PROFESSIONAL SUMMARY:

• CCNP certified network engineer with 6+ years of experience in IT industry which includes expertise in the areas of Virtualization, Routing, Switching, Firewalls management, VPN management, and Administration and troubleshooting.
• Experienced Wireless Network Engineer and Solutions Engineer with extensive experience in Enterprise Wireless.
• Performed various configurations using the CISCO SDM like configuring VPN, Security Audits, Firewalls, VLANS.
• Expertise in implementing Wireless controllers, AP’s, Routers, Switches for 802.11 and Wireless Mobility projects.
• Experience with deployment of Palo Alto firewalls for different NAT, Skype traffic.
• Expertise in implementing Wireless controllers, AP’s, Routers, Switches for 802.11 and Wireless Mobility projects.
• Experience with deploying and upgrading Cisco Wireless LAN controllers 4400,5 500 and 85 00.
• Experience in Cisco Physical cabling, IP addressing, Wide Area Network configurations (Frame - relay & MPLS), Routing protocol configurations (RIP, EIGRP, OSPF, and BGP).
• Implemented security policies using ACL, Firewall, IPSec, VPN, AAA Security TACACS+, and RADIUS on different series of routers.
• Experience in Creating and resolving Palo Alto and Checkpoint Firewalls Rules, Routing, Pushed Policy.
• Implementation of DHCP, DNS, FTP, TFTP, Frame Relay, MPLS, ATM, ISDN.
• Hands-on Experience in Migration of network devices (Palo Alto, F5, Juniper, Aruba, Riverbed, Routers& switches) from one zone to other. Changing the management IP address.
• Excellent customer management/resolution, problem solving and debugging skills with good verbal/written communications and presentation skills.
• Hands on experience in Installing and Configuring Palo Alto PA-3060 Firewalls to protect Data Center.
• Design, implement, test, tuning of LAN/WAN, including Windows NT/2000/XP/2003.
• Install/Configure Cisco 2500, 2600, 2800, 3600, 7200, 7600 routers.
• Excellent skills to implement VLANS, private VLANS, Voice VLANS, Port security, STP and RSTP (802.1W), DTP, Root Guard, BPDU Guard, Port Fast, Uplink Fast, Backbone Fast, Ether Channel, PAGP, LACP, standard and extended access lists for managing access based security, creating root views for administrative privileges.
• Extensive knowledge of deploying & troubleshooting TCP/IP, Implementing IPv6, Transition from IPv4 to IPv6, Multilayer Switching, UDP, Fast Ethernet, Gigabit Ethernet, Voice/Data Integration techniques.
• Experience working with Nexus 7010, 5020, 2148, 2248 devices.
• Administration of Orion Solarwinds Application Performance Monitoring, Netflow router source monitoring, and wireless/VOIP monitoring.
• Working experience with NAT techniques on firewalls such as Cisco PIX, Cisco ASA appliance, Palo Alto fire wall and used panorama for centralized control of all the firewalls.
• Experience in working with Cisco Nexus Switches and Virtual Port Channel configuration.
• Experience in testing Cisco routers and switches in laboratory and deploy them on site production
• Excellent customer management/resolution, problem solving, debugging skills and capable of quickly learning, effectively analyzes results and implement and delivering solutions as an individual and as part of a team.

TECHNICAL SKILLS:

Routers: Cisco 7600, 7606, 7609, 7200, 4400, 3900, 3800, 2900, 1900, ASR 5500, ASR 9010, ISR 4300, 4400, ASR 1K, 9K Juniper ACX.

Routing: RIPV1, RIPV2, IGRP, EGIRP, OSPF, BGP, Route Filtering, Redistribution, Summarization, and Static Routing.

Switches: 2900 series, 3560, 3750, 4500, 6500, Brocade, Nexus 7000, Nexus 6000, Cat 3600, 3800 Avaya switches.

Switching: LAN, VTP, STP, PVST+, RPVST+, Inter VLAN routing & Multi-Layer Switch, Multicast operations, Layer 3 Switches, Ether channels, Transparent Bridging.

Network Management: Network Troubleshooting, Hardware Troubleshooting, Network planning And Design, Ethereal, Net cool, Network Administration SSH, Cisco NAC, ISE, NCircle, Telnet, SNMP, SDM, ICMP, Cisco Works, Active Directory.

Virtualization: Packet tracer 5.0, GNS3.

LAN Technologies: VLAN, Private VLAN, Spanning Tree, VTP, 802.1Q Trunking, Fast Ethernet Gigabyte Ethernet, IGMP & IGMP Snooping.

