Management Network Engineer
Resume:
Shaileshwar
Contact: 732-***-****
E-mail: ********@*********.***
Professional Summary:
Over 10+ years of experience as a Network Engineer/ Senior Cloud Administrator in application configurations, packaging, building, automating, managing and releasing code from one environment to other environment and deploying to servers and configuring, maintaining and troubleshooting Networks.
Implementation, Configuration and Support of Checkpoint (NGX R65, R70 and R71), Juniper Firewalls (SRX5400, SRX5600, and SRX5800), Cisco Firewalls (ASA 5505, 5506-X, 5585), Palo Alto Networks Firewall models (PA-2k, PA-3k, and PA-5 k).
Administration, Engineering, and Support for various technologies including proficiency in LAN/WAN, routing, switching, security, application load balancing and wireless.
Experience on Imperva 4500/6500/MX (web application firewall)
Responsible for CheckPoint and Cisco firewall administration across global networks.
Worked on Cisco Catalyst Switches 6500/4500/3500 series.
Policy development and planning / programming on IT Security, Network Support and Administration.
Experience in configuring and Troubleshooting BIG-IP F5 load balancer LTM.
Creating Virtual Servers, Nodes, Pools and iRules on BIG-IP F5 in LTM module.
Experience with Firewall migrations from PIX firewall to Cisco ASA and Juniper SRX firewall appliances.
Configuring system policies, intrusion policies and health policies using FireSIGHT Management Centre
Configuring and applying an access control policy using FireSIGHT Management Centre
Verifying FireSIGHT management center receives Events
Experience with Bluecoat Proxy servers, LAN, WAN & MPLS management.
Experience in working with Cisco Nexus Switches and Virtual Port Channel configuration.
Experience with Checkpoint VSX, including virtual systems, routers and switches.
Experience with DNS/DFS/DHCP/WINS Standardizations and Implementations.
Extensive understanding of networking concepts, (IE. Configuration of networks, router configuration and wireless security, TCP/IP, VPN, Content Filtering, VLANs, and routing in LAN/WAN, MPLS, Ethernet Port, Patch Panel and wireless networks.)
Experience on Network Optimization and QoS design and implementation for Cisco Switches and Routers for all platforms.
Configuring templates for Quality of service for all Cisco platforms.
Experience on monitoring of QOS and analyze the traffic to troubleshoot any QOS related issues.
Configuration of Network and Security devices such as Cisco routers and switches (Cisco ASR 1K, 9K, 7600/3500/Nexus 7K/5K), Firewall (Checkpoint R75/Gaia and Cisco FWSM), Load Balancers and DNS and IP Manager (Infoblox)
Administration of production Windows Servers infrastructure that includes Domain Controllers, IIS Web Servers, SharePoint, File and Print and FTP/SFTP servers.
Extensive experience in Windows 2008 R2/2008/2003 Wintel Servers at single or multi domain platforms.
Experience on NTP servers and NTP synchronization between server and client
Experience on SMTP, DHCP, DNS and LDAP
Hands on experience in migrating Business from a physical data center environment to AWS.
Experienced in setting up EC2 instances, security groups and Setting up databases in AWS using S3bucket and configuring instance backups to S3 bucket. Performed S3 buckets creation, policies on IAM role based polices, MFA and customizing the JSON template.
Experience on Office 365 administration like creating mail boxes, Distribution lists, litigation management, recovery of mails and management of exchange server
Worked on Multiple AWS instances, set the security groups, Elastic Load Balancer and AMIs, Auto scaling to design cost effective, fault tolerant and highly available systems.
Experienced in AWS cloud, Linux, Infrastructure Design & Implementation, identifying bottlenecks and optimizing the software architecture, Configuration Management, Vulnerability Assessment & Penetration Testing, Vagrant, Information Security, and Networking Platform. Also, responsible for resilient infrastructure.
Build servers using AWS: Importing volumes, launching EC2, RDS, creating security groups, auto-scaling, load balancers (ELBs) in the defined virtual private connection.
Managed servers on Amazon Web Services (AWS) platform using Puppet configuration management.
