SUMMARY:

• Certified Network Engineer with 8 years of experience in Network Implementation, Configuration, Trouble Shooting and Maintenance of complex Network and Security devices.
• Excellent working knowledge of TCP/IP protocol suite and OSI layers.
• Expertise in IP Subnetting and worked on various designing and allocation various classes of IP address to the domain.
• Extensive hands - on experience with complex routed LAN and WAN networks, routers and switches. Hands-on configuration and experience in setting up Cisco routers to perform functions at the Access, Distribution, and Core layers.
• Experience with implementing, deploying and troubleshooting LAN, WAN, Frame-Relay, Ether-channel, IP Routing Protocols - (RIPV2, OSPF, EIGRP & BGP), ACL's, NAT, VTP, HSRP & GLBP.
• Excellent skills to implement VLANS, private VLANS, Port security, STP and RSTP (802.1W), standard and extended access lists (ACL's) for managing access based security, creating root views for administrative privileges.
• Excellent experience in command line interface configuration of switches includes VLANs, Inter VLAN’s, STP, and VTP.
• Strong hands on experience in Installing, Configuring and troubleshooting of Cisco 6500, 4500, 3750, 2950 and 3500XL series switches, Cisco 1800, 2500, 2600, 2800, 3600, 3800, 7200 and 7600 series Routers.
• Experience in Design development, implementation, troubleshooting maintenance and Administration of Cisco VOIP, IP Telephony networks.
• Experienced in Cisco Unified Communications Manager (CUCM) (6.x, 7.x, 8.x, 9.x, 10.x), Cisco Call Manager (CCM), Cisco Unified Presence (CUPs, IM & Presence), Cisco Unified Call Manager Express (CUCME), Cisco Unity Connection (CUC) (7.x, 8.x, 9.x, 10.x), Unified Contact Center Express (UCCX).
• Good knowledge of CISCO NEXUS data center infrastructure with 5000 and 7000 series switches are including 5548, 7010 and CISCO NEXUS Fabric Extender (223, 2248).
• Hands of experience in Juniper switches like EX-4200/EX-8200, and Juniper routers such as MX 240, 480, and 960.
• Test cable modems and head-end equipment for DOCSIS standard compliance.
• Involved in troubleshooting of DNS, DHCP and other IP conflict problems. Vast experience in implementing various networking services including SNMP, SNMP Traps and Syslog.
• Implementing 3750 Stackable switches using Cisco Stack Wise technology. Experience to review and evaluate current and future design issues as required, maintaining network integrity and efficient data flow.
• Experience in implementing site-to-site and remote access VPN Technologies using GRE, IPSEC & MPLS. Demonstrate excellent implementation of PPP and Frame Relay.
• Implemented Security Policies using ACL, Firewall, IPSEC, SSL, VPN, IPS/IDS, AAA (TACACS+ & RADIUS).
• Outstanding implementation of router security by using ACLs. Good conceptual base of NAT, PAT and DHCP for scalability of IPv4 addresses.
• Maintain and administer firewalls: Palo Alto, Juniper, Cisco, and Check Point Firewalls.
• Configuring, Debugging and Testing of AP (802.11n/ac) and WLAN stations
• Experience working on Aruba wireless controllers
• Advanced Technical support for the Symantec Management Platform
• Knowledge on end point antivirus of Symantec Managed Services provide of the Firewalls
• Understanding of JUNOS platform and worked with IOS upgrade of Juniper devices
• Experience and Strong knowledge on Juniper SRX240, SRX220, SRX550 series firewalls.
• Design and configuring of OSPF, BGP on Juniper Routers and SRX Firewalls.
• Experience with converting Checkpoint VPN rules over to the Cisco ASA solution. Migration with both Checkpoint and Cisco ASA VPN experience.
• Established IPsec-VPN tunnels with Cisco ASA firewalls between branch offices and headquarters.
• Worked on Load Balancer F5 LTM series like 6400, 6800, 8800 for the corporate applications and their availability. Experienced with Load Balancer F5 ASM and APM.
• Hands on Experience configuring and testing F5 iRules using Browser (IE), HTTP watch.
• Hands on experience with QKVIEW in F5 networking tools for analyzing the real-time traffic flow of the packets, TCPDUMP, SOLARWINDS, SPLUNK for network monitoring and troubleshooting tools.
• Knowledge on Cloud Computing Concepts like - IAAS, PAAS, SAAS.
• Configure all Palo Alto Networks Firewall models (PA-2k, PA-3k, PA-5k etc.) as well as a centralized management system (Panorama) to manage large scale firewall deployments.
• Knowledge on VxLAN and/or Application Centric Infrastructure (ACI).
• Proficient in using Solar Winds Network Management tools like Network Performance Monitor (NPM), Net flow Traffic Analyzer, Network Configuration Manager (NCM) and Cisco Prime.
• Experience working with ticketing tools such as Remedy and Service Now.
• Expertise in document creation with technical configurations, billing, security standards design and network documentation using MS Visio and MS office.
• Experience on Web Filtering solutions from Blue Coat.
• Worked on Bluecoat proxy server, Tipping Point Intrusion Protection System management.
• Knowledge on Configure and support citric NetScaler and Access Gateway solutions to support scalable delivery of applications and desktops to various endpoints.
• Knowledge on Implement and support Citrix XenApp / Citrix XenDesktop in multiple environments.
• Hands on experience in using various Network Monitoring and Packet Sniffing using tools like Wireshark.