WAN Technologies: PPP, Frame relay, ISDN, ATM, MPLS, T1/T3 & E1/E3

Network Security: ACL, IPsec, VPN, Port-security, Cisco ASA5550/5540, Palo Alto, Checkpoints, AAA, LDAP, CADA, Zone-Based Firewalls, IOS based Router security firewalls, Tripwire, IDS/IPS, Aruba, RSA, SIEM, Qradar

Network Technologies: MANET, SONET, TDMA, FDMA, CDMA. DSL, POP3

Operating Systems: Windows (NT, XP, 2000, 2003, Vista, 7 and 8), Ubuntu, Linux

PROFESSIONAL EXPERIENCE:

Confidential, Baltimore, MD

Network Engineer

Responsibilities:

• Implemented and Maintained Routing Protocols EIGRP and OSPF in the Network.
• Responsible for Palo Alto hardware, include maintenance, code upgrade and licensing and upgrading code on Palo Alto firewalls PA5050/3020 to meet company security policy.
• Supported Load Balancers, Wireless Networks and layer 3 switches ( Nexus) IPSEC VPN.
• Managed and configured Cisco Wireless controllers, AP’s and wired end points with Cisco Identity Service Engine.
• Identified and assisted in developing wireless networking solution offerings in environments mixed vendor environments using 802.11 wireless access points' networks.
• Troubleshooting methods included spanning switch ports and capturing packets to Wireshark, and creating monitor capture in routers.
• Design, Implement, and troubleshoot Voice, Data, and Wireless network for New locations and Acquisition.
• Configured and maintained IPSEC and SSL VPN's on Palo Alto Firewalls.
• Configured Perimeter firewall and support Site to Site VPN tunnels. Security Policy, Provisioning, Managing Security zones and interface configurations on Palo Alto Firewalls.
• Involved in Configuration of Access lists (ACL) on Juniper and Palo Alto firewall for the proper network routing for the B2Bnetwork connectivity.
• Configured and maintained IPSEC and SSL VPN's on Palo Alto Firewalls and also implemented Zone-Based Firewall and Security Rules on the Palo Alto Firewall.
• Handled switching related tasks included implementing VLANS, VTP and configuring Fast-Ethernet channel between switches.
• Assisted in MPLS migrations, implemented a backup for the existing WAN connection using site-to-site IP sec VPN tunnels.
• Configured Client VPN technologies including Cisco’s VPN client via IPSEC.
• Configuring rules and Maintaining Palo Alto Firewalls & Analysis of firewall logs using various tools.
• Supported the telephony specialist in the phased migration from PBX based systems to VOIP. Configured separate VLAN for VOIP to implement QoS and security for VOIP.
• Designed, Implemented and configured HSRP on different location of office on the switched Network and Managed the Entire multilayer switched network.
• Design, Implement, and troubleshoot Voice, Data, and Wireless network for New locations and Acquisition.
• Configured and Maintained the Local Network using 2900, 6500 series Switches and 2800 series Routers.
• Configuring devices for Solarwinds to monitor and report data for early detection of issues.
• Configured Firewall logging, DMZs and related security policies and monitoring.
• Designed perimeter security policy; Implemented Firewall ACL’s; Allowed access to specified services; Enabled IDS/IPS signatures in Firewall & fine-tuned TCP & UDP.
• Involved in Installing and Configuring a Cisco secure ACS server for AAA authentication (RADIUS/TACACS+).
• Responsible for managing and troubleshooting the Cisco MSE 8000, Polycom MGC-50 bridges, Cisco endpoints, Polycom endpoints, Cisco routers, and switches.
• Daily routine support and troubleshooting and issues related to VoIP and Voice Mail system
• Configured Cisco 7204 routers which were also connected to Cisco ASA Firewall (5505) security appliances providing perimeter based firewall security.
• Implemented Site-to-Site VPNs over the Internet utilizing 3DES, AES/AES-256 with ASA Firewall 5505.
• Configured Protocol Handling, Object Grouping and NAT on ASA Firewalls (5505).
• Involved in migration from Frame-Relay/ATM network to MPLS-based VPN for customer’s WAN infrastructure.
• Troubleshoot latency and throughput issues on MPLS and Dedicated Internet Access circuits.

Environment: Palo Alto, EIGRP, OSPF, SPB, Wireless, BGP, VLANS, VTP, VPN, IPX, VOIP, HSRP, Checkpoint, Adaptive SDM, ACL, RADIUS, TACACS, MPLS.

Confidential, Grand Rapids, MI

Network Engineer

Responsibilities:

