SUMMARY

• 7 years of experience with network designing, monitoring, and deployment and troubleshooting of Networking devices with routing, switching and Firewall
• Strong technical knowledge routing protocols like EIGRP, OSPF, BGP, MPLS, RIPv1,RIPv2
• Proficient in Configuring Virtual Local Area Networks (VLANS) using Cisco routers and multi - layer Switches and supporting STP, RSTP, PVST, RPVST along with trouble shooting of inter-VLAN routing and VLAN Trunking using 802.1Q and Implemented redundancy with HSRP, VRRP, GLBP, Ether channel technology (LACP, PAGP) etc.
• Hands on experience in configuring Cisco Catalyst 2960, 3750, 4500, 6500 series, and Cisco 2600, 2800, 3600, 3800, 7200, 7600 series routers, Cisco Nexus 7000 series, 5000 series, 2000 series data center switches.
• Ability to interpret and resolve complex route table issues and implemented strategies for the expansion of MPLS VPN network.
• Extensive hands-on experience of Cisco ASA 5500 series and Palo Alto PA-200. Provided proactive threat defense with ASA that stops attacks before they spread through the network.
• Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500/PIX security appliance, Failover DMZ zoning & configuring VLANs/routing/NATing with the firewalls as per the design
• Experience with providing remote site access with IPsec, SSL and GRE, Frame Relay, MPLS and documenting required information for maintenance, troubleshooting and future reference.
• Extensive knowledge of OSI and various network protocols (DNS, DHCP, TCP/IP, FTP, TFTP, UDP, ICMP, IPv4, IPv6, NFS, HTTP, SNMP etc.)
• Extensive knowledge of deploying & troubleshooting TCP/IP, Implementing IPv6, Translation from IPv4 to IPv6, Multilayer Switching, UDP and Ethernet
• Experience in dealing with individuals and enterprise customers. L1 and L2 customer support for network troubleshooting.
• Knowledge of Cisco wireless AP’s and WLAN controllers.
• Experience in Installing, designing and supporting DWDM, CWDM, SONET fiber links, T1 circuits, DSL, VDSL, HDSL, 56K AND POTS lines
• Hands on expertise on network security including NAT/PAT,ACL
• Creating frame relay, MPLS services, OSPF, BGP and EIGRP routing protocols, Natting, NAC product sub-netting, also including DNS, LDAP, DHCP, http, HTML, HTTPS, TCP/IP, UDP, SNMP, Extensive experience with configuration and installation of AAA, RADIUS, TACACS Servers.
• Strong technical skills to perform installation and troubleshooting of Ericson, Ruckus and Cisco Access Points (AP's).
• Involved in troubleshooting network traffic and its diagnosis using tools like ping, Traceroute, WireShark, Cisco Prime PRTG, and Solar Winds.
• Troubleshoot remote access services like Citrix Netscalar, Cisco VPN clients and for the users to access their enterprise network.
• Installation, configuration, and management of WAN optimizer, Riverbed Steelhead and BlueCoat
• Load balancing and traffic shaping, MQC, QoS on Catalyst, troubleshooting and support.In-depth experience in troubleshooting critical outages with third party vendors.
• Strong documentation and diagraming skills using VISIO.
• Working knowledge of Change Management Process and Trouble Ticket Escalation.
• Strong written and verbal communication skills, self-motivated, self-managed, result oriented, practical, always looking to learn and contribute.

TECHNICAL SKILLS

Routers: 2800, 3600, 4400, 3700, 3800, 3900, 7600, ASR-1k, 9k, ISR-4000,Juniper Mx-960

Switches: 2900, 3500, 3700, 5000, 4500, 6500, Nexus 2k, 5k, 7k

Networking: TCP/IP, LAN, WAN, WLAN, DHCP, DNS, SNMP, SYSLOG, NTP,FTP.

Other Hardware: F5 BIG-IP LTM Load Balancer

Routing: EIGRP, OSPF, BGP, MPLS, RIPv1, RIPv2

Switching: VTP, STP, RSTP, VLAN, L3 Switching, LAGP, PAGP

Wireless: 802.11b/g/n/ac Access points

Other Protocols: HSRP, GLBP, VRRP

Security: VPN, IPSEC, SSL, GRE,, ASA (5505, 5540) Firewall, Palo Alto (PA-200, 2020,5050Checkpoint

Network Simulators: Packet Tracer, GNS3

Applications: Wireshark,InfoBlox, Solar Winds, Airmagnet, Insider,,,Riverbed, BlueCoat, MS Visio

PROFESSIONAL EXPERIENCE

Confidential, Houston, TX

Network Engineer

Responsibilities:

• Configuring Static, IGRP, EIGRP, and OSPF Routing Protocols on Cisco 1600, 2600, 2800, 3600, 7300 series Routers.
• Worked on Route-Reflectors to troubleshoot BGP issues related to customer route prefixes also route filtering using Route-maps.
• Configured various BGP attributes such as Local Preference, MED, Extended Communities, Route-Reflector clusters, Route-maps and route policy implementation.
• Worked on Migration between EIGRP to BGP between two data centers with multiple ISP’s.
• Packet capture analysis using Wireshark and Solarwinds Packet analyser.
• Responsible for Cisco ASA firewall administration across our global networks.
• Performed migration of security appliance from ASA 5510 to Palo Alto security device and deployed it by creating security policies for internet traffic with web filtering and application control
• Providing security and network support using Palo Alto firewalls (PA-200, PA-2020) and troubleshoot to resolve potential security systems/infrastructure related service issues and outages.
• Experience in negotiating VPN tunnels using IPsec encryption standards, configuring and implementation of site-to-site VPN and Remote VPN.
• Configure and Manage site-to-site IPSEC VPN with different partners. Troubleshoot remote access services like Citrix Netscalar, Cisco VPN clients and for the users to access their enterprise network
• Experience with design and implementation of Virtual Switching System (VSS) for both User segment and server segment using 6509-V-E catalyst switches
• Designed, Implemented and Troubleshot Cisco 3750, 3550, 3560, 2924, 6509-V-E, 6513, 6504, 6503, 6506, 6500 series switches, GSR, ASR routers with Cisco IOS and IOS-XR and NX
• Installed, configured and managed Cisco routers such as 7200 series, 3800 series, 3700 series, 2800 series and Cisco Catalyst switch series 6500, 4500, 3500, and 2900.
• Upgraded the data center network environment with Cisco ASA 5520. Configured ACL's on Cisco Switches as well as configured routers as terminal servers.
• Implementation of Site-to-Site VPNs and DMVPN over the internet using IKE Phase 1 and IKE Phase 2 based on traffic with Cisco ISR routers.
• Configured Easy VPN server and SSL VPN to facilitate various employees' access internal servers and resources with access restrictions.
• Worked on Layer 2 protocols such as STP, VTP, STP, RSTP, PVSTP+, MST and other VLAN troubleshooting issues and configuring switches from scratch and deployment
• Involved in designing and implementing QOS and policy map to 2800 series routers for all the branches
• Experience with Branch Relocation: Connect workstation, servers, etc. Rack and stack Pre-configured new hardware and connect the circuits. Worked with Carrier to test and turn-up circuits.
• Performed IP address planning, designing, installation, configuration, testing, maintenance, and troubleshooting in complete LAN, WAN development. Involved in operations and administration of WAN consisting Ethernet Handoffs, T1, DS3, and Optic Fiber Handoffs.
• Responsible for MacAfee Patch Management and malware protection to identify potential threats.
• Managed Security Incident and Change Management (ITIL) using BMC Footprints Modules.
• Solved Service Desk Expert (SDE) tickets on issues related to network and network operations.
• Created and executed Test plans for various routing features that include DNS, DNS over IPv6, DHCP, DHCPv6, TCP and UDP traffic testing, TCP and UDP traffic, troubleshooting, IGMP, multicast, QoS implementation.
• Implementing multicast routing and configuring and troubleshooting Ospf, RIP v1 and v2.
• Understand the IP connectivity, the unicast and multicast packet flow within the system devices of the network.
• Worked on a Project which included Designing network topology with specific virtual forwarding routing (VRFs) within the existing Network to implement various monitoring systems. Implemented and IPTV/Multicast within the new project based and configured various Cisco Nexus 9k/5k/3k ACI in the Data Center and 4510s within the infrastructure.
• Evaluated and recommended third-party test tools and other software/hardware products, (Cisco Routers and Switches; Spirent traffic generator chassis).
• Aided with Web services and API Testing that was developed, for system monitoring and real time monitoring of the entire network and traffic performance based on bandwidth demand and allocation.
• System response analysis and traffic measurements; Preventative maintenance procedure development
• Supported EIGRP and BGP based on the network by resolving level 2 & 3 problems of internal teams & external customers of all locations
• Installed wireless access points (WAP) at various locations in the company.
• Actively involved in switching technology Administration including creating and managing VLANS, Port security - 802.1x, Trunking 802.1Q, RPVST+, Inter-VLAN routing, and LAN security on Cisco Catalyst Switches 4507R+E, 6509-E and Cisco Nexus Switches 2232, 5596, 7009.
• Created dedicated VLANs for Voice & Data with QOS for prioritizing VOICE over DATA.
• Configured Voice ports and Dial peers on the call manager for the VOIP call to reach remote destination.
• Provided Daily network support for national wide area network consisting of MPLS, VPN and point-to-point site. Performed Network Security Assessment and implemented security improvements such as network filtering, SSH, AAA, SNMP access lists, VTY access lists, EIGRP MD5 authentication, and HSRP authentication.
• Handled Network capacity planning, modeling, and traffic optimization and experience in using tools (OPnet, Netflow, etc.).
• Has done the Configuration on BIG IP (F5) Load balancers and also monitored the Packet Flow in the load balancers.
• Perform installs, configure and troubleshooting on statefull inspection firewalls and inline/passive IPS/IDS sensors.
• Worked on F5 BIG-IP LTM 8900, Citrix and Netscalar configured profiles, provided and ensured high availability. Implemented changes to existing QoS policy, and identified places were QoS was not being used in store locations; upgraded QoS policy at all store locations. Responsible for entire LAN and WAN maintenance and troubleshooting of the company network.
• Configure Network Access Rules, Routes and NAT Policies for various SRX devices such as 550, 650, 1400
• Configured F5 Big IPs with VIPs, Pool, iRules and SSL certificates to ensure traffic was load balanced.
• High level experience on creating and implementing custom design iRules, Health monitor and SSL profile as per the System engineer request. Design and deployed F5 LTM and GTM load balancer infrastructure per business needs from the ground up approach
• Configuring F5 LTM VIPs, pools, monitors and assign the SSL cert using Venafi certification application. Experience in configuring and troubleshooting BIG-IP F5 load balancer LTM creating virtual servers, nodes, pools and iRules in LTM module.
• Involved in the Team of Data Center Operations to perform duties like administration and deployment of Cisco Routers and Switches according to the organization requirements and assisting with network capacity and high availability requirements.
• Involved in project planning and reviewing based on the requirements and deploying within the existing network. Used Riverbed appliance for Bandwidth optimization and application acceleration.
• Configured and managed Nexus 9k,7k,5k,2k in a data center environment,Worked as a part of data center deployment where we converted from Cisco 6500 to Nexus.
• Configured and maintained VPCs with 7010/7018 and 5548 in the network. Also, configured and maintained VDCs in 7010/7018 switches, maintained VRFs in those separate VDCs.
• Configured Nexus 2000 Fabric Extender (FEX) which acts as a remote line card (module) for the Nexus 5000 to connect servers and storage devices
• Scheduled maintenance of Nexus (2248, 5548, and 7010) switches so that there are no Orphan ports in the network, and all Users to be dual homed, so that they have sufficient redundancy.
• Managing Incidents according to ITIL v3 framework and providing service restoration within service level agreements.
• Monitoring large data center infrastructures to include server, storage, network and security devices and software.
• Splicing and repair of copper cable and fiber optic of any size Trouble-Shooting T-1, HDSL, DSL, IDSN, and POTS lines, Preformed power influence diagnostics on coppers cables
• Interpreting data to define severity levels and ability to quickly determine course of action and resources required to resolve.
• Designed and implemented InfoBlox NetMRI environment for network automation, mass policy push's, inventory reporting, personalized troubleshooting for each engineers set of branch devices, and automatic discovery for synch with our InfoBlox IPAM environment.
• Installed CISCO Wireless Access Points and was responsible for conducting wireless local area network (WLAN) surveys and utilizing Air Magnet Site Survey software to obtain signals in real time.
• Setup wide area and local area networks (LAN/WAN) for clients utilizing Meraki Cisco routers, switches, firewalls Perform proactive wireless site surveys to ensure the environment has not changed and to ensure a steady and reliable wireless environment .
• Configure and administer Cisco ISE (Identity Services Engine) servers. Includes creation / troubleshooting of captive portal authentication / accounting for wireless deployments using both Cisco and Motorola wireless networks
• Cisco ISE installation / configuration, integration of WLAN controllers with Cisco ISE
• Daily monitoring of the wireless network by utilizing Cisco Prime and pulling reports to relaying them to upper management,Used Network monitoring tools to ensure network connectivity and Protocol analysis tools to assess and pinpoint networking issues causing service disruption.
• Drive network operations by providing proactive and quick reactive solutions to outages using Solarwinds, CMDB, SNMP, ICMP, and NetFlow, support Network Configuration Management, and fault detection.
• Manage plans for successful project completion and reported on project progress and status to leadership team
• Experience in migration of VLANS & Configured VLANs with 802.1q tagging, Ether channels, and Spanning tree for creating Access/distribution and core layer switching. Experience in dealing with SPAN/RSPAN issues.
• In-depth knowledge IEEE 802.11 WLAN operations, designs and wireless network deployment, worked on Riverbed Steelhead WAN Optimizers, work with ISPs to resolve configuration issues.
• Termination and testing of new cables including Fiber optic (Unicam/Fusion Splice), Ethernet (RJ45/110 punch down/keystones) and Coaxial cable (BNC/Type F/JMA).
• Responsible for testing and troubleshooting of cable.
• Ability to use test equipment, such as Fluke, and certify cable.
• Maintaining of documentation on utilization, capacity and outages for Wi-Fi network.

Confidential, Newark, NJ

Network Engineer

Responsibilities:

• Day-to-day responsibilities included troubleshooting various IP conflict problems, VLAN problems, 802.1x port-security issues.
• Experience in installation and maintenance of Cisco Routers, Switches and firewalls at various sites.
• Upgraded Cisco IOS versions as well as performing configuration backups.
• Configured Frame Relay, Point to Point, Wan while utilizing Cisco 2600, 7600, 1700, Routers.
• Maintained and configured Cisco enterprise devices such as Cisco 2811, 2900, 3900 Series ISR Routers, Cisco Switches 2960, 3560, 4500, 6500
• Configuring routing protocol such as OSPF, Route Summarization in multi-area OSPF network
• Provided redundancy using redundant links, STP, RSTP, HSRP, VRRP
• Experience in configuring VLAN’s STP (Spanning tree Protocol) and RTSP (Rapid Spanning Tree Protocol) by manipulating root bridge by changing priorities
• Implemented redundancy /failover using HSRP.
• Review, analyze and modify security rules to match company security and analysis of any unknown traffic for any vulnerability.
• Troubleshoot firewall rules to ensure security and while allowing authorized communications between systems
• Configured eBGP between the company core router and the ISP for the default BGP route and advertised it to iBGP peers
• Build environment withinAWSusing EC2 instance creation, Route 53 DNS routing, Cloud Watch alarming, Virtual Private Cloud setups,AWSElastic Load Balancing, Auto Scaling groups
• Experience with converting WAN routing from EIGRP/OSPF to BGP (OSPF is used for local routing only) which also involved converting from Point to point circuits to MPLS circuits.
• Reducing fail-over time using IP SLA and implementing asymmetric routing for path manipulation. Using route-maps to filter BGP routes
• Involved in configuring and implementing of Composite Network models consists of Cisco 7600, 7200, 3800 series routers and Cisco 2950, 3500, 5000, 6500 Series switches.
• Worked on conversions to BGP WAN routing, which will be to convert WAN routing from OSPF to BGP (OSPF is used for local routing only) that involves new wan links.
• Replaced branch hardware with new 3900 routers and 2960 switches.
• Configured firewall switch module on Cisco 6506 distribution layer switches, configuring VTPs, trunking, NAC product, inter-vlan routing, port fast, uplink fast, backbone fast on access layer switches.
• Enabled STP attack mitigation (BPDU Guard, Root Guard), Using MD5 authentication for VTP
• Planned and installed Frame Relay WAN links to the branch offices.
• Maintained wireless access points at various locations in the company.
• Great understanding of WLAN including 802.11 standards, Lightweight and Autonomous systems, WPA, PEAP.
• Assisted in MPLS migrations, implemented a backup for the existing WAN connection using site-to-site IP sec VPN tunnels.
• Configured Voice VLAN's (VOIP), prioritizing the voice traffic over the data traffic.
• Tested and implemented various BGP attributes such as Local Preference, MED, AS-PATH, Community, Extended community using route-maps.
• Switching experience includes Cisco Catalyst switches: Cisco 3750, 4500, 6500 series switches.
• Managing enterprise BGP setup by configuring and troubleshooting BGP related issues.
• Knowledge on Scaling of BGP and IGP in the core, dealt with implementation of deployment related to Cisco devices and applying security policies on it.
• Troubleshot issues related to VLAN, VLAN Trunking, HSRP failovers, related issues.
• Worked on migration of Frame Relay based branches to MPLS based VPN for customer's WAN infrastructure.
• Expertise to planning, designing, implementing, operating and troubleshooting complex enterprise WLAN networks.
• Preformed IOS upgrades and reconfigured devices afterwards.
• Deployment and Management of Bluecoat proxies in forward proxy scenario as well as for security in reverse proxy scenario.
• Handling DNS, Subnet and IP requests expeditiously but carefully from work intake buckets (various).
• Ability to perform problem solving on DNS issues and take turn with on-call support. .DNS and IPAM Infoblox device configuration, management and operations in an enterprise environment.
• Systems monitoring and maintenance, resolution and troubleshooting using Infoblox.
• Design, test, and implement solutions for network enhancement and automation based on customer requirements and government regulations.
• Create Plugins for monitoring of Voice quality, Network flaps and application disconnections
• Experience working with Nexus 7010, 5020, 2148, 2248 devices
• Experience working with Cisco Nexus 2148 Fabric Extender and Nexus series to provide a Flexible Access Solution for datacenter access architecture.
• Deploying and decommission of VLANs on core ASR 9K, Nexus 7K, 5K and its downstream devices
• Extended support on access layer, distribution layer and core layer device of IBM as per assigned.
• Experience with moving data center from one location to another location, from Cisco 6500 based data center to both Cisco 6500 & Nexus based data center.
• Experience in Installing and Configuring Nexus 7004 Switches.
• Experience with design and implementation of Data center migration.
• Experience with Migrating all the Vlans from Cisco Nx-3k to Nexus 7k switches
• Configured Nexus 7004 including NX-OS Virtual Port Channels, Nexus port profiles, Nexus Version 4.2 and 5.0, Nexus VPC peer links.
• Configured F5 Big IPs with VIPs, Pool, iRules and SSL certificates to ensure traffic was load balanced.
• High level experience on creating and implementing custom design iRules, Health monitor and SSL profile as per the System engineer request.
• Design and deployed F5 LTM and GTM load balancer infrastructure per business needs from the ground up approach
• Configuring F5 LTM VIPs, pools, monitors and assign the SSL cert using Venafi certification application.
• Experience in configuring and troubleshooting BIG-IP F5 load balancer LTM creating virtual servers, nodes, pools and iRules in LTM module.
• Worked on upgrading F5 device from 11.4 to 11.5.3 to remediate HTTP classes and profiles and Upgrading and relicensed F5 LTM.
• Configuration, migrations, upgrades of F5 Big IP LTM 3400, 6400, 8900 running v4.x to 10.2.x, Active/Standby.
• Worked on SSL handshake proxied to a Big-Ip Viprion to do all the hardware SSL work dealing with layer 4 throughput work, to upgrade the SSL license limits.
• Comfortable working with both command line interface and the GUI access of an F5
• Handled Citrix Netscalar Load Balancing using F5 Networks
• Expertise to planning, designing implementing, operating and troubleshooting complex enterprise WLAN networks.
• Configured WAP and wireless controller by using WEP, WPA, WPA2, TKIP, etc
• Troubleshoot wireless network issues at the Wireless Controller, using Debug commands and Wireshark.
• Wi-Fi deployments to the latest technology standards, remediating gaps in coverage, deploying new Wi-Fi services including guest profiles, BYOD, certificate based access.
• Perform Troubleshooting at the Wireless Controllers for AP's associations and Wireless Client Association
• Acted as Tier 3 support for connectivity, failures, configuration, implementation, and troubleshooting.
• Splicing of copper and fiber optic cables of any size.Trouble-Shooting T-1, HDSL, DSL, IDSN, and 56K circuits and POTS lines, Buried and aerial experience
• Pulled Fiber Optic and CAT 3, 5 and 6 cables.
• Tested and labeled Copper and fiber optic cable using Fluke Cable IQ Qualification Testers.
• Provided project management for data center cabling, documented all network drawings using Visio
• Design, test, and implement global Next Generation MPLS network (150 sites) using Cisco 3800, 2800, 2600, and 1721 routers using BGP and EIGRP protocols

Confidential

Network Engineer

Responsibilities:

• Providing technical assistance and support to Cisco customers on 2950, 3600, 3745 and GSR routers.
• Experience in implementing VLAN's and preventing loops using Spanning tree protocol
• Involved in design, implementation and configuration of HSRP for load balancing on L3 switches on different location of office on the switched network
• In depth knowledge of implementing and configuring static and default routes
• Maintenance of LAN and WAN environment using routers and switches and routing protocols like OSPF and BGP with uplink to two major Service Providers
• Involved in migration of the network routing from OSPF to BGP which involves new WAN links
• Troubleshooting the Network Routing protocols (OSPF, EIGRP and RIP) during the migration and new client connections
• Strong knowledge in configuring extended ACL's to filter traffic and gave restricted access to certain users
• Working on network support & implementation related internal projects
• Performing and monitoring network maintenance activities to ensure network availability to all system users
• Worked with engineering team to resolve tickets and troubleshoot L3/L2 problems efficiently.
• Preformed IOS upgrades and reconfigured devices afterwards.
• Updated documentation as necessary.