Obj***
ANIL
Contact :251-***-****
E-mail: ac0uxe@r.postjobfree.com
Cisco Certified Network Engineer with around 8+ years of experience in network
design, planning & strategy, network security, implementation, incident & change
management, and service delivery.
PROFESSIONAL SUMMARY :
Hands on experience with installation, design, configuration, administration and
troubleshooting LAN/WAN infrastructure with Cisco/Juniper Routing, Switching and
Security with Cisco hardware/software experience.
Experience in configuring Cisco Catalyst 2960, 3750, 4500, 6500 and Nexus 2000,
5000, 6000, 7000 series switches and Cisco 2600, 2800, 3600, 3800, 7200, 7600
series routers, Load Balancers & Cisco Firewalls.
In-depth expertise in the analysis, implementation, troubleshooting & documentation
of LAN/WAN/IWAN architecture and good experience on IP services.
Experience in Cisco: Physical cabling, IP addressing, Wide Area Network
configurations (Frame-relay & MPLS), Routing protocol configurations (RIP, EIGRP,
OSPF, BGP).
Knowledge of implementing and troubleshooting complex layer 2 technologies such
as VLAN Trunks, VTP, Ether channel, STP and RSTP.
Switching related tasks included implementing VLANS, VTP, RSTP and Port
security.
Configuring and installing client and server network software for upgrading and
maintaining network and telecommunication systems.
Worked on network topologies and configurations, TCP/IP, UDP, Frame Relay, Token
ring, bridges, routers, hubs and Switches.
In-depth knowledge and experience in WAN technologies including OC3, E3/T3,
E1/T1, PPP, HDLC, MPLS and Frame Relay.
Experience through Hand-on Experience with configuring T1.5, Gigabit Ethernet,
Channelized T3 and full T3, OCX, ATM, Frame-Relay and VoIP (Voice-Over Internet
Protocol).
Configured and managed Nexus 2k fabric extender, 5K and 7K switch network at the
clients location.
Hands-on experience on SDN technology, including VMware NSX and Cisco ACI.
IP addressing and IP address scalability by configuring NAT/PAT.
Experience in configuring and monitoring contrail (CMC) of juniper software define-
networking (SDN).
Working knowledge with monitoring tools like Solar Winds & network packet
capture tools like Wire-shark and Opnet. Experience working with McAfee antivirus,
Storage Area Network (SAN) and data storage system.
In depth understanding of using Fort iGATE firewalls and Forti web firewalls for IPS
and other virtual web applications.
Experience with F5 load balancers and Cisco load balancers (CSM, ACE and GSS).
Basic and advance F5 load balancer configurations, including migrating
configurations from Cisco ACE to F5 and general troubleshooting of the F5 load
balancers.
Experience with IP address management(IPAM) such as Infoblox, Solar winds etc.
Experience on load balancing strategies/ techniques expertise in application
switching/ traffic managing.
Experience in installing and configuring DNS, DHCP server and involved in
designing and commissioning WAN infrastructure for redundancy in case of link
failure.
Knowledge in implementing and configuring F5 Big-IP LTM and GTM load
balancers.
Proficient in Configuring and installing various network hardware/software such as
Avaya 8010, 5698, 5520, 4800 series switches and Avaya Unified Communication
Manager software.
Have knowledge on various advanced technologies like VoIP, H.323, SIP, QOS, IPv6,
Multicasting, and MPLS
Strong hands on experience on PIX Firewalls, ASA (5540/5550) Firewalls.
Implemented Security Policies using ACL, Firewall, IPSEC, SSL, VPN, IPS/IDS,
AAA (TACACS+ & RADIUS)
Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA
5500/PIX security appliance, Failover DMZ zoning & configuring
VLANs/routing/NAT with the firewalls as per the design.
Experience with convert Checkpoint VPN rules over to the Cisco ASA solution.
Migration with both Checkpoint and Cisco ASA VPN experience.
Troubleshooting the Juniper SRX100 and 110 series, Juniper Net Screen routers with
Site-Site VPN, and firewalls
Excellent in documentation and updating clients network documentation using
VISIO.
Implementation of Juniper Firewall, SSG Series, Net Screen Series ISG 1000, SRX
Series.