Experience on web servers like APACHE, NGINX, IIS servers and Hosted websites on S3 buckets
Experience on REDIS servers
Cloudflare management and implementation for security
SSL certificate creations and renewals on Linux and Windows servers
Implementing SSL certificate on web servers and Load balancers
Experience on AWS services, RDS databases like Aurora, PostgreSQL, MySQL and Oracle
Experience on DEVOPS like bitbucket, GIT and Bamboo deployment tool
Configuring, implementation and troubleshooting of monitoring tools like zabbix, pagerduty, solarwinds, Nodeping, AWS Cloudwatch and NewRelic
Configuration of Windows server 2003, Windows server 2008, Windows server 2012 Red Hat Linux, CentOS and Exchange server.
SSL certificates renewals, implementing in various servers like Apache, Linux, IIS servers and in Cloudflare
Performing PCI Compliant scans quarterly and annually
Hands on experience on SFTP Cerberus Solution
Technical Skills:
Cisco router platforms : 2500, 2600, 2800, 3600, 3700, 3800, 7200, 7609.
Cisco Switch platforms : 2900XL, 2950, 2960, 3560, 3750, 4500, and 6500.
Firewalls & Load Balancers : Cisco ASA 5585, 5550, 5540
Palo Alto PA-3060/2050, Netscaler, F-5 BIG-IP LTM (3900 and 8900), Blue Coat SG8100, AV 510, AV810, AWS load balancers.
Routers : Cisco routers (1900, 2600, 2800, 2900, 3600, 3800, 3900, 7200,
7600, ASR9K), Cisco L2 & L3, Juniper routers (M7i, M10i, M320)
Switches : Cisco switches (3560, 3750, 4500, 4900 & 6500), Nexus (2248,
5548 &7010), HP 2810, HP 5500
Routing : RIP, EIGRP, OSPF & BGP, Route Filtering, Redistribution,
Summarization, Static routing
WAN Technologies : FRAME RELAY, ISDN T1/E1, PPP, ATM, MPLS, leased lines.
LAN Technologies : Ethernet, Fast Ethernet, Gigabit Ethernet, NAT/PAT, FDDI.
Cisco
VOIP Devices : Cisco IP Phones, Avaya.
Routing Protocols : RIP, OSPF, EIGRP, and BGP.
Switching Protocols : VTP, STP, RSTP, MSTP, VLANs, PAgP, and LACP.
Network management : SNMP, Cisco Works LMS, HP Openview, Solar winds, Ethereal.
Layer 3 Switching : CEF, Multi-Layer Switching, Ether Channel.
Carrier Technologies : MPLS, MPLS-VPN.
Redundancy protocols : HSRP, VRRP, GLBP.
Security Protocols : IKE, IPSec, SSL, AAA, Access-lists, prefix-lists.
Software : Microsoft Office Suite, MS SQL Server 2008, HTML.
Language : Unix, php, and Shell scripting.
Web serves : Apache, NGINX, IIS
Monitoring : Zabbix, Solarwinds, Nodeping, Newrelic, AWS Cloudwatch,
Pagerduty
DevOPS : GIT, Bitbucket and Bamboo deployment tool
AWS: : Mostly all services
Databases : MS SQL Server 2008, Mysql, Oracle SE Two 12.1.0.2.v7
Education:
B.TECH in Computer Science Engineering
Certifications:
Cisco Certified Network Associate (CCNA) Certified.
Cisco Certified Network Professional (CCNP) Certified.
AWS Certified Solutions Architect - Associate
PROFESSIONAL EXPERIENCE:
Client: Pet360 Inc PA Sep 2016 to till now
Organization: IP Heights LLC
ROLE: Senior Network & Cloud Administrator
Deploying and decommission of VLANs on core ASR 9K, MIX routers, Nexus 7K, 5K, HP switches and its downstream devices.
Performed OSPF, BGP, DHCP Profile, HSRP, IPV6, Bundle Ethernet implementation on ASR 9K redundant pair.
Configured CIDR, RIP, PPP, BGP, MPLS and OSPF routing on Cisco routers and Juniper routers.
Assisted in MPLS migrations, implemented a backup for the existing WAN connection using site-to-site IP sec VPN tunnels.
Worked on F5 LTM, GTM series like 6400, 6800, 8800 for the corporate applications and their availability
Experience of technology capabilities and product roadmaps of major network services vendors like InfoBlox
Administration Big IP F5 LTM for all Local Load balancing and use GTM for load balancing across Data Centers.