TECHNICAL SKILLS:

Cisco Routers: 1800, 2500, 2600, 2800, 3600, 3800, 3900, 7200, 7600, ASR 100X, ASR 9000

Cisco L2 & L3 Switches: 2900, 3560, 3750, 4500, 4900, 6500, Nexus 1K/2K/5K/7K/9K

Juniper Platforms: SRX, MX, EX series Routers and Switches

Networking Concepts: Access-lists, Routing, Switching, Subnetting, Designing, CSU/DSU, IPSEC,VLAN, VPN, MPLS.

LAN Technologies: Ethernet, Fast Ethernet, and Gigabit, Ethernet, SMTP, VLAN, Inter-VLAN,Routing, VTP, STP, RSTP, Port-channels,802.1Q.

WAN Technologies: Frame Relay, ISDN, ATM, MPLS, leased lines, PPP, HDLC, T1/T3&SONET.

Firewall: NAT/PAT, Ingress & Egress Firewall design, IDS/IPS, URL Filtering, SSL &IPSEC VPNs Configuration, IKE, Cisco ASA, ACL, Checkpoint, Juniper, Palo Alto

OS products/Services: DNS, DHCP, Windows XP), Linux.

Networking Protocols: RIP, OSPF, EIGRP, IS-IS, BGP, STP, RSTP, VLANs, VTP, PAGP, LACP,MPLS, HSRP, VRRP, GLBP, TACACS+, Radius, AAA, Route Filtering, Redistribution, Summarization, and Static Routing.

Various Features Services: IOS and Features, IRDP, NAT, SNMP, SYSLOG, NTP, DHCP, CDP, TFTP and FTP.

Network Management Tools: Wireshark, Solar winds, SNMP, Cisco Works, HP Open View

Load Balancers: F5 Networks (Big-IP) LTM, Cisco ACE 4710.

Security Protocols: IKE, IPSEC, SSL-VPN

Languages: C, Perl, Python, Linux

Operating Systems: Windows (XP, Server Windows 7), MAC OS X, Linux.