• Designed, configured and implemented HSRP, BGP, EIGRP, OSPF, and MPLS WAN in multi-protocol network environment.
• Configuring rules and Maintaining Palo Alto Firewalls & Analysis of firewall logs using various tools.
• Successfully installed Palo Alto PA-3060 firewalls to protects Data Center and provided L3 support for routers/switches/firewalls.
• Troubleshoot Wireless network issues at the Cisco Wireless controllers and Wireshark.
• I accomplished a upgrade on a Global Wireless Network during a short period of time.
• Troubleshoot traffic passing managed firewalls via logs and packet captures.
• Create and test Cisco router and switching operations using OSPF routing protocol, ASA 5500 Firewalls, and MPLS switching for stable VPNs.
• Performed wireless site surveys using industry standard tools such as Air Magnet and Cisco & Aruba Switches .Review heat map results from RF surveys performed in the field and make recommendations.
• Installation and maintenance of windows 95/98/NT/2000/2003 client operating systems, hardware/software upgrades and network administration.
• Designed, Installed and supported Installation and configuration of office-wide LAN. Installation of windows servers to provide inter-office Email and Shared Internet Access
• General desktop support, assisted web development and Exchange server administration, Provided graphic work.
• Responsible for configuration of Cisco devices and troubleshooting. Worked on expansion and maintenance of network supporting hundreds of web hosting clients.
• Installation and configuration of DHCP and DNS servers.
• Configuring NAT, Dynamic NAT, inside Global Address Overloading, TCP, overload, distribution, Overlapping Address Translation.
• Configured CISCO ROUTERS (2500, 3000, 4000, and 7200) with RIP, nexus, and OSPF.
• Identify, design and implement flexible, responsive, and secure technology services
• Responsible for CheckPoint and Cisco ASA firewall administration across our global networks. Extensive work on creating VLANs and maintaining VLAN database throughout the network using VTP.
• Configuring and troubleshooting inter VLAN routing with 802.1Q trunking and L3 switches.
• Worked on STP to block redundant links for a loop free network
• Worked on WAN connectivity between CISCO routers using T1, T3, Frame relay and troubleshooting connectivity issues.
• Worked extensively on network testing and troubleshooting.
• Extensively worked on creating security Policies and implementation plans for an improved Security solution.
• Installation and configuration of CISCO VPN concentrators 3000 for VPN tunnel and implementation of SDM for IPSec VPN.
• Design and create dedicated VLANs for voice and data with QOS for prioritizing VOICE over data on catalyst switches and basic VOIP configuration.

Environment: Palo Alto, MPLS, DHCP, DNS, Dynamic NAT, Firewall Administration, Rule Analysis

.Confidential, White Plains, NY

Network Engineer

Responsibilities:

• Served as a main escalation point of contact for level II personnel.
• Configure all Palo Alto Networks Firewall models (PA-2k, PA-3k, PA-5k etc.) as well as a centralized management system (Panorama) to manage large scale firewall deployments.
• Troubleshooting multiple types of high capacity WAN links involving MPLS LSPs, MPLS VPNs and IPsec VPNs.
• Coordinated with higher-level support and external vendors for resolution.
• Worked on all the 6-major application in SolarWinds Orion like IPAM, NPM, SAM, NCM, VOIP, UDT.
• Coordinated and managed events and trouble tickets related to network failures and thus followed by technical support which included problem determination, customer notification and updates with regard to escalation(s).
• Migrated from Frame-Relay/ATM network to MPLS-based VPN for customer’s WAN infrastructure.
• Involved in new desktop, laptop and printer deployment as well as service, repair, and inventory management of peripherals, and equipment.
• Included network services such as DNS, email, web, Servers, VPN and Firewall.
• Troubleshooting latency and throughput issues on MLPS and Dedicated Internet Access circuits.
• Worked with convert Checkpoint VPN rules over to the Cisco ASA solution. Migration with both Checkpoint and Cisco ASA VPN experience.
• Troubleshoot TCP/IP problems; troubleshoot connectivity issues in multi-protocol Ethernet, Environment.

Environment: MPLS, Palo Alto, Monitored Network Management System, Frame-Relay, Nortel LAN 5530, Nortel Chassis, BGP.

Confidential

Network Engineer

Responsibilities:

• Involved in configuration and management of different Layer 2 switching tasks which includes address learning, efficient switching etc.
• Configured and maintained IPSEC and SSL VPN's on Palo Alto Firewalls.
• Involved in HSRP standby troubleshooting and load balancing protocol GLBP, Port channel management of the network.
• Experience with devices Palo Alto Network firewalls such as security NAT, Threat prevention URL filtering.
• Network security involves web filtering on internet sites (User's restriction) using Palo Alto and checkpoint Firewalls.
• Worked in VLAN and VPN and Network Monitoring tools like SolarWinds.
• Proactively involved in upgrade, maintenance, monitoring and support for the PA500 Palo Alto devices.
• Dealt with the escalation problems from Level1, Level 2 & Level 3 for routing, switching and WAN connectivity issues using ticketing system Remedy.
• Designed VLAN’s, access lists (ACL), troubleshooting IP addressing issues and Updating IOS images and other hardware installations
• Experience in troubleshooting VLAN, STP (Spanning tree protocol), & Switch Trunk and IP subnet issues
• Dealt with NAT configuration and its troubleshooting issues related access lists and DNS/DHCP issues within the LAN network.
• Involved in Configuration of Access lists (ACL) on checkpoint firewall for the proper network routing for the B2B network connectivity.
• Experience in routing protocols like OSPF, BGP, and standby protocols like HSRP and VRRP application in the routers

Environment: HSRP, GLBP, Port Channel Management, Data Circuit Debugging, Spanning Tree Protocol.