Configuring GTM Communications Between BIG-IP GTM and Other Systems
Worked with creating VIP (virtual servers), pools, nodes and applying iRules for the virtual servers like cookie persistency, redirection of the URL.
Configuring GTM Synchronization, DNS Express, DNS Cache, DNSSEC
Experience on Redirecting DNS Requests Using a CNAME Record, Replacing a DNS Server with BIG-IP GTM
Involved in the configuration & troubleshooting of routing protocols: MP-BGP, OSPF, LDP, EIGRP, RIP, BGP v4. Configured IP access filter policies.
Support Blue Coat Proxy in explicit mode for users trying to access Internet from Corp Network.
Troubleshooting connectivity issues through Blue coat as well writing and editing web policies.
Performing URL filtering and content filtering by adding URL’s in Bluecoat Proxy SG’s.
Working on the network team to re-route BGP routes during maintenance and FW upgrades.
Co-ordinated and Upgraded F5 LTM’s and Cisco ASA’s IOS images during window time.
Deploying and decommissioning Cisco routers & switches, Juniper routers and their respective software upgrades.
Maintained complex LAN/WAN networks with several VLANS and provided support for routing protocols and also providing secure sessions over internet using IPSec and SSL encryption.
Replacing HP switches with Cisco 2960 series switches
Configuring new Cisco routers and switches, migrating and upgrading LAN & WAN
Implementing security Solutions using PaloAlto Pa-5000/3000, Cisco ASA, Checkpoint firewalls R75, R77.20 Gaia, Juniper SRX 5600/5800 and Provider-1/MDM
Configuring and maintaining Windows, CentOS and Linux application servers
Configuring and maintaining webservers like Apache, Nginx and IIS servers
Configuring and Implementing monitoring tools like Zabbix, Nodeping, New Relic, Pagerduty, AWS Cloudwatch and Solarwinds and implementing checks for servers, applications and AWS services and Tunnels
Migrated complete network infrastructure from Evolve Datacenter to AWS
Configuring IPSec VPN tunnels between firewall to firewall, firewalls to AWS and routers to AWS
Prepared network diagrams, documenting on confluence about issues and solutions
Configuring the check for monitoring the devices like web servers, routers, modems, switches, firewalls, application servers, load balancers and other servers
Configuring, implementing and maintaining of Cisco firewalls (ASA 5505, 5510), Cisco Routers, Cisco Switches
Configuring, troubleshooting and maintaining the SOPHOS firewalls in various locations
Configuring and working on Devops tools like Bamboo, Bitbucket, GIT to deploy and troubleshoot
Performing quarterly and yearly PCI compliant scans
Maintaining, and installing all of our various SSL certificates, including various Self Singed, or Self Issued certs from our Internal CA and sometimes are consulted or help determine when to use a Self-Issued or a Purchased or Public Cert.
Setup and configured various MySQL instances as needed, including RDS DB
Installing RDS on AWS and configuring the databases like MySQL, Oracle, PostgreSQL
Serving as a DBA or help with various DB tasks, including queries and tables/data work
Configuration, memory, or performance related work as well as troubleshooting MySQL or SQL Server issues.
Setup and configure various ODBC and JDBC connections as needed for access to data, both in SQL, MySQL, and Hadoop systems when asked for various BI projects, or software packages
Provisions new hosts in AWS and setups and installs software when there is new Proof of Concept work to be done, or a new server is needed.
Update or create redirects and/or new proxy rules at AWS for our redirects, API, and NGINX proxy boxes as we make changes
Whitelisting and blacklisting IP addresses as per the requirement at application level, web server’s levels, gateway level and also at AWS level
Creating various security groups, subnets and routing table at AWS
Automated all aspects of the AWS infrastructure provisioning for a Highly Available, durable and HIPPA compliant architecture deployed across three global regions.
Key AWS services included: Docker/ECS/ECR, VPC, R53, Beanstalk, RDS PostgreSQL M/S+Replicas, CloudFormation, EC2, Redis ElastiCache, VPN, Redshift, Lambda, logging/Cloud Watch, IAM, ELB, S3, EBS, CloudFront/WAF, SQS, SNS, SES, Bamboo CIDS.
Converted all CloudFormation template to Terraform for infrastructure as code.