PROFESSIONAL EXPERIENCE:

Confidential, East Hanover, NJ

Sr. Network Consultant

Responsibilities:

• Configuring rules and Maintaining Palo Alto Firewalls & Analysis of firewall logs using various tools.
• Work on Checkpoint Platform including Provider Smart Domain Manager. Worked on configuring, managing and supporting Checkpoint Gateways.
• Working on the project of F5 LTM and GTM code upgrade project, doing couple of them every week.
• Successfully installed Palo Alto PA-3060 firewalls to protect Data Center and provided L3 support for routers/switches/firewalls.
• Key contributions include configuring and troubleshooting of complex LAN/WAN infrastructure that include routing protocols EIGRP, OSPF & BGP.
• Conversions to BGP WAN routing. Which will be to convert WAN routing from OSPF to BGP (OSPF is used for local routing only) which involves new wan links.
• Maintained, configured, and installed Cisco and Juniper routers and switches: 7500/catalyst 6500/RV320/2960/catalyst 3550/12410, 12816, 1204 series, Nexus 7k and 5k, WLC, and ASA 5540.
• Implemented Positive Enforcement Model with the help of Palo Alto Networks.
• Responsible for setting up the infrastructure environment with majority of Cisco & Palo Alto appliances apart from various other equipment.
• Experience in set up, configuration and management of VoIP and IP Telephony networks.
• Experience in Cisco Unified Contact Centre Express, Webex and Cisco Meetingplace
• Experience with voice protocols like H.323, MGCP, SIP, SRST & SIP Trunks, Gateway, Gatekeeper and proficient in applying appropriate Codecs (G711 and G729).
• Installed/reinstalled Microsoft Lync's on Employee phone systems
• Configured, installed, & managed DHCP, DNS, & WINS servers.
• Polycom CX300, Polycom CX600/PBX/Avaya.
• Designed IP Telephony solutions for 200 users using Cisco CallManager 4.x and Unity 4.x
• Implement SIP trunk for toll by pass.
• Build configurations for Docsis 2.0 and Docsis 3.0 CMTS including BGP, RF, ACL, SSH, Modulation Profiles, IP Scopes and much more via CLI.
• Configured VG 248 & ATA adopter for analog Phone.
• Deployed and configured Cisco IP Telephones such as 7960, 7941g and 7911 for 200 users.
• Troubleshoot and Manage new and old user accounts at CallManager
• Implementing converged networks for Cisco Routers and Switches
• Administer Call Manager/Unity server maintenance, including patches, troubleshooting, defining thresholds, and responding to alarms.
• Specialist in Data Over Cable System Interface Specification (DOCSIS) Certification for High-Speed Internet Access Applications.
• Responsible for testing, evaluation, configuration, integration and deployment of Wi-Fi and DOCSIS CPE device and platforms including Access Networks and CMTS
• Hands on experience in configuring Cisco Voice Gateways, Cisco Unity Connection, Cisco Emergency Responder, Cisco Meeting Place and Cisco UCCX
• Researched, designed, and replaced aging Checkpoint firewall architecture with new next generation Palo Alto appliances serving as firewalls and URL and application inspection.
• Experience working with design and deployment of MPLS Layer 3 VPN cloud, involving VRF, Route Distinguisher (RD), Route Target (RT), Label Distribution Protocol.
• Advanced knowledge, design, installation, configuration, maintenance and administration of Juniper SRX Firewall, Juniper EX and Juniper MX devices.
• Configured and Managed Aruba Mobility Controller for DOD Wireless Networks.
• Configured and maintained IPSEC and SSL VPN's on Palo Alto Firewalls.
• Implementing and configuring F5 LTM's for VIP's and Virtual servers as per application and business requirements.
