Engineer Manager
Resume:
Maulik Patel
***********@*****.***
SUMMARY
7+ Years of experience in networking, security, installing, configuring and maintaining network devices.
Good understanding of networking concepts such as routing protocols, VLANs, IP address management and network security.
Experience in cisco Routing, Switching and Security with strong Cisco hardware/software experiences with Cisco Routers such as 1900, 2900, 3900, Cisco ASR-1k/9k, Cisco Multilayer Switches 4500, 6500, Cisco Nexus 2k/5k/7k/9k.
I have knowledge of Cisco Meraki and pretty much knowledge of cisco ISE
I can be debugging and designing or supporting AAA identity based access solutions for WLAN deployments
Expertise in Configuration of VLANS, using Cisco Multilayer switches and supporting STP, RSTP, PVST, RPVST along with troubleshooting of inter-VLAN routing and VLAN Trucking using 802.1Q.
Proficient in using firewall technologies including general configuration, security policy, rules creation and modification of cisco ASA, Juniper SRX and checkpoint.
Experience with R&S networking. Strong routing and switching capabilities.
Strong experience in creating firewall policies as per the requirements on Checkpoint, Palo Alto, Cisco ASA, Juniper and Fortinet firewalls.
Strong understanding of current and future technologies including TCP/IP, IPv4/v6, RIP, EIGRP, OSPF, BGP, Frame Relay, ACL, VPN, Wireless LAN and configuration of VLANs.
Experience with Cisco IOS, cat OS, Cisco IOS XR.
Expert level knowledge in IP Routing and WAN protocols (BGP, EIGRP, OSPF, ISIS).
Proficiently implemented traffic filters using Standard and Extended access-lists, Distribution lists, Route-maps and Route Manipulation using offset-list.
Configured Infoblox failover using Infloblox DHCP that is based upon ISC DHCP modes on f5 management system.
Network security including NAT/PAT, ACL, VPN and IPSEC on DMVPN (GRE Mode).
Expert level internetworking troubleshooting in a large-scale network environment. Undertake support as designated Advanced Services engineer for large-scale networks.
Extensively worked on Cisco catalyst 6509 and implemented VSS along with VDC and VPC on Nexus 5505, 7009 switches.
Experience in configuring and Troubleshooting BIG-IP F-5 load balancer LTM.
Worked extensively on Data Center Palo Alto firewalls and F5 BIG-IP LTM.
Experience with convert Checkpoint VPN rules over to the Cisco ASA solution. Migration with both Checkpoint and Cisco ASA VPN experience.
Experience with design and troubleshooting in complex network environments.
Access control server configuration for RADIUS and TACACS+.
Responsible for check point and Cisco ASA firewall administration across global networks.
Worked on Load balancer F5 LTM, GTM series like 6400, 6800, 8800 for the corporate applications and their availability.
Established relationships and network connectivity with vendors via site to site VPN.
In-depth knowledge and hands on experience in Tier-2 ISP Routing policies, Network Architecture, IP Subnetting, VLSM, TCP/IP, NAT, DHCP, DNS, Firewalls.
Configure all Palo Alto Networks Firewall models (PA-2k, PA-3k, PA-5k etc.) as well as a centralized management system (Panorama) to manage large scale Firewall deployments.
Adept in handling network monitoring tools such as Wireshark, Net flow, SNMP and SYSLOG.
Technical skills:
Cisco Routers: 2600, 2900, 3600, 3800, 7200 and 7600.
Cisco L2 and L3 Switches: 2900, 3560, 3750, 3850, 4500, 4900, 6500 series.
LAN Technologist: Ethernet, Fast Ethernet, Gigabit Ethernet, SMTP, VLAN, Inter-VLAN Routing, STP, RSTP, Light weight access point, WLC.
WAN Technologies: Frame Relay, PPP, HDLC, MPLS, T1, T3, OC Standard.
Firewalls: Cisco PIX, ASA, Juniper Secure Access VPN Appliance, FortiGate 40c.
Wireless/Voice Technologies: Cisco WLC, IEEE 802.1x and 802.11, WLAN, WAP, AP, SSID, LWAPP, VoIP/SIP, CUCM, UCCM, UCCX, MGCP, RTP, Poe, CCK, DSSS.
Load Balancing: F5:6400, 6800, 8800 with LTM, GTM, ASM, APM, Access Gateway, Secure Gateway.
VoIP: Call Manager, Call Manager Express, SIP Trucking.
Applications: Wireshark, Cisco packet tracer, GNS 3, Active Directory, Cisco IOS, Cisco prime Infrastructure, Cisco UCS, Microsoft Office, PowerPoint, Excel 2013-2016.