Configuring VM's on ESX Server and installing hosts and Migrating Virtual
Machines across various VMware ESX Server, Workstation and VMware servers.
Highly enthusiastic, creative team player, project implementation, analytical,
interpersonal and communication skills.
Efficient at use of Microsoft VISIO/Office as technical documentation and
presentation tools.
CERTIFICATIONS:
CCNA - Cisco Certified Network Associate
TECHNICAL SKILLS:
Firewalls & Load Cisco ASA 5585, 5550, 5540, Juniper SRX 5400, 5600, 5800,
Balancers Juniper Netscreen 6500, 6000, 5400. Juniper SSG Firewalls,
Check point, Palo Alto PA-3060/2050, F-5 BIG-IP LTM (3900
and 8900), Blue Coat SG8100, AV 510, AV810, A10 Load
Balancers.
Routers Cisco routers (1900, 2600, 2800, 2900, 3600, 3800, 3900, 7200,
7600), Cisco L2 & L3, Juniper routers (M7i, M10i, M320).
Switches Cisco switches (3560, 3750, 4500, 4900 & 6500), Nexus (2248, 5548
&7010)
Routing RIP, EIGRP, OSPF & BGP, Route Filtering, Redistribution,
Summarization, Static routing.
Routing Protocols RIP, OSPF, EIGRP, and BGP.
Switching ProtocolsVTP, STP, RSTP, MSTP, VLANs, PAGP, and LACP.
LAN Technologies Ethernet, Fast Ethernet, Gigabit Ethernet, NAT/PAT, FDDI.
WAN Technologies FRAME RELAY, ISDN T1/E1, PPP, ATM, MPLS, leased lines,
DSL modems.
Secure Access TACACS+/Radius.
Control Server
VOIP Devices& Cisco IP phones, QOS, Avaya, CUCM, UCCX, CIPC and UCS.
Wireless Wireless: LWAPP, WLC, WCS, Standalone APs, Client Roaming,
Technologies Wireless Security Basics, AP groups, WLANS, Cisco Prime
Site Maps.
Network SNMP, Cisco Works LMS, HP Open View, Solar winds, ACI,
management Ethereal.
Layer 3 Switching Multi-Layer Switching, Ether Channel.
Carrier Technologies MPLS, MPLS-VPN.
Redundancy HSRP, VRRP, GLBP.
protocols
Security Protocols IKE, IPsec, SSL, AAA, Access-lists, prefix-lists.
QOS CBWFQ, LLQ, WRED, Policing/Shaping.
Monitoring Tools Packet tracer, Wireshark, Opnet, GNS3, Info Solar winds.
Security Technologies Cisco FWSM/PIX/ASDM, Nokia Checkpoint NG, Juniper SRX,
McAfee proxy servers, Fortinet, Bluecoat.
Operating Systems Microsoft XP/Vista/7,10, UNIX, LINUX Kernel Programming,
Redhat.
PROFESSIONAL EXPERIENCE:
Humana Health Apr 2016
to Present
Louisville, KY
Sr. Network Engineer
RESPONSIBLITIES:
In-depth expertise in the analysis, implementation, troubleshooting & documentation of
LAN/WAN architecture and good experience on IP services.
Working closely with Data center management to analyze the data center sites for cabling
requirements of various network equipment.
Involved in configuring and implementing of composite Network models consists of
Cisco2600, 2800, 3600, 3800, 7200, 7600 series routers and Cisco 2950, 3500, 4500,
6500 Series switches.
Configured Nexus 7010 including NX-OS Virtual Port Channels, Nexus port profiles,
Nexus Version 4.2 and 5.0, Nexus VPC peer links.
Managed NAT rules and policies on Cisco ASA, checkpoint firewalls.
Involved in solving day to day tickets for checkpoint and ASA firewalls raised by partner
companies.
Security policy review and configuration in Palo Alto, Cisco ASA firewalls in US offices
and data centers.
Configured load balancing for fewer applications on NetScaler 10K and 12K in older
data center and part of migration team from NetScaler to F5
Provided support for several UCCX (Unified Contact Center Express) environments.
Worked with Management tools like CSM and Cisco ACS.
Experienced working with security issues related to Cisco ASR 9K, Checkpoint and
Juniper Netscreen firewalls.