Extensively worked on nginx, Haproxy configuration and reverse proxy configuration.
Heavily used Atlassian Bitbucket for source code repository.
Designed and Developed Docker container based architecture and deployed in ECS.
Created Docker file for Docker build and maintained repository in ECS registry.
Extensive knowledge in Route53, ELB and ALB, Target group.
Created Bash/Python script for Database migration, Lambda function, EC2 user data script.
Used Jira, Bitbucket, and Confluence for product development.
Configuring AWS application load balancers and load balancers and attaching web servers on the same load balancers, configuring metric monitoring for the LB and servers
Scheduling and troubleshooting jobs on crontab, Visualcron
Troubleshooting of deployment issues and cache issues
Cloudflare configuration and troubleshooting to whitelist and blacklist IP addresses and configuring DNS on Cloudflare
Handling frontend issues, DNS, DHCP issues, Drupal issues and Magento tools
Domain migrations from Godaddy to Route53.
Configuring and troubleshooting on Wordpress servers and implementing connections to DB from web servers in various ways like PHP script
Configuring, implementing, troubleshooting and migrating domain controllers and exchange servers, office365
Configuring POSTFIX for SES outbound mails and SMTP service
Performing AMI backups, Snapshots, volume creations and deletions of useless snapshots using the power shell script
Working on services like bluehornet and working on slack channel integrations with various applications
Implementing Pagerduty alerts and slack alerts to get the alerts from tools like zabbix, nodeping, AWS Cloudwatch and NewRelic
Slack channel creations and integrations with teams, applications
Office365 mail back recovery and litigation controlling
Performing IOS upgrades on firewalls, routers and designing the tunnels between location for secure data transfer and configuring wireless access-points, guest network and switches in LAN
Environment: AWS, AWS EC2, Chef 14.x, Redhat 6.x/5.x, CentOS 6/7, MySQL, MS SQL Server2008, Oracle DB, AWS EC2, ANT, DNS, S3, SCM, AWS, GitHub, Bamboo, Bit bucket, Cisco 3560/4500/3750/3500/2960/6500 switches and Cisco 3640/7200/3845/3600/2800 routers, Cisco Nexus 7K/5K, Cisco ASA 5005/5010/5020, Palo Alto, Checkpoint, Sophos XG230, Bluecoat, Windows server 2003/2008: F5 BIGIP LTM, OSPF, BGP, EIGRP, LAN, WAN, VPN, HSRP, VRRP
.
New York Life, Lebanon, NJ Nov 14 – Aug 16
Role: Senior Network Engineer
Responsibilities:
Involved in the activity of DATA-Center migration of regular Cisco catalyst switches with the new Nexus2148, 2224T, 5548, 6018, 7010using F3/M3 line-cards with 10GE & 40GE interfaces and Supervisor 2E.
Convert Branch WAN links from TDM circuits to MPLS and to convert encryption from IPSec/GRE to GetVPN.
Experience on security tools like firewalls, IDS’s, Web content filtering and content filtering solution. E.g. Cisco, Checkpoint, Fortigate
Configuring system policies, intrusion policies and health policies using FireSIGHT Management Centre
Configuring and applying an access control policy using FireSIGHT Management Centre
Verifying FireSIGHT management center receives Events
Configuring system policies, intrusion policies and health policies using FireSIGHT Management Centre
Configuring URL filtering, site-to-site VPN tunnels, Netflow, file blocking, Antivirus blocking in Palo Alto
Sending logs to Syslog by using Palo Alto
Configuring and applying an access control policy using FireSIGHT Management Centre
Verifying FireSIGHT management center receives Events
Configuring routing protocols OSPF, EIGRP, RIP v2, MPBGP, LDP and BGPV4
Configuring HSRP between VLANs, Configuring Ether-Channels, Port Channel on 6500 Catalyst
experience with IP subnetting, Telnet/SSH Clients, Terminal Server Remote Access, ServiceNow, COS, VoIP and MPLS technologies, and Cisco network software (COS/IOS), inventory/maintenance tracking and vendor support case handling; as well as with Cisco routers and Catalyst/Nexus switches, F5 load balancers and Infoblox DHCP/DNS
Administration Big IP F5 LTM for all Local Load balancing and use GTM for load balancing across Data Centers.