Services: Done Configuration for VLANs, STP, SNMP, ELRP, DMZ and Redundancy protocol (HSRP and VRRP).
Other Technologies: VMware, Mat Lab, VISIO, Oracle DBMS, Microsoft word, Excel.
Certifications:
Cisco Certified Network Professional (CCNP)
Cisco Certified Network Associate (CCNA)
Cisco certified Network Security (CCNA)
Professional Experience:
CVS Caremark-Rhode Island Feb 2017- Present
Network Engineer
Responsibilities:
Designing, Implementing LAN/WAN configurations on Cisco Nexus 5k, Catalyst 6500 switch.
Designed and rebuilt two data centers and deployed Cisco Nexus and ASR and utilized BGP, EIGRP, VRF and IPsec tunnels to provide fully redundant services.
As part of Network Operation team, I am responsible of Troubleshooting Palo alto 5050, ASA Firewall -5500 series, Cisco Router and Switch
Work with County Engineer and other support specialists to resolve network outages.
Responsible for implementing firewall technologies including general configuration, optimization, security policy, rules creation and modification of ASA and Palo Alto Firewalls.
Working on Traffic Migration from Cisco ASA firewalls to Palo Alto firewalls platforms PA 5050.
Extensive Packet level debugging and troubleshooting on Palo Alto Firewalls to resolve numerous network issues.
Experience with DNS/ DHCP Standardizations and Implementations.
Configuration, Troubleshooting and Maintenance of ASA Firewalls (40+ firewalls) 5505, 5510, 5520, 5540, 5585.
Configuring rules and Maintaining ASA Firewalls & Analysis of firewall logs using various tools.
Redistribution of OSPF and EIGRP into BGP with the correct tagging parameters from the old legacy network to route and to utilize the correct MPLS VRF VPN’s provided from the bearers.
Configuration and troubleshooting of Site to Site as well as Remote Access VPN on Cisco ASA and Checkpoint firewall MDS.
Have applied ACLs for Internet access to servers using Cisco 5550 ASA firewall and performed NAT.
Responsible for Palo Alto and Cisco ASA firewall administration across our global networks
Maintenance and configuration of Cisco ASR1000 series
Strong hands on experience in installing, troubleshooting, configuring of Cisco ASR, 7200, 3900, 3800, 2900, 2800, and 1800
Installed and configured Cisco ASA 5500 series firewall and configured remote access IPSEC VPN on Cisco ASA 5500 series.
Migrated and implemented new solutions with Cisco ASA Firewall (5500) series.
ManagingF5 Bigip Load balancers, Blue Coat Proxies and Riverbed WAN Optimizers.
PG&E- Concord CA JAN2016 – Jan 2017
Network Engineer
Responsibilities:
Designing, Implementing LAN/WAN configurations on Cisco Nexus 5k, Catalyst 6500 switch.
Designed and rebuilt two data centers and deployed Cisco Nexus and ASR and utilized BGP, EIGRP, VRF and IPsec tunnels to provide fully redundant services.
Experience configuring VPC, VDC and ISSU Software upgrades on Cisco Nexus 7010.
Configuring/Managing Intrusion Prevention System (IPS): Cisco IPS/Fortinet& Checkpoint UTM.
Configured IPSEC VPN (site to site remote access) on SRX series firewall.
Configured and maintained Cisco Catalyst Switches 6500, 4500, 3500, 2900 series, Cisco Nexus Switches 7K/5K.
Responsible for overall firewall configuration implementations and policy installations across all platforms during maintenance windows including Juniper, Check Point, and Fortinet for major enterprise network.
Configured and maintained IPSEC and SSL VPN's on Palo Alto Firewalls.
Configuring, maintaining and troubleshooting with Fortinet firewall and security.
Troubleshoot local and remote VPN access to multiple EMR and billing applications residing in Data Center.
Configure Cisco switches, wireless access points and wireless LAN controllers to meet network design.
Support of firewall technologies includes Fortinet firewalls. Administration, troubleshooting.
Provided tier 3 support for Check Point Firewall-1 software to support customers.
Configure/upgrade wireless access points and am familiar with Cisco wireless controllers.
Worked with Cisco Layer 3 switches 3750, 4500, 6500; Cisco Nexus 2248, 5548, 6001 and 7018 in multi VLAN environment with the use of inter-VLAN routing, 802.1Q trunk, ether channel.
Configuration and troubleshooting of Cisco catalyst 6509, 7613 with supervisor cards.