Expert in developing web services with Python programming language.
Experience in object oriented design and programming concepts using Python.
Upgraded the old infrastructure to a new one replacing CISCO switches with
HP ARUBA switches .
Expertise in creating custom I Rules, Health monitors, VIPs, pools, nodes for F5
LTM/GTM
Worked on leveraging F5 LTMs & GTMs to improve web application delivery speed and
replication.
Deployment and management of Cisco routing, switching, firewall,
and IPS/IDS platforms.
Worked on traffic optimization, analyzing with the help of QoS, Netflow and Wireshark.
Experience in monitoring and troubleshooting of ISE and Cisco MSE.
Worked on F5 LTM, GTM series like 6400, 6800, 8800 for the corporate applications and
their availability.
Supporting OSPF and BGP based on the network by resolving level 2 & 3 problems of
internal teams & external customers of all locations.
Configured and involved in Citrix NetScaler responder policy configuration and
Citrix NetScaler Access gateway configurations.
Involved in software development and testing using C language on Linux and Unix
Platforms
Created Visio Dean / Visio Documentation to give complete picture of network design for
each building.
Strong knowledge of TACACS+, RADIUS implementation in Access Control Network.
Responsible for Preparation of the Upgrade documents, Responsible in implementation
and configuration of the UCCE solution. Ensuring the overall functioning of the
whole system and to reproduce the scenarios for testing and troubleshooting.
Configured Cisco ISE for Domain Integration and Active Directory Integration.
Experience with ALG (RTP, RTSP and FTP, DNS, HTTP), DHCP.
Worked with network services like DNS, DHCP, DDNS, IP4, IP6, IPsec, VPN etc.
Worked with Infoblox for securing and managing DNS, DHCP and IPAM.
Management of Infoblox Grid Manager to manage DNS Forward and Revers Lookup
Zones.
Perform various scheduled maintenance tasks across numerous platforms and datacenters
such as building VLANs and configuring switch ports on Cisco, Brocade.
Experience with Security- Firewalls, NAT / PAT, IPSEC, S2S.
Experienced working with Nexus OS, IOS, CATOS and Nexus 7K, 5K & 2K Switches.
Knowledge of with APIs for troubleshooting Network issues using Wireshark and NTOP.
Configured static NAT, dynamic NAT, dynamic NAT overloading.
Worked on Configuration and deployment of Switches and Routers, Firewalls, Load
Balancers, HP Procurve C7000 enclosures, and intrusion protection devices.
Worked on FTP, HTTP, DNS, DHCP servers in windows server-client environment with
resource allocation to desired Virtual LANs of network.
Worked on load balancers like F5 10050s, 10250v, GTM 2000s, 2200s to troubleshoot
and monitor DNS issues and traffic related to DNS and avoid DDoS.
Successfully configured Aruba Wireless LAN AP-255 and involved with troubleshooting
Wireless LAN issues.
Provide escalation support to L1/L2 members of network team.
Installed and maintained HP Blade system c7000 enclosure incorporating HP 380 & 360
servers utilizing HP Blade mgmt. applications; HP Onboard administrator
and HP Virtual connect.
Perform problem management and root cause analysis for P1/P2/P3/P4 incident.
Efficient at use of Solar BOX (Automated Network Map) as technical documentation and
presentation tools.
Environment: Nexus 2k/5k, Cisco 2600/2800/3800/7200 Routers, Cisco
3550/4500/6500 switches, LAN, WAN, OSPF, RIP, BGP, EIGRP, HSRP, PPP, VPN,
F5 Load balancers, Aruba, Cisco ASA, DNS, DHCP, NAT, Infoblox, NetScaler,
McAfee EPO, EOP, VPC, VDC, Active Directory, Windows Server 2003/2008, VoIP,
Linux, UNIX.
PWC, Tampa FL Jan 2015 to
Mar 2016
Sr. Network Engineer
Responsibilities:
Design, deployment and maintenance of enterprise networks and datacenters.
Configured, maintained, and troubleshoot routers and switches ranging from the 1720
series through the 7200 series routers and the 2900 series through the 6500 series
switches in a highly redundant dual-homed environment.