Configuring GTM Communications Between BIG-IP GTM and Other Systems
Worked with creating VIP (virtual servers), pools, nodes and applying iRules for the virtual servers like cookie persistency, redirection of the URL.
Configuring GTM Synchronization, DNS Express, DNS Cache, DNSSEC
Experience on Redirecting DNS Requests Using a CNAME Record, Replacing a DNS Server with BIG-IP GTM
Involved in the configuration & troubleshooting of routing protocols: MP-BGP, OSPF, LDP, EIGRP, RIP, BGP v4. Configured IP access filter policies.
Configuring and troubleshooting on Juniper: M320, MX80, MX480, MX960 and EX4200, EX8200 switches
Support Blue Coat Proxy in explicit mode for users trying to access Internet from Corp Network.
Troubleshooting connectivity issues through Blue coat as well writing and editing web policies.
Worked on Blue Coat Proxy SG to safeguard web applications in extremely untrusted environments such as guest Wi-Fi zones.
Performing URL filtering and content filtering by adding URL’s in Bluecoat Proxy SG’s.
Working on the network team to re-route BGP routes during maintenance and FW upgrades.
Co-ordinated and Upgraded F5 LTM’s and Cisco ASA’s IOS images during window time.
Deploying and decommissioning Cisco routers & switches, Juniper routers and their respective software upgrades.
Performing troubleshooting on slow network connectivity issues, routing issues that involves OSPF, BGP and identifying the root cause of the issues.
Worked on migration of existing PIX firewall to ASA firewall, PIX OS upgrade from 6.3 to 7.0.
Design and Implement DMZ for FTP, Web and Mail Servers with CISCO PIX 506, PIX515
Building the VPN tunnel and VPN encryption.
Involved in Configuration of Access lists (ACL) on ASA firewall for the proper network routing for the B2B network connectivity.
Implementing security Solutions using PaloAlto Pa-5000/3000, Cisco ASA, Checkpoint firewalls R75, R77.20 Gaia, Juniper SRX 5600/5800 and Provider-1/MDM and Imperva 4500/6500/MX (web application firewall).
Working on Firewall Change Requests, includes opening ports, establishing connections, creating new objects/networks/hosts/polices on checkpoint and Sophos
Pushing polices on CheckpointR70.30 and Sophos.
Managing, monitoring and enforce security and acceleration policies on multiple bluecoat ProxySG via Bluecoat Director.
Configuring white listed websites in Bluecoat proxy SG devices.
Added rules, static bypass and Proxy/URL filtering on bluecoat proxies.
Involved in Upgrading bluecoat proxy servers from SG900-10s to SG 9000-20B.
Configuring rules and maintaining Palo Alto Firewalls & Fortigate and Analysis of firewall logs using various tools.
Firewall policy provisioning on FortiGate appliances using FortiManager.
Configuring VPN both B2B and remote access SSL and centralized policy administration using FortiManager, building Fortigate High Availability using Fortigate Clustering Protocol (FGCP).
Configuring, maintaining and troubleshooting of fortigate firewall, Cisco ASA and Palo Alto
To secure configurations of load balancing in Netscaler, F5, SSL/VPN connections, Troubleshooting CISCO ASA firewalls, and related network security measures.
Provided proactive threat defense with ASA that stops attacks before they spread through the network.
Designed and implemented DMZ for Web servers, Mail servers & FTP Servers using Cisco ASA5500 Firewalls.
Troubleshoot the Network Issues onsite and remotely depending on the severity of the issues.
Performed Break Fix support through driving to different buildings, identifying the root cause of the hardware issues with switches, routers.
Design, implementation and operational support of routing/switching protocols in complex environments including BGP, OSPF, EIGRP, Spanning Tree, 802.1q, etc.
Created Visio Dean / Visio Documentation to give complete picture of network design for each building.
Experience in Configuring, upgrading and verifying the NX-OS operation system
Used Openstack and AWS cloud services to launch Linux and windows machines, created security groups and written basic PowerShell scripts to take backups and mount network shared drives.
Worked on AWS service to create, launch, configure EC2 instance, worked on S3, RDS, Auto Scaling, SES, SQS, and VPC, to build given architectures.
Installation, Configuration, Maintenance and Development of about 250+ Linux Servers (Mix of Ubuntu, CentOS and Red Hat-RHEL
Design, Configuration, Administration and Development of LAMP (Linux Apache MYSQL PHP) based architecture and other open source applications.
