS systems like Checkpoint IPS, Cisco Sourcefire, HP Tipping Point, FireEye on SRX/ISG, Checkpoint, ASA’s.
• Managed & resolved any kind of issues related to MPLS, VPN IPSec SSL Endpoint-Security, status policy, Application control, IPS, monitoring, Routing, switching for Arista, Cisco ASA, Juniper, Checkpoint.
• Used IXIA, Spirent Test Center to execute project managed test methodologies. Used SolarWinds Orion, iTest, Cacti, Netflow in testing network issues. Monitoring tools like Cisco Prime for alarms, major issues.
• Worked and maintained various network, application monitoring tools like CA, Q Radar, Nessus, Qualys Gard, Net scout, Cacti, SolarWinds Orion, Cisco WSA, ISE & Prime, Fore Scout, Wireshark, TCP Dump, Firemon, Net flow.
• Design and implementation of multiple Cisco technologies. Cisco ISE, ISR/ASR Routers, Nexus/Catalyst Switches,Firepower, S2S, ASA Firewalls, VMware/vSphere, NX-OS and IOS XR.
• Installed new Aruba wireless Network infrastructure utilizing Aruba 3400 and 3200 controllers.
• Implementing load balancers like Cisco ACE and A10, deploying GRE tunnels and Remote Access VPN.
• NAT and Firewall policy configuration on Checkpoint (R76 Gaia, R75.40, R75 and R70), ASA and Palo Alto Firewalls. Site to site VPN configuration checkpoint firewall ASA and Palo alto Firewalls.
• Worked on F5 BIG IP LTM 3600 load balancers to configure Nodes, Pools and VIP’s on a need basis.
• Basic and advanced F5 load balancer configurations, general troubleshooting of the F5 load balancers.
• Implemented network automation around monitoring and central management via Python.

Confidential, Atlanta, GA

Network Consultant

Responsibilities:

• Daily work involved supporting localLAN Cisco, Juniper, HP Procurvedswitches, routers & Cisco WLAN.
• Involved in installation & analyzing broad range of LAN/ WAN, ETHERNET communication system
• Installed and ConfiguredPalo AltoPA-3060,4000,5060firewallsto protect buildings, implemented many number ofsecuritypolicy rules and monitored the logs onPalo Alto, created Zones.
• Worked on managing MSS which included Cisco Sourcefire IDS/IPS, QRadar, Proxy, Firewall, DNS, FireEye, Qualys, SIEM, DNS, PLS & Firewall Analyzer used them for logging & monitoring purpose.
• Configured CiscoISEserver to authenticate wired and wireless clients with certificate and MAC options.
• Worked on implementation of Layer-2/3 technologies, STP, RSTP, PVST+, 802.1 q, s, w, 802.3 ae, Ether-Channel on enterprise level Juniper EX-4500, 4300, 4200, 3k series Ethernet, Cisco IOS Catalyst switches.
• Working with Cisco Nexus 2148 Fabric Extender and Nexus 7010, 5000 series to provide a Flexible Access Solution for data center access architecture.
• Worked Extensively on Access Control Policies consisting of VLAN switching through SNMP, applying downloadable ACLs throughCisco ISE, and Configuring Standard and Extended ACLs.
• Configuring of OSPF, BGP, EIGRP, IS-IS, BGP, IPV6, implementation on Cisco ASR 1000 series routers, 7200 series and ISR routers (2800/2900/3800/3900 ), ASA firewalls and routers, Juniper Routers (MX, M), troubleshoot layer 2 & 3 issues related to VRF & BGP routing.
• Security policy review and configuration in Palo Alto, Fortinet and Juniper SRX, Netscreen Firewall in US offices. Improved transmission rates, error rates & other characteristics using QOS.
• Got experience working with the Trouble Tickets onF5 Loadbalancers on LTM module
• Experience in configuring and troubleshooting BIG-IPF5 Loadbalancer LTM creating virtual servers, nodes, pools and iRules on BIG-IPF5in LTM module.
• Worked on migrating the LTM 5100 version 9.2 to 5100 LTM version 9.4 and F5 GTM configurations.
• Maintained disaster recovery site including server, storage, windows for applying various network related configurations, patches, service packs (ASR 9K) and implementing best practices.
• Configure, Administer, and troubleshoot Firewall allowance, NAT, routing policies Checkpoint andASAs
• Monitor and analyze network threats through Palo Alto Panorama; run vulnerability assessment on machines with anomalous behavior, monitor Palo Alto firewall for incoming and outgoing threats
• Maintained complex LAN/WAN networks with multiple VLANS & provided support for protocols OSPF, RIP, RIPv2, EIGRP Static, default route, SNMP, LACP, MPLS, GLBP, Syslog, Cisco Debug.
• Responsible for corporatesecurity, firewalls, VPN, antivirus, DMZ zoning & updates, working with AAA (TACACS+ & Radius)servers. Hands-on experience withCDNplatforms; test platforms: Spirent
• Actively participated in configuring & maintaining enterprise-level Cisco IOS, 1700, 2800, 3800, 7200, CRS, Juniper ERX, MX routers, implementing BGP peering, route establishment on Edge, Border routers
• Configured DMVPN, Site-to-Site IPsec VPN Tunnels to peer different clients & specifications using Cisco ASA 5500, PIX firewalls. Configured IPsec VPN (Site-Site, Remote Access) on Juniper SRX’s
• Used IXIA, Spirent Test Center to execute project managed test methodologies. Used SolarWinds Orion, iTest, Netflow in testing network issues.
• Worked on migration of existing PIX firewall to ASA firewall and PIX OS upgrade from 6.3 to 7.0.
• Design and Implement DMZ for FTP, Web and Mail Servers with CISCO PIX 506, PIX515.
• Utilized multiple Network monitoring tools such as Cisco Prime, CA, cacti, SolarWinds, Fore Scout Counteract NAC, Cisco WSA, Netflow, CA Spectrum to handle & troubleshoot network issues.