Implementing and trouble-shooting load balancing in LAN/WAN configurations.
Worked extensively on Cisco Firewalls, Cisco PIX (506E/515E/525) & ASA
5500(5510/5540) Series, experience with converting PIX rules over to the Cisco ASA
solution.
Worked extensively on Cisco Catalyst Switch 6500s, 4500s, 3750 and Cisco ISE 3300
Appliances and 1.0.4/1.1/1.2/1.3/1.4 and 2.0 Cisco ISE on VMware's.
Knowledge on set up of test environments for remote test engineers which included rack
FC switches and C7000enclosures, including setting up interconnects and blade
servers.
Worked extensively in configuring, Monitoring and Troubleshooting Cisco's ASA
5500/PIX security appliance, Failover DMZ zoning & configuring
VLANs/routing/NAT with the firewalls as per the design.
Content Switching (OSI Layer 4-7 Switching, Load balancers).
Deployment of datacenter LAN using Cisco Nexus 7k, 5k, 2k switches.
Designed/implemented remote site Palo Alto, Riverbed, and Brocade switches.
Implemented various EX, SRX & J series Juniper devices.
Configuring RIP, OSPF and Static routing on Juniper M and MX series Routers.
Troubleshooting Aruba Wireless issues like slow performance, intermittent connectivity,
authentication failure, low signal strength, Replacing AP's and controllers.
Supported enterprise environment including: Aruba controllers, Airwave and APs/Cisco
wireless controllers.
Experience with converting Checkpoint VPN rules over to the Cisco ASA solution.
Migration with Cisco ASA VPN experience.
Extensive MPLS, EIGRP and BGP design. Using DMVPN as a backup connectivity to
our Data Centers.
Configured and supported F5 and NetScaler load balancer to support corporate internal
applications.
Implemented site to site VPN in Juniper SRX as per customer.
Configuration of Cisco 6500 (sup 720), 4500 (SUP 6) & 3750 Catalyst Switches for
network access.
Experience with F5 LTM, GTM - design, implementation, maintenance, and
troubleshooting of large network consisting of Load balancing, WAN, LAN, and
VPNs
Maintained and managed assigned systems, Splunk related issues and administrators.
Configuring VLAN, Spanning tree, VSTP, SNMP on EX series switches.
Assisted in troubleshooting complex layer1,2and3 connectivity using Wireshark protocol
analyzer and recommended solution for better performance.
Configured Aruba WAP, Cisco Meraki and wireless controller, Cisco PRIME, Cisco
Mobility Services Engine (MSE) for proper access of wireless internet.
Checking and configuring Cisco 7600 and 7200 routers at data center for remote sites
issues.
Working on Cisco 6509 and 4507 series switches for LAN requirements that include
managing VLANs, Port Security and troubleshooting LAN issues.
Supporting EIGRP and BGP based network by resolving level 2 &3 problems of internal
teams & external customers of all locations.
Environment: Cisco routers (7600, 7200, 6509, 4507,1720) and Cisco switches (6500,
4500, 3750, 2900), Nexus (7K, 5K & 2K), Juniper (M, MX) series Routers, Routing (RIP,
OSPF, EIGRP, BGP), Switching (VLAN, VTP, STP, VSTP), Cisco PIX (506E, 515E,
525), Cisco ASA (5500), Aruba, Checkpoint Firewall (R76, R77), F5 Load Balancers.
Kering - Secaucus, NJ November 2013 to December
2014
Network Engineer
Responsibilities:
Designed, planned, and implemented network and security infrastructure.
Managed the Internet and intranet firewalls (Cisco ASA 5520 and 5550), F5, Net IP, ASM
Managed third party connections using Cisco ASA 5520, 5550 and Palo Alto firewalls.
Processed the requests for access to IT resources of the main data center thru the firewall.
Processed creation of VPN request for remote users, third parties such as remittance
companies, and mobile phone companies.
Analyzed logs in Syslog server generated by IDS, IPS, firewall, router and switch
devices.
Created reports of network utilizations.
Worked on troubleshooting network security issues related to address translations,
connectivity, application access, routing issues, and low latency networking.
Backed-up device configurations.
Escalated incidents and issues to ISPs and Global Technology Sector divisions.