• Installation of Palo Alto (Application and URL filtering, Threat Prevention, Data Filtering).
• Successfully installed Palo Alto PA-3060 firewalls to protects Data Center.
• Hands on experience as well as competitive sales training on Aruba's full product line including; AP- 100/110/175/130/,
• Aruba OS AP's, Aruba Instant Controller-less AP's, Aruba MeshOS multi-radio mesh platform
• Implemented Positive Enforcement Model with the help of Palo Alto Networks.
• Exposure to wild fire feature of Palo Alto.
• Worked on Orion for analysis and monitoring purposes.
• Experience in Solar Winds Network Performance Monitor, Network Configuration Manager, Network Traffic Analyzer (Net flow) and IP Address Manager.
• Also, prepared documentation for various VLAN’s and Voice subnetworks and worked on Visio for the same.
• Experience on dealing with Cisco Application Centric Infrastructure (ACI) by integration hardware and software products as per network layout.
• Configured VLANs with 802.1q tagging. Configured Trunk groups, ether channels, and Spanning tree for creating Access/distribution and core layer switching architecture.
• Configured HSRP and VLAN trucking 802.1Q, VLAN Routing on Catalyst 6500 switches.
• Planning designing, Installation, configuration and maintenance of 802.11a/b/g channels for Wi-Fi Networks and working on 2.4GHz and 5 GHz frequencies.
• Enabled STP attack mitigation (BPDU Guard, Root Guard), using MD5 authentication for VTP, disabling all unused ports and putting them in unused VLAN and ensuring DHCP attack prevention where needed.
• Performed basic security audit of perimeter routers, identifying missing ACL's, writing and applying ACL's.
• Implemented Zone Based Firewalling and Security Rules on the Palo Alto Firewall.
• Exposure to wild fire feature of Palo Alto.
• General Day to day Data Center operations; Contact with engineers, hardware planners and management to prevent and solve issues within the Data Center environment.
• Reported directly to the Senior Vice President of Data Center Operations daily.
• Responsible for Cisco ASA firewall administration across our global networks.
• Provided Level-3 Network support for Cisco Switches and Cisco ASA 5500 Series Security Appliances.
• Configuring and Troubleshooting Cisco Firewall/ASA, Checkpoint FW, Bluecoat ProxySG and Cisco Ironport.
• Configuring, Administering and troubleshooting the Checkpoint, Palo Alto, Imperva and ASA firewall.
• Installed and tested Cisco router and switching operations using OSPF routing protocol, ASA Firewalls, and MPLS switching for stable VPNs.
• Supported on Cisco Nexus 5000 and Nexus 7000 Series Switch fabric links.
• Designed and implemented IT security policies and networked backup systems.
• Configured route redistribution between OSPF and EIGRP in a multi-area OSPF network.
• Implemented Hot Standby Router Protocol (HSRP) by tuning parameters like preemption.
• Daily responsibilities included design, implementation, support and administration of multiple security products running CheckPoint Provider-1 and VSX.
• Convert Branch WAN links from TDM circuits to MPLS and to convert encryption from IPSec/GRE to Get VPN.
• Worked on SIEM tolls such as Splunk, Solar Winds, Log Rhythm.
• Regularly performed firewall audits around CheckPoint Firewall-1 solutions for customers.
• Provided tier 3 support for CheckPoint Firewall-1 software to support customers.
• Assist network operations and level two network engineers in the diagnosis of difficult or complex network related problems.
• Work on Checkpoint Platform including Provider Smart Domain Manager. Worked on configuring, managing and supporting Checkpoint Gateways.
• Integrate NGFW with VMware Virtual Desktop infrastructure

