OBJECTIVE:

To gain expertise as a Network Engineer and implement the seasoned experience towards the growth of the organization.

PROFESSIONAL SUMMARY:

• Cisco Certification CCNP and CCNA with 8 years of professional experience in a diversified work environment as a Network Engineer.
• Widespread knowledge of Routing, Switching, LAN/WAN, Intrusion Detection System and Prevention System IDS and IPS , Firewall Management, IPSec and VPN Configuration, VoIP Management.
• Profound understanding with hands-on experience of Routing Protocols like EIGRP, OSPF, IS-IS, BGP, RIP both Versions 1 and 2 , OSPFv3. Through knowledge of NAT, Route Map, Route Redistribution, Distribute List and IPv6.
• Extensive knowledge of switch functionalities and multilayer switching network like STP, RSTP, CEF, Ether Channel PAGP and LACP . Redundancy Protocols like HSRP, VRRP and GLBP and Load Balancing using PAGP and LACP and PPP over Multilink.
• In depth experience with Layer 2 and Layer 3 security features such as Authentication, Cryptography, IDS/IPS, IPSec, VPN, Firewalls, Standard and Extended Access Lists, Port Security, AAA, IBNS 802.1x using RADIUS Server, DHCP Snooping.
• Worked with VLAN and VTP, Voice VLANs, VLAN Security issues and implemented Private VLANs to address VLAN Hopping Attack.
• Knowledgeable about IP Multicast, IGMP, IGMP version 2 and 3, CGMP, IGMP Snooping, PIM-Sparse and Dense Mode, F5/Big-IP Load Balancer.
• Configured VoIP using Cisco Call Manager, RTP for real time voice transfer, settings of QoS using CoS Trust Boundaries, call controlling signaling like MGCP, H323 and SIP.
• Good understanding of wireless network and utilization of Autonomous Access Point and Light Weight Access Point Protocol LWAPP , Wireless Access Point WAP ,Wireless Controllers, WDS, WLSE.
• Proficient to work in a team while making a valuable contribution towards the fulfillment of the task.
• Ability to provide all level of network troubleshooting, installation support and documentation.
• Skillful in business level communication, analysis of different approaches, and providing assistance to junior level network engineers.
• Self-motivated and willing to learn new technologies.

TECHNICAL SKILLS:

RELEVANT WORK EXPERIENCE:

Confidential

Network Engineer

Job Overview: AtoS McGraw Hill Education and McGraw Hill Financial Separation project. Support to Infrastructure LAN routing and switching. Support to WAN engineer to bring up inter data center ATT Ring.

Responsibilities:

• Configure Nexus 7K VDC and VPC, SVI, OSPF routing, Static routing. OSPF Peer-Link, Keep-alive Link configuration and trouble-shoot
• Nexus 5K Layer 2 VPC, Port-Channel, VLan configuration. Support to Cisco 3850 Stack to ASA 5585 connection.
• Migration of Inter Data Center Connection from old AT T Ring to New AT T Ring Creation of new SVI, fine-tuning Vlans, existing route migration and Testing.
• Infrastructure Routing correction new McGraw Hill Education Network.
• Worked with WAN Engineer on ASR Internet Routers for BGP.
• TACACS and AAA Configuration on Cisco NX-OS and IOS Devices to get them in TACACS. Configure Users on ACS box for network device access.
• Worked with Data Center Technician to make the cabling and patch panel connection.
• Weekend On call Support and Filed as many change tickets to get all the necessary changes done.
• Created Network Documentation and Visio Diagrams to hand-over the network to NOC.

Confidential

Network Engineer

Job Overview: Troubleshoot, implementation and maintenance in Amazon's high volume production and AWS network. Day to day network operation support to the network. On-call role. Change management role to mitigate risks.