Assisted the team and played a key role in Datacenter migration up to cloud infrastructure (IaaS
Worked on creating, configuring and administration of the filesystems (ext3/OCFS2) using Logical Volume Management LVM.
Deploy, configure and manage Linux instances in Amazon Cloud/EC2 environment.
Worked with job scheduling tools crontab and autosys.
Hands-on experience in managing post-install configuration using the tools like puppet, landscape.
Follow Change Management process prior to making any changes to production systems.
Provided L3 support for infrastructure, incident management and Network teams by helping in problem solving and troubleshooting issues.
Configuration and administration on standard UNIX services like SSH, FTP, NFS, DNS, LDAP, SSL and SUDO.
monitor and check the status of the servers using the monitoring tools like c
Worked in developing and making changes in UNIX scripting languages (PHP, Bash, and Korn)
Worked with networking team in understanding the limitations of firewall, domain controllers, load balancers and switches.
Environment: Cisco 2948/3560/4500/3560/3750/3550/3500/2960/6500 switches and Cisco 3640/12000 /7200/3845/3600/2800 routers, Cisco Nexus 7K/5K, HP 5500, Juniper routers, MIX routers, Cisco ASA 500, Palo Alto, Checkpoint, Bluecoat, Juniper SRX 5600/5800, MIX routers, Juniper: M320, MX80, MX480, MX960 and EX4200, EX8200 switches, windows server 2003/2008: F5 BIGIP LTM, Netscaler, RIP, OSPF, BGP, EIGRP, LAN, WAN, VPN, HSRP, Red Hat Enterprise Linux (RHEL 6), Ubuntu server 64-bit, Centos, MySQL, AWS
DTE, Detroit, MI Apr13 – Nov 14
Sr. Network Engineer
Responsibilities:
Involved in complete LAN, WAN, Extranet redesign (including IP address planning, designing, installation, pre-configuration of network equipment, testing, and maintenance) in both Campus and Branch networks
Experience with converting Cisco 6500 IOS to Cisco Nexus NX-OS in the data center
Environment.
Experience with configuring Nexus 2000 Fabric Extender (FEX) which acts as a remote line card (module) for the Nexus 5000
Working on Firewall Change Requests, includes opening ports, establishing connections, creating new objects/networks/hosts/polices on checkpoint and Sophos
Pushing polices on CheckpointR70.30 and Sophos
Deploying, configuring, and administering CheckPoint Firewalls Appliances (13500, […] /2200, 4400, 4800 and UTM-1 Edge) with various Checkpoint Operating Systems upgrading, clustering and VPN implementations.
Configuration, Installation and troubleshooting of JuniperNetscreen.
Experience configuring VPC, VDC and ISSU Software upgrades on Cisco Nexus 7010
Experience in Configuring, upgrading and verifying the NX-OS operation system
Responsible for Cisco ASA firewall administration across our global networks
Support customer with the configuration and maintenance of PIX and ASA firewall systems
Design and configuring of OSPF, BGP on Juniper Routers and SRX Firewalls
Provided complete L3 support for VMware virtual infrastructures.
Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500/PIX security appliance, Failover DMZ zoning & configuring VLANs/routing/NATing with the firewalls as per the design.
Managing, monitoring and enforce security and acceleration policies on multiple bluecoat ProxySG via Bluecoat Director.
Configuring white listed websites in Bluecoat proxy SG devices.
IPv6 Conformance: Implementing Changes to Network Stack (Host side) to make sure that our Network Stack is IPv6 compliant. As a part of this project bugs reported by ANVL (Automated Network Validation Library) IPv6 Conformance Test Suites were fixed. Mainly did changes to ICMPv6, NDP (Neighbor Discovery Protocol), DAD (Duplicate Address Detection), and Stateless Auto configuration modules of Ipv6 Stack.
Experience working with BGP attributes such as Weight, Local-Preference, MED and AS- PATH to influence inbound and out bound traffic
Use and maintain routing protocols EIGRP, OSPF and BGP on the Routers in the network & also worked on BGP Route Reflectors, Confederations
Deployed a large-scale HSRP solution to improve the uptime of collocation customers, in the event a core router became unreachable.
Experience with convert PIX rules over to the Cisco ASA solution.