Environment: Nexus 7K/5K, 2248/3560/5020/6509, Cisco 3640/12000/7200/ 3845/3600/2800 routers, Juniper routers J2350, M10, ACS, Cisco 3750/3550/3500/2960 switches, Routing Protocols (EIGRP, OSPF, BGP), Switching protocols (VTP, STP, GLBP, HSRP), F5 BIG-IP LTM, Cisco ACS server, Cisco ASA 5510 firewall and Palo Alto firewall.

Confidential, STL, MO

Network Security Engineer

Responsibilities:

• Implementing the necessary changes such as adding, moving and changing as per the requirements of business lines in a data center environment.
• Adding and removing checkpoint firewall policies in SPLAT/IPSO R75, VSX firewalls based on the requirements of various projects.
• Security infrastructure engineering experience as well as a Microsoft Windows, UNIX, Checkpoint Firewalls, Juniper firewalls, PIX firewalls, Bluecoat Proxies, Juniper Intrusion Prevention devices, and wireless switch Security Management.
• Configuration and support of Juniper Netscreen firewalls and Palo Alto firewalls.
• Palo Alto design and installation for Application and URL filtering.
• Configured and troubleshot Palo Alto firewall using CLI.
• Configuring Juniper Netscreen Firewall Policies between secure zones using NSM (Network SecurityManager).
• Worked on Security Device - Palo Alto/ASA Firewalls, Sourcefire IPS/IDS, Cisco Identity Services Engine (ISE), VPN.
• Worked with Palo Alto Panorama management tool to manage all Palo Alto firewall and network from central location.
• Worked with corporate and local staff as subject-matter-expert to design and implement scalable core DOCSIS and Digital Video Networks for Cox Systems.
• Worked on SIEM tools like Symantec end to end point for threat analysis and malware detection.
• Scripting using PowerShell for automation of task with AD.
• Perform network engineering, design, configuration (WAN & LAN), & implementation.
• Configuring Layer 2 and Layer 3 in the third-party zone including VLAN creating, spanning tree tuning, HSRP configuration, SVI (Switch VLAN Interface on 6500 Switch).
• Configured QoS on LAN/WAN. Strong working knowledge of various routing protocols including RIPV2, EIGRP, OSPF and BGP.
• Experience on dealing with Infoblox traffic control products to simplify DNS load balancing operations.
• Installed & configured OSPF on Frame-Relay with multi-area design in core routers (7200, 7204, and 7206).
• DOCSIS Settop Gateway
• Subject matter expert for DOCSIS Settop Gateway project
• Defined and built lab to support DOCSIS Settop Gateway
• Design OSPF Areas for reliable Access Distribution and for Core IP Routing.
• Well Experienced in configuring protocols HSRP, GLBP, ICMP, IGMP, PPP, PAP, CHAP, and SNMP.
• Maintained and updated Active Directory for authentication purposes.
• Blue Coat Web Proxies - ProxySG, Proxy AV, Content Analysis System, PacketShaper, Threat Detection ProxyCAS, Director, Reporter.
• Installation of Palo Alto (Application and URL filtering, Threat Prevention, Data Filtering).
• Successfully installed Palo Alto PA-3060 firewalls to protects Data Center.
• Participated on the migration project of PIX to ASA firewalls.
• Load balancing technology including algorithms and health check options.
• Configuration and troubleshooting F5 LTM, GTM series like 6600, 6800 for different applications and monitoring the availability.
• Worked on SIEM for detecting malwares and threat analysis on web based url filtering.
• Created PowerShell scripts to manipulate Tabular database objects.