Confidential

Network Engineer

Responsibilities:

• Regular upgrade and maintenance of Infrastructure, Installing, configuring, and maintaining Cisco Switches (2900, 3500, 7600, 3700 series, 6500 series) Cisco Routers (4800, 3800, 3600, 2800, 2600, 2900, 1800, 1700, 800) Cisco Router and Switches, Juniper Routers and Firewalls, Nexus 7k,5k & 2k, f5 BIG IP, Palo Alto Firewalls, Bluecoat Proxy and Riverbed Steelhead appliances.
• Configured Nexus 2000 Fabric Extender (FEX) hitch acts as a remote line card (module) for the Nexus 5000.
• Involved in the configuration of BGP, IPsec-VPN, SSL VPN & routing protocols OSPF, ISIS, EIGRP.
• Worked on implementing F5 application-centric load balancing solutions and monitoring.
• Monitoring server image files and responsible for server data backup for disaster recovery data center.
• Involved in Switching technologies like VLAN, Inter-VLAN Routing, Ether-channel, VTP, MLS, HSRP also created VLAN & Inter-VLAN Routing and Multilayer Switching.
• Monitored the conversions to BGP WAN routing, which is to convert WAN routing from OSPF to BGP which involves new wan links.
• Work with programmer to generated Enterprise widepythonscript to automated network devices.
• Well Experienced in configuring protocols HSRP, VRRP, ICMP,IGMP-V2, V3 PPP, HDLC, CHAP, and SNMP.Actively participated Implementation and customization of customer network.
• Involved in deploying, configuring & managing of 802.1x solutions to include ACS. Dealt with configuring and implementation of VPN Site to Site & Remote access using Cisco ASA, PIX, Juniper firewall (SRX-3600, 1500, 1400, 650 etc;).
• Worked with a team in firewall policy management and support on Cisco ASA 5585X, 5540, PIX and Checkpoint Firewalls 12K, 13K. Configured of OSPF, BGP on Juniper Routers.
• Worked extensively in Configuring, Monitoring and Troubleshooting Juniper security appliance, Failover DMZ zoning & configuring VLANs/routing/NATing with the firewalls as per the design.
• Implemented Security solutions on Juniper SRX & Net Screen SSG firewalls using NSM
• Single point of contact for Client networks. I will be the SPOC for maintaining their uptime from addressing new client installations/Client location moves/day to day issues etc.
• Maintained a 3-layer Cisco architecture network with HP Procurve switches in the access layer and 6500 series as core and distribution layers.

Confidential

Network Engineer

Responsibilities:

• Involved in managing and troubleshooting mission-critical Wide area networks Using VSAT links, Radio links, and Cisco Routers & Switch Issues.
• Performed troubleshooting, while maintaining trouble ticket tracking, following internal/external escalation procedures and customer notifications. Configured Cisco Routers for OSPF, RIP, IGRP RIPv2, EIGRP, Static and default route.
• Configured the Cisco router as IP Firewall. Maintained redundancy on Cisco 2800, 3600 routers with HSRP.
• Supporting Development team for the access to corporate network and outside world. Providing access to specific IP, Port filter and port access.
• Switching (Ethernet) related tasks included implementing VLANS and configuring ISL trunk on Fast-Ethernet channel between switches. Performed administrative support for EIGRP, OSPF routing protocol.
• Configuring all the required devices and equipment for remote vendors at various sites and plants.
• Worked with MPLS-VPN and TACACS configurations.
• Got exposed to VPN, IPSec, Endpoint-Security, status policy, Application control, IPS (Intrusion prevention), Monitoring,Anti-spam, packet analyzing using various Firewalls such as ASA, Checkpoint.
• Working on creating new load balancing policies by employing BGP attributes including Local Preference, AS-Path, and Community, MED. Installing and maintaining local as well as network printers.
• Installing and maintaining Windows NT Workstations and Windows NT Server.
• Providing technical support to LAN & WAN systems.
• Worked on Microsoft active directory to manage network resources, provide roles and access to user.
• Monitor performance of network and servers to identify potential problems and bottleneck.