Support Blue Coat Proxy in explicit mode for users trying to access Internet from Corp Network.
Troubleshooting connectivity issues through Blue coat as well writing and editing web policies.
Ability to plan independently and execute product testing with quality (White box, Black box testing, Scalability, performance, solution and system testing)
Applies test expertise and experience to craft & execute test plans, conduct negative/exception tests, verification, performance and regression testing of RIA, HTML, AJAX, Mobile Web client, integration services, enablers & platforms
Implemented HSRP on the Cisco 2948G Layer 3 switches and EIGRP, OSPF on 2 Cisco 2610routers, the Layer 3 switch, 3 Cisco 350XL Switches, Cisco 3524XL switches for load balancing and fail over.
Successfully executed P2V Project involving virtual environment of over 50 physical machines; it solved space and power capacity constraint at Data Centre
Configuring ASA Firewall and accept/reject rules for network traffic.
Troubleshoot the BIG-F5 1600 LTM through constant contact with the vendor.
Configuring GTM Communications Between BIG-IP GTM and Other Systems
Worked with creating VIP (virtual servers), pools, nodes and applying iRules for the virtual servers like cookie persistency, redirection of the URL.
Configuring GTM Synchronization, DNS Express, DNS Cache, DNSSEC
Configuring Big-IP F5 LTMs (virtual servers, pools, SNATs, health monitors, iRules) for managing the traffic and tuning the load on the network servers & Netscaler issues troubleshooting.
Configuring rules and Maintaining Palo Alto Firewalls & Analysis of firewall logs using various tools.
Configuring security zones (Trust and Untrust) in Palo Alto
Worked on Juniper SRX 5800 firewalls to create policies using J-Web User Interface.
Troubleshooting of Fortinet FortiGate (5.x or later) - Fortinet FortiManager and Forti **************@***************.***; ******@*******.***; ******@*************.***; ******@*********.***;******@******.***
Configuring VPN both B2B and remote access SSL and centralized policy administration using FortiManager, building Fortigate High Availability using Fortigate Clustering Protocol (FGCP).
Designing and testing plans to meet those requirements of fortigate firewalls.
Managing network growth and development.
Environment: Cisco 2990/3550/6550 switches, Cisco 7200/3845/3600/2800 routers, ASR9K, EIGRP, RIP, OSPF, BGP, VPN, Ether Channels, Juniper SRX 5600/5800, MIX routers, Juniper: M320, MX80, MX480, MX960 and EX4200, EX8200 switches, Cisco Nexus 7K/5K, Palo Alto, bluecoat, and Cisco ASA Firewall
Pfizer, Chicago, IL Aug 12 – Mar13
Network Engineer
Responsibilities:
Day-to-day work involves scheduling firewall policy provisioning and working with users to identify connectivity related issues and troubleshoot using both Smart Utilities and CLI.
Managing and administering Juniper SRX and Checkpoint Firewalls at various zones including DMZ, Extranet (Various Business Partners) and ASZ and internal.
Juniper Firewall Policy management using NSM and Screen OS CLI.
Troubleshooting Firewall Connectivity related issues using Smart view tracker on Checkpoint, NSM Log viewer for Juniper Firewalls.
Configure and administer Cisco ASA Firewalls (5585, 5550, and 5540) and use command line CLI, Cisco CSM, ASDM for day-to-day administration.
Active/Standby and Active/Active HA configuration on Cisco ASA Firewalls.
Configuring High Availability using Cluster XL on Checkpoint as well as VRRP and monitor the Sync status for stateful replication of traffic between active and standby member.
Configuring rules and maintaining Palo Alto firewalls and analysis of firewall logs using various tools.
Experience on ASA firewall upgrades to 9.x.
Experience with configuring Nexus 2000 Fabric Extender (FEX) which acts as a remote line card (module) for the Nexus 5000
Configured Panorama web-based management for multiple firewalls.
Configuring rules and Maintaining Palo Alto Firewalls & Analysis of firewall logs using various tools.
Configuring Site-to-site VPNs and Netflow using Palo Alto firewalls.
Performed network implementation that includes configuration of routing protocols, leased lines, ISDN lines, VLANs and IOS installations.
Troubleshot the network issues onsite and remotely, depending on the severity of
Contact this candidate