• Experience on working with migration with both checkpoint and Palo Alto next generation firewall as well as virtualization of both VSX and VSYS. Day-to-day work involves changes on the Checkpoint Firewall using the Smart Dashboard NGX R70 software and connecting via Smart Center management. Authentication is done using an RSA SecurID.
• F5 BigIP GTM Wide IP configuration.
• Cisco ASA Firewall troubleshooting and policy change requests for new IP segments that either come on line or that may have been altered during various planned network changes on the network.
• Configuring Juniper Netscreen Firewall Policies between secure zones using NSM (Network SecurityManager.
• Building site-site VPN connections for third party connectivity using ASA Firewalls.
• Auditing user accounts in Checkpoint Provider-1/MDM on a monthly basis to remove unnecessary and ex-employee user accounts.
• F5 BigIP LTM VIP configuration with health check.
• Implemented Positive Enforcement Model with the help of Palo Alto Networks.
• Exposure to wild fire feature of Palo Alto.
• Experience with Palo Alto panorama to centrally manage the process of configuring device, deploying security policies.
• Worked on network analyzing tools such as SIEM, Solar winds and Source fire.
• Configuring rules and Maintaining Palo Alto Firewalls & Analysis of firewall logs.
• Build IT security infrastructure including Checkpoint, Juniper and Palo Alto firewalls.
• Implemented Zone Based Firewalling and Security Rules on the Palo Alto Firewall.
• Design, Build, and Implement various solutions on Check Point Firewalls, F5 Load balancers and F5 GTM.
• Refining IPS Policy and Creating Rules according to the Security Standard.
• Managed successful delivery of massive security response portfolio including Splunk, Cisco ISE.
• Implemented and administered Websence Web Security Gateway for web content filtering and DLP
• Improved network and system security through setup and ongoing maintenance of Riverbed IPS and fire eye.
• Experience in enterprise anti-virus/anti-spam/anti-malware solutions, including Symantec Endpoint Protection.
• Experience on dealing with Cisco ISE Secure Network Server 3515 and other network security products.
• Web Filtering solutions from Bluecoat/Websence/Cisco etc.
• Deploying Security Solutions in Juniper SRX and Netscreen SSG firewalls by using NSM.
• Implement URL filtering requests in Bluecoat Proxy SG for website blocklist and whitelist purpose.
• Conducted periodic reviews of Checkpoint firewall policies rule base for rules consolidation and cleanup in coordination with stakeholders using Firemon tool.
• Worked primarily as a part of the security team and daily tasks included firewall rule analysis, rule modification and administration.
• F5 BigIP iRule programming and troubleshooting.
• Managing and implementation of firewalls requests based on the requirements of various departments and business lines.
• Experience on dealing with Cisco Application Centric Infrastructure (ACI) by integration hardware and software products as per network layout.
• Monitoring the network traffic with the help of Qradar and Cisco IPS event viewer.
• Co-ordinate with data center team for any kind new installations, remote support and device RMA's.
• Implementing and troubleshooting network issues for various business lines and makingis in place.
• Installed Solar Winds Network Performance Monitor with emphasis on traffic analysis and virtualization management.