Facilitated IT Business solutions for corporate users and third party needs.
Attended meetings with corporate users to gather the requirements need for secure access
to IT resources such as client VPN and SSL VPN access.
Created policies to provide Secure access to the Internet to specific business websites and
Secure access to and from third parties.
Worked on incidents/changes/Problems and provided resolution with in SLA time frame.
Configured & maintained IPsec VPN in Cisco ASA, Palo Alto firewalls.
Monitoring alerts & events in Cisco IPS.
Implemented TACACS+ for administering user accounts.
Escalating and working with product vendors for unresolved issues and following up with
them till the closure of the issue.
Worked on Change Control tickets, prepared knowledge base for all the incidents, change
and problems resolved.
Prepared SOP (Standard Operations Procedures) and shared it with customers and
internal teams for resolving issues.
RSA Assigning RSA Token & Configuration of RSA secure ID for the users.
Management of Web sense, Emails gateway, Symantec Endpoint protection, and IPS.
Environment: LAN, WAN, Cisco ASA, Palo Alto 3050, 3060 firewalls, Cisco 4331,
4321, 2811 routers, Cisco 6506, 4510, 3550, 2900 switches, HP Service Manager, NNM,
IPsec VPN, SSL VPN, RSA Tokens, IDS, IPS, Syslog server, TACACS+ Server.
Sarayodha Soft. Technologies, Hyderabad, India June
2011 to Sep 2013
Jr. Network Engineer
Responsibilities:
Configured IP routing protocols such as RIPv2 and OSPF on 2600, 2900, 3600 and
3800 series Cisco routers.
Configured VLANS using Cisco routers and multilayer switches and supporting STP,
RSTP, and PVST along with troubleshooting on inter-VLAN routing and VLAN
trunking protocol 802.1Q.
Implemented traffic rules on Cisco routers using Standard and Extended Access-
Control Lists.
Worked on installation, maintenance and troubleshooting of LAN/WAN (Frame
Relay, NAT, DHCP, TCP/IP).
Worked in configuring CSU/DSU devices and also helped troubleshooting CSU/DSU
devices.
Involved in troubleshooting of DNS, DHCP and other IP conflict problems.
Installed Wireless Access Points WAPs at various locations in the company.
Involved in troubleshooting IP addressing problems and updating IOS images using
TFTP.
Performed and technically documented various test results on lab tests conducted.
Troubleshoot problems on day-to-day basis and provided solutions to fix the
problems.
Involved in troubleshooting and resolved problems related to the networking and
server environments.
Used Network monitoring tool to manage, monitor, and troubleshoot the network.
Documented customer database which includes IP address, password, interface and
network diagrams.
Environment: Cisco routers: 3800, 3600, 2900, 2600; Cisco catalyst switches: 3560,
3750; Routing protocols: RIPv2, OSPF; Inter-VLAN routing, 802.1Q,
ACL, STP, RSTP, PVST, VLSM, HSRP.
Technical Strategies India Pvt Ltd, Hyderabad, India January 2009
to May 2011
Network Support Engineer
Responsibilities:
Provides technical support to all areas of Network Administration,
Telecommunications, Systems and Network Architecture, and Personal Computer
Administration
Maintaining of Cisco Adaptive Security Appliances (ASA firewall) for LAN, WAN
and Internet connectivity
Manage Local Area Network by Maintaining VLANs and Wireless Aps (TP Link
devices)
Setup and configure network monitoring and management systems, which include
Cisco Works 2000 to manage Cisco devices
Troubleshoot network connectivity issues such as DNS, WINS and DHCP
Develops and maintain IT security policy related to LAN and WLAN
Operated the router-point-defense Intrusion Detection System for the data network.
(ASIMS Director, Net Ranger Director, and via Firewall VPNs)
Helped standardize workstations and file servers including: hardware software,
naming conventions, and IP addresses
Implemented file system, firewall security and disaster recovery strategies
Designed and implemented Windows networks and Active Directory (AD) and
security group hierarchy based on delegation requirements
Environment: Cisco Adaptive Security Appliances (ASA firewall), VLANs and Wireless
Aps (TP Link devices), ASIMS Director, Firewall VPNs, DNS, WINS and DHCP,
Window's networks and Active Directory (AD)