Responsible for the configuration of Cisco Routers (7000, 5300, 4000, 2500, 3000, 2600) using RIP, IGRP, OSPF, EIGRP, BGP.
Adding security rules and pushing the security policy on Checkpoint and Fortinet consolidated.
Experience with convert Checkpoint VPN rules over to the Cisco ASA solution. Migration with Cisco ASA VPN experience.
Experience using Checkpoint R65.4, Cisco PIX and ASA5520, 5540, 5585.Juniper JUNOS
Experience with converting Cisco 6500 IOS to Cisco Nexus NX-OS in the data center environment.
Redistribution of OSPF and EIGRP into BGP with the correct tagging parameters from the old legacy network to route and to utilize the correct MPLS VRF VPN’s provided from the bearers.
Implemented, Configured BGP WAN routing, converting OSPF routes to BGP (OSPF in local routing).
Expertise in maintenance of layer 2 switching tasks- VLAN, VTP, RSTP, configuration of ether channel with LACP and PAGP along with troubleshooting of inter-VLAN routing.
Checkpoint, Cisco ASA, Fortinet and Palo Alto installation, upgrade, Monitoring and patch management.
Configure Cisco ASR 9001/9010/9910 and Catalyst 6509 routers for L3 Vlans with HSRP and advertise network in BGP and OSPF in complex DC environment.
Involved in Configuring and implementing of Composite Network models consists of Cisco7600, 7200, 3800 series and ASR 9k, GSR 12K routers and Cisco 2950, 3500, 5000, 6500 Series switches.
Installed high availability Big IP F5 LTM and GTM load balancers to provide uninterrupted service to customers.
Configure Cisco ASR 9001/9010/9910 and Catalyst 6509 routers for L3 Vlans with HSRP and advertise network in BGP and OSPF in complex DC environment.
Configuration and management of Cisco ASA firewall (5510, 5520), Fortinet 3061C, 400,800,300c, 100,40C, 80cfirewalls, Checkpoint N-70,75, 76, SRX Juniper, etc.
Configured and deployed Juniper SRX (210/220/240/650/) branch and SRX-3400/3600/5800) data center.
Extensive implementation of firewall rules on Juniper SRX 3600, SRX 650 and SRX 220 on a daily basis, using SPACE as well as CLI when needed.
Design and deployed F5 LTM and GTM load balancer infrastructure per business needs from the ground up approach.
Designed datacenter upgrade from old Catalyst to Nexus 9000/2000 Fabric solution increasing efficiency.
Experience with Cisco LAN controllers (8500, 5760, 5500) Cisco AirNet Access Points (3700, 2700, 1600, 700W), Cisco Mobility Platform.
Managed the F5 Bigip GTM/LTM appliances to include writing i-Rules, SSL offload and everyday task of creating WIP and VIPs.
US-COURTS Washington DC Oct 2015-Dec 2016
Network Engineer
Responsibilities:
Design MPLS VPN and Qos for the architecture using Cisco multi-layer switches.
Design and implemented campus switch network with Layer 3 switches (3750, 4500 and 6500) in multi VLANs environment and inter-VLAN routing, HSRP, ISL trunk, Ether channel.
Configured and troubleshoot Enterprise Routers, CISCO ASR 9K, CISCO 2900 and 2800 series Routers. Hands on experience with Cisco call Manager Express, Cisco Voice over IP.
Successfully installed Palo Alto PA 3060 firewalls to protect Data Center and provided L3 support for routers/switches/firewalls.
Performed Cisco ASR/router/switch/firewall deployments, maintenance, and code upgrades (1800 - 7600 router's, 2000/5000/7000 series Nexus, FWSM/PIX 515 - ASA 5585 pre-8.3 and post 8.3 deployments including NAT configuration/Packet Tracer/ASDM
Deployed and maintained routing protocols such as OSPF, EIGRP, BGP, GRE, MPLS/VPN, HSRP and static routes on Cisco routers and switches and Juniper routers
Configuration scenarios include routing (RIP, EIGRP, OSPF, BGP), bridging (STP, VLAN, HSRP), MPLS VPN, Network Security (VPN, Firewall, IDS), IP telephony (call manager, CME, voice Gateways).
Experience with enterprise-class security products such as web proxy, reverse proxy, load balancing, IDS/IPS, DLP, Firewall, IPsec/SSL VPN, WAN/LAN, wireless and remote connectivity.
Integration of IDS/IPS to Arc Sight and analyze the logs to filter out False positives and add True Positives into IDS/IPS rule set.
Worked with customers to define, plan and execute technology solutions that are specific to their needs. Deployment and configuration of F5 BIG IP load balancer (LTM, GTM, ASM, and APM Modules).
Configuration and maintenance of routers, firewalls and load-balancers.
Configured IP RIP, PPP, BGP and OSPF routing.
Worked on conversions to BGP WAN routing, which will be to convert WAN routing from OSPF to BGP (OSPF is used for local routing only) that involves new wan links.
Have configured ACI for remote Authentication in the respective organization, Manage project task to migrate from Cisco ASA firewalls to Checkpoint firewalls.
Deployed Nexus switches 2248, 5548, 7018 and implemented features like FEX Links, VPC, VRF, VDC, and OTV, Fabric Path.
Experience in SolarWinds Network Performance Monitor, Network Configuration Manager, Network Traffic Analyzer (Net flow) and IP Address Manager.
Added, Removed and Updated custom properties within SolarWinds Orion in line with applicable Configuration Management processes & procedures
Management of the of SolarWinds Orion Suite - Network Performance Monitor, Network Configuration Manager.
Monitored and resolved network device issues identified by SolarWinds in a timely manner
Deployed and maintained IS-IS on Cisco and Juniper routers.
Providing technical security proposals, security presentation, installing and configuring Checkpoint and Palo Alto firewalls, VPN networks and redesigning customer security architectures.
Involved in the configuration of the Nexus 2248 Fabric Extender (FEX) module on the Nexus 5000 to connect servers and storage devices.
Implement changes on switches, routers, load balancer (F5 and CSS), wireless devices per engineer’s instructions and troubleshooting any related issues.
Installing, Configuring and troubleshooting Cisco Routers (ASR1002X, 3945,3845, 2800, 3600) and switches to perform functions at Access, Distribution and Core layers.
Performed corporate data center refresh project by replacing existing Catalyst based legacy switches to Nexus 7000s, 7100s, 5000s, 2000s & Nexus 6000.
Configured routes on Palo alto firewalls 3060, 5060, 7050.
IPsec VPN Solutions, Advanced Cisco AnyConnect Full-Tunnel SSL VPN Solution, Cisco ASA Basic
Use and maintain routing protocols EIGRP, OSPF and BGP on the Routers in the network & worked on BGP Route Reflectors, Confederations.
Experience with Firewall Administration, Rule Analysis, Rule Modification.
Performed configuration and maintenance of Cisco 3800, 3600, 2800, 1800 series routers and Cisco 2900, 3500, 6500 series switches using command line and SDM.
Configuring of checkpoint Security gateway & management server.
Configured RIP, OSPF and Static routing on Juniper M and MX series, Deployment and configuration of F5 BIG IP load balancer (LTM, GTM, ASM, and APM Modules).
Implement and configured VRRP/GLBP (on distro/core switches), HSRP on different location of office on the switched network and managing the entire multilayer switched network.
Switching tasks include VTP, ISL/ 802.1q, IPSec and GRE Tunneling, VLANs, Ether Channel, Trucking, Port Security, STP and RSTP.
Implemented Voice VLANS, UDP, SIP and RTP and provide QOS by DSCP and IP precedence.
Security control using AAA, radius server, access-list, prefix-list, dynamic list, DHCP server maintenance
Involved in Data Center migration of Cisco Catalyst Series 4500, 6500 switches with the new Nexus Switches 2148,5548,7010 using F3/M3 line Cards with 10 GE and 40 GE interfaces and supervisor 2E.
Experience working with Nexus 7010, 5020, 2148, 2248 devices
Configured VTP, Per Vlans Spanning Tree Protocol (PVST), VLANS and inter VLAN routing.
Configuring rules and Maintaining Palo Alto Firewalls & Analysis of firewall logs using various tools.
Implement changes on switches, routers, load balancer (F5 and LTM and GTM).
Club Mahindra, India JUN 2012 – Sept 2015
Network Engineer
Responsibilities:
Migration of RIPv2 to OSPF, BGP routing protocols.
Implemented Zone Based Firewalling and Security Rules on the Palo Alto Firewall.
Created VLAN and Inter-VLAN routing with Multilayer Switching.
Designing Solutions for frozen requirements using Cisco Routers and Switches.
Implemented ISL and 802.1Q for communicating through VTP.
Fourth tier troubleshooting, support and implementation for DNS/DHCP.
Involved in Troubleshooting IP addressing Issues and Updating IOS Images using TFTP.
Experience in deploying EIGRP/BGP redistribution and the changing the metrics for the primary and back up.
Installing, Configuring Cisco Catalyst switches 6500, 