Environment: Cisco 3640/12000/7200/3845/3600/2800 routers, Cisco 3750/ 3550/3500/2960 switches, Routing Protocols (EIGRP, OSPF, BGP), Switching related (VTP, STP, GLBP, HSRP), and F5 BIG-IP LTM load balancer, Cisco ASA.

Confidential, Philadelphia, PA

Network & Security Engineer

Responsibilities:

• Configured, maintained, and troubleshot routers and switches ranging from the 1720 series through the 7200 series routers and the 2900 series through the 6500 series switches in a highly redundant dual-homed environment.
• Experience in implementation of 6500 and 5500 series routers and switches to support the core trading system.
• Configured and troubleshoot VLAN, VTP, STP and Trunks.
• Experience in deploying EIGRP/BGP redistribution and the changing the metrics for the primary and backup paths for the packet prioritization and EIGRP tuning.
• Installed and configured the Cisco routers 2800 in two different customer locations. Also, configuration includes frame relay, BGP and VPN tunnel on GRE.
• Configured OSPF over frame relay networks for NBMA and point to multipoint strategies.
• Experienced Implementing traffic engineering on top of an existing Multiprotocol Label Switching (MPLS) network using OSPF and BGP.
• Providing daily network support for national wide area network consisting of MPLS, VPN and point-to point site.
• Customer service representative responsible for all repairs in North and South America. Experience in Data over Cable System Interface Specification (DOCSIS) Certification for High-Speed Internet Access Applications.
• • Utilized SmartBits Packet Generator and Cisco CMTS (uBR7200) to perform DOCSIS testing.
• Experience in Design and implementation of MPLS VPN, QoS for the architecture.
• Experience in migration of Frame-relay based branches to MPLS based technology using multi-layer stackable switch like 6500 series and 2800 series router.
• Experience configuring Virtual Device Context in Nexus 7010. Supported on Cisco Nexus 5000 and Nexus 7000 Series Switch fabric links.
• Troubleshooting the Juniper SRX100 and Juniper Net Screen routers with Site-Site VPN, and firewalls.
• Designed QoS policies for critical applications based on business requirements and traffic patterns.
• Responsibilities also include technical documentation of all upgrades done. Attending meetings and technical discussions related to current project.
• Upgrading WAN link using PPP Multilink and by implementing Cisco WAAS.
• Design, deployment and maintenance of enterprise networks and datacenters.
• Involved in designing data communications and networks utilizing that utilize a mixture of frame relay, point to point T1, T3 & OC3 lines.
• Designed, configured and administrated Silver-Peak WAN Optimization devices.
• Deployed a Cisco Identity Services Engine (ISE) solution (wired, wireless, and VPN users) for a commercial client with converged access switches.
• Experience working with configuring virtual servers, nodes, creating pools in F5 BIG-IP LTM load balancer.
• Executed various migration/upgrade projects across F5 and hands on with F5 BIGIP LTMs/EM.
• Installed Solar Winds Network Performance Monitor with emphasis on traffic analysis and virtualization management.
• Design network system architecture and implement the prototype of the system using SDN.
• DDoS remediation using SDN techniques implemented core backbone network consisting of global point of presence (POP) in support of new iWAN network.
• Installation & configuration of Microsoft Proxy Server 2.0 & Bluecoat Proxy.
• Involved in configuration and troubleshooting of Juniper SRX100, 110, 3600 and 5800 series, Juniper Net Screen routers.
• Designed and deployed Cisco ACS server solutions including TACACS+, High availability and integrating active directory.
• Configuring and Implementation of VPN-Sites to Site and Remote access using Palo Alto Firewalls.
• Configuring rules and Maintaining Palo Alto Firewalls & Analysis of firewall logs. Palo Alto SSL decryption installation and configuration on PA 3060 and 5060.
• Implementation, configuration and troubleshooting of Checkpoint Firewall R77.30. Worked on auditing and reviewing the rule sets on checkpoint R77.30 Gaia firewalls.

Environment: Nexus 7000,7010 series, Cisco 3640/12000/7200/3845/3600/ 2800 routers, Cisco 3750/3550/3500/2960 switches, Routing Protocols (EIGRP, OSPF, BGP), Switching related (VTP, STP), F5 load balancer, Cisco ACS 4.x, Palo Alto firewall and checkpoint firewall.

Confidential

Data Network Engineer

Responsibilities:

• Responsible for Internal and external accounts and, managing LAN/WAN and checking for Security.
• Key contributions include troubleshooting of complex LAN/WAN infrastructure.
• Worked on Cisco routers 7200, 3800, 2800 series and Cisco switches 4900, 2900 series.
• Settings of the networking devices (Cisco Router, switches) co-coordinating with the system/Network administrator during any major changes and implementation.
• Routers are configured with the routing protocols (OSPF, EIGRP and RIP).
• WAN Infrastructure running OSPF & BGP as core routing protocol.
• Worked on Cisco Layer 2 switches (spanning tree, VLAN, VTP, trunking using dot1q).
• Extensive day to day work with Spanning Tree Protocol and multiple VLANs.
• Port-fast, Uplink-fast and Backbone-fast are used to enable STP Enhancements to speed up the network convergence.
• Creating Private VLANs & preventing VLAN hopping attacks & mitigating spoofing with snooping & IP source guard.
• Deployed Cisco ACS using TACACS+ for Authentication, Authorization and Accounting of access to network devices
• Installation, configuration, and testing cisco equipment’s, IOS updates, and configuration changing, troubleshooting various LAN/WAN technologies issues for internal and external clients, monitoring network performance, defining network policies and procedures.
• Implementation of name resolution using DNS in TCP/IP environment. Involved in troubleshooting of DNS, DHCP and other IP conflict problems. Configured FTP server for inside/outside users & vendors.
• Configuration of AAA security on routers and network access servers using TACACS+.
• Used various scanning and sniffing tools like Wire-shark.
• Greatly enhanced network manageability using SNMP, NTP, SSH and Solar Winds
• Hands on Experience working with security issue like applying ACL’s, configuring NAT and VPN.
• Installation & configuration of Cisco VPN concentrator 3060 for VPN tunnel with Cisco VPN hardware & software client and PIX firewall.
• Configured Firewall logging, DMZs, related security policies & monitoring.
• Installed and configured Cisco ASA 5500 series firewall and configured remote access IPSEC VPN on Cisco ASA 5500 series.
• Documenting and Log analyzing the Cisco ASA 5500 series firewall.

Environment: Cisco 4900/2900/7200/3800/3600/ 2800 routers, Cisco 3750/3550/3500/2960 switches, Routing Protocols (EIGRP, RIP, OSPF, BGP), Switching protocols (VTP, STP, HSRP, VLAN, Dot1q) and Cisco ASA 5510 firewall.

Confidential

Network Support Consultant

Responsibilities:

• Involved in Local Area Network (LAN) design, troubleshooting, and maintenance as per company’s requirements and Providing LAN support.
• Maintaining Network Integrity on LAN and WAN Networks.
• Configured Cisco Routers 7200,3800,2800,2600 series using RIP, OSPF, and EIGRP and configured Cisco Switches 4900,2900.
• Enabled STP Enhancements to speed up the network convergence that include Port-fast, Uplink-fast and Backbone-fast.
• Network layer tasks included configuration of IP Addressing using FLSM, VLSM for all applications and servers throughout the company.
• Troubleshoot issues related to VLAN, VTP, HSRP failovers, related issues.
• Configured VLANS to isolate different departments.
• VLAN Configuration to different applications with RSTP, STP, VTP.
• Responsible for configuring HSRP between multilayered switch networks.
• Designing and implementation of routing policy for customers Internet route with optimal Link utilization.
• Troubleshooting and diagnosis of network problems using IP tools like Ping, Trace route.
• Configured BGP for CE to PE route advertisement inside the lab environment.
• Involved in troubleshooting of DNS, DHCP and other IP conflict problems. Implementation of name resolution using WINS&DNS in TCP/IP environment.
• Used TFTP server to backup Cisco configuration files.
• Configuring static NAT, dynamic NAT, inside Global Address Overloading, TCP overload distribution, Overlapping Address Translation.
• Greatly enhanced network manageability using SNMP, NTP, SSH and Solar Winds.
• Involved in SNMP Network management. Worked on various scanning and Sniffing tools like Wire-shark.
• Performed troubleshooting tasks on Routing and switching and isolated the problem and finding the cause.
• LAN/WAN hardware including, Ethernet Hubs, Cisco Switches, switch panel's installation, configuration and troubleshooting, Frame-Relay configured support.
• Routing related tasks included providing cisco router configuration and change management, providing technical support for Cisco Router configurations and installation for Customer. Configuring IP RIP, EIGRP, OSPF and BGP.
• Redistributing from OSPF to RIP and vice versa by implementing hub and spoke topology with a Frame Relay Switch in between. Troubleshoot TCP/IP problems; troubleshoot connectivity issues in multi-protocol Ethernet, Environment.
• Configured Cisco IOS Feature Set, NAT and Simple Network Management Protocol (SNMP) for Network Security implementation.
• Performed scheduled Virus Checks & Updates on all Servers & Desktops.
• Provided technical support for expansion of the existing network architecture to in corporate users.

Environment: Cisco 7200,3800,2800,2600 series routers, Cisco 4900,2900 series switches, Routing Protocols (EIGRP, RIP, OSPF, BGP), and Switching protocols (VTP, STP, HSRP).