Responsibilities:

• Troubleshoot routing protocols like OSPF, BGP in high volume data center oriented production and Amazon's EC2 network.
• BGP attribute change to influence routes on Nexus 7000.
• BGP prefix list manipulation with written change process to fine tune traffic on Cisco Nexus 7018 routers.
• Introducing OSPF MD5 authentication between Cisco 4500 router and Citrix Netscaler Load balancers.
• End to end traffic latency trouble-shoot across WAN.
• Day to Day support to network operational on calls and worked with Data Center Technicians.
• Day-to-day network operation support including on-call for issues like module swap, Layer 3 Ether-channel, switch replacement, link down, link over utilization, rack down, shifting traffic etc.
• OSPF configuration support on Juniper and Cisco Nexus routers for Carrier maintenance.
• Worked on build project with Load Balancing Team to get Citrix Netscaler Front End and Back End balancers ready from layer 3 networking side.
• Citrix NS11500, NS17500, NS21500 LB OS upgrade to 61.63NC.
• Participated in running network changes with proper approval.
• Day-to-day support to Cisco Nexus 7000 Series, Cisco 6500, 7200, 3750. Juniper MX960, MX480 Juniper QFX routers/switches.

Confidential

Network Service and Support Engineer

Project Overview: Network service and support by working layer 3 issues with EIGRP, OSPF and layer 2 issues like spanning-tree, UDLD, BPDU. Refreshing Cisco 6509's, 4500 series, 3750 and Nexus 5020. Enabling VIP, pool and Nodes on 6900 F5. DHCP and DNS implementation. Wireless issues.

Responsibilities:

• Worked on Remedy Incidence, Work Orders and Tasks to trouble-shoot layer 3, layer 2, and DNS, DHCP, F5 and wireless issues.
• Trouble-shoot on EIGRP, OSPF to address network slowness issues where one way eigrp traffic was causing inconsistence and same with passive-interface with OSPF.
• Design, implementation and support F5 LTM work for new URL/URI and Web Servers.
• Created VIP, pool and added/removed nodes though F5 GUI on 6900 Big-IP. Worked on customized Health Monitor and Persistence. Supported Application Stress Test.
• Installed SSL certs and cert chain on production and model F5's Big IP 6900 and 8900 issued by internal-CA or Verisign.
• DNS entries created and deleted as well for production URL. Network Trace and Packet capture through Infinistream.
• Implemented IPSec VPN tunnel between data center and vendor and worked with firewall team to solve the problem.
• Created static IP, manual DHCP and dynamic DHCP and pushed the same towards DHCP server using IP Management tool from BT Diamond.
• Supported AT T Metro Ethernet upgrade for field offices with Cisco 3750 Switches.
• Network support for Cisco 6509's. 4500's, 3750's and Nexus 5020, 3750. Configured 3750 switch from scratch.
• Troubleshoot BGP related issues for advertising BGP routes through interior gateway protocols like EIGRP, OSPF and RIPv2.
• Configured layer 2 trunk ports, channel group using LACP and PAGP and layer 3 vlan interface with allowing the new network through OSPF.
• Worked on BPDU error-disable recovery, spanning-tree Root Bridge, UDLD error disable issues.
• Addressed weak wireless signal issues WCS, Aironet 1250 and 1260 and participated in quarterly Wireless Maintenance by checking wireless vlans, WCS health.
• Created change records and implemented and was On-Call for production network.
• Troubleshooting network connectivity between branch office and regional office with multiple link paths and routers running HSRP, EIGRP in unequal cost load balancing.
• Creating NAT used ACLs to block unauthorized users to the VLAN IP and allowing the IPSec traffic.

Confidential

Network Integration Engineer

Project Overview: Replacement of old Big-IP load balancers with newer OS and hardware. Building of Big-IP 6900 and 8900 series boxes with newer images and license. Failover testing, 3DNS support for Big-IP devices. Network support for refreshing Cisco 6509's with Nexus 5020, 3750's. Designed and configured cisco 3825 routers for terminal services and remote accesses.

Responsibilities:

• Replacing Big-IP's containing old 4.x OS with newer 10.2.1 OS and 6900, 8900 series hardware.
• Built Big-IP 6900 and 8900 boxes with 10.2.1 OS and new license on Unix platform and VI editor.
• Designed and implemented failover test on Big-IP for their connectivity to cisco 6509 layer 3 switches.
• Network support for refreshing cisco 6509's with Nexus 5020, 3750 and 3750e for troubleshoot purpose.
• Implemented Cisco 3825 ISR router to support new 6900 Big-IPs for lowering the traffic on terminal servers and remote access.
• Troubleshoot BGP related issues for advertising BGP routes through interior gateway protocols like EIGRP, OSPF and RIPv2.
• Configured layer 2 trunk ports and channel group using LACP and PAGP as a part of network support.
• Created extended access lists to permit and deny desired traffic.
• Configured NAT, Layer 2 security features with Port Security.
• Configured DHCP to automatically assign reusable IPv4 addresses to DHCP clients.
• Set up TFTP server to maintain Cisco router configurations and Cisco IOS images.
• Created RFC's for required changes using Global Change Management tool and attended change calls.
• Network documentations using Visio diagram and maintaining spreadsheet for various Big-IP pools, applications.

Confidential

Network Deployment Engineer

Project Overview: Technical refresh project for non-trading floors. Configuration and testing of 6504 layer 3 switches for core layer, 3560, 3750 switch stack for distribution side and 2960-48 port for access side. Day-to-day layer 3 and layer 2 testing and support. Deploying 2811 router for out-of-band network. Introduction of new class-map for voice and video vlan support.

Responsibilities:

• Documentation using Visio and entry of production devices using Networker tool.

• Migration from old infrastructure to new using 6504, 3560, 3750 both 48 port and 12 port and 2960 switches.
• Configured the Cisco 6504's, 3560, 3750 stack and 2960 stack switches from scratch for their layer 3 and layer 2 functionalities.
• Staging and deploying 2811 router for Out-of-Band operation.
• Implementation of OSPF, access-list, SNMP, NTP, vlans in configuration.
• Worked on OSPF neighbor relationship, area type and network type issues, BPDU error-disable issues, ether-channel formation and vlan trunk trouble shooting issues and multicast issues.
• Extensively concentrated on all type of layer 3 and layer 2 testing for the switches before they come on production through console as well as remotely.
• Configuration of switch back-up flex links and testing of the same and installation of 10 Gig card on 6504's.
• Worked on BGP especially EBGP for network advertisement of our own autonomous system subnets.
• Implemented HSRP in distribution layer for network redundancy using active and stand-by router and testing of the same.
• IOS up gradation of production switches as well as burn-in switches through console as well as tacacs.
• Router and Switch AAA configuration for utilizing TACACS as well as enable password and testing in every closet for enable password and tacacs password.
• Crypto-key configuration for routers and switches to accept ip ssh for centralized TACACS server and ip subnet scheme and DNS entries.
• Designing racking and stacking, Creation and testing of cable-cut sheet for both copper and fiber links for entire projects and fixed the baud rate issue of line console on 2960s.
• Troubleshooting VLAN and VTP issues for inter-vlan routing, native VLAN mismatch, VTP domain name etc.
• Implemented QoS with DSCP Diff-Serv Code Point for qos marking of IP-phone traffic.
• Experience with RTDN Real Time Data Network for video, voice and WAP and RTP along with building QoS with CoS .
• Used Wireshark to capture and analyze the dscp value of voice and video call.
• Worked on NAT issue for addressing the management IP address of the access switches.
• Created change ticket with GCM before cut-over and dealt with all kind of change questions.

Confidential

Network Engineer

Project Overview: Configuration of routing protocols like EIGRP, OSPF and BGP for existing network. Configuring of switches and MPLS WAN technology for having layer 2 speed in routed network. Creation of ACL firewalls to prohibit unauthorized access across the network.

Responsibilities:

• Configured EIGRP, OSPF and BGP in the Cisco router series 7200, 7600, 3900, and 3800 for route functionalities.
• Worked on BGP peer group for EBGP and IBGP relations and tuning of BGP attributes to prefer certain path for internal and external network.
• Network Migration from RIP to OSPF and providing Redistribution of EIGRP into OSPF.
• Configuration of 2960, 3550, 3750 Catalyst Access Layer Switches, 6500 Catalyst Core Layer Switches and 2955 Catalyst Ethernet Switches.
• Configuring Route-maps, ACL and NAT to secure and reduce the complexity of the network.
• Configured MPLS for different frame modes, edge routers and MPLS VPN.
• Worked on IPSec VPN and different modes of communication especially the Tunnel Mode.
• Implementing security policies using ACL, PIX firewall, ASA and Routers
• Configured PIX firewalls 501, 506, 515 and 525 and Site to Site VPN using Cisco SDM.
• PIX to ASA migration with PIX OS release 7.x and Cisco IPS.
• Implementation of ASA 5505 and 5510 firewall with running PIX 7.0 code.
• Troubleshooting VLAN and VTP issues for inter-vlan routing, native VLAN mismatch, VTP domain name, configuration revision number, password etc.
• Designing LAN network as per Cisco 3-tier architecture Core, distribution, access .
• Experience with VoIP, Cisco Call Manager and RTP along with building QoS with CoS.
• Design and implement new WAN architecture scalable for VoIP between Core and Branch office and can support QoS using MPLS.
• Addressing queries regarding the ITIL, Ticketing System, Information System/Software extending onsite support to the clients including maintenance of hardware/software.
• Used Protocol analysis tools to assess and pinpoint networking issues causing service disruption.

Aricent Inc, Palo Alto, CA

Network Engineer

Project Overview: Configuration of WAN connectivity for different routing protocols. Troubleshooting VLAN issues, VPN connectivity. Solid understanding of switching protocols and upgradation of existing system in order to have more scalable network within a specified time frame.

Responsibilities:

• Managed technical projects including migrations, cutovers, upgrades, time-lines, cost and resources.

• Managed LAN/WAN connectivity for core and branch sites using routing protocols such as RIPv2, IGRP, EIGRP, OSPF and BGP with Cisco hardware products connecting across T1, and T3, Frame-Relay, ATM and SONET services.
• Performed implementation and migration of technologies frame-relay VPN, ISDN, VLANS, Ethernet LANS, Remote Access.
• Worked on switching protocols like STP, RSTP, and PVST.
• Configured and installed multi-protocol IP, IPX multi-interface Cisco routers.
• Creation of VLANs with ISL, 802.1q trunking method to provide security in a layer 2 network along with Private VLANs to solve the problem of VLAN Hopping attack in web servers and FTP servers in DMZ zone.
• Implement Network Security by Configuring SDM, Access-list, IDS/IPS and by SNMP.
• Configured Identity Based Network Services IBNS / 802.1x and RADIUS server for AAA.
• Implemented HSRP and GLBP in Cisco L3 Switch to achieve efficient redundant links and Big-IP Load Balancing.
• Worked on Network Simulator-2 in Linux OS for the evaluation of security strategy.
• Implemented Multicast using PIM-Sparse/Dense mode and MPLS for packet labeling.
• Experience with Cisco VPN 3000 Series Concentrator and FWSM module Firewalls.
• Configure and implement Remote Access Solution: VPN, ISDN dial up, Fractional T1.
• Created dedicated VLANs for Voice and Data with QoS for prioritizing the VOICE over the DATA.
• Executed project plans which formed a team environment comprised of internal engineering.
• Provided Technical support in terms of upgrading, improving and expanding the network.
• Hardware/software upgrades, network tuning, traffic management, load balancing and policy routing.

Confidential

Network Support Engineer

Job Overview: Support to a medium branch office network equipped with Cisco routers 2600, 2800, switches 2800, 1900, Hub.

Responsibilities:

• Troubleshoot TCP/IP problems troubleshoot connectivity issues in multi protocol Ethernet, Environment.

• Installed, configured and maintained Cisco Routers.
• Planned and designed network addressing scheme with IP Subnetting.
• Installed configured LAN WAN using Cisco 2600, 2800 series Routers and 1900, 2900 series switches.
• LAN/WAN hardware including, Ethernet Hubs, Cisco Switches, switches panel's installation, configuration and troubleshooting.
• Provided network security administration functions including hardware access, software access, passwords, user privileges and related tasks.
• Cisco router configuration set up routing protocols like RIP, EIGRP and OSPF.
• Implementation of NAT with a pool of public IP addresses.
• Switching related tasks included implementing VLANS and configuring ISL trunk on Fast-Ethernet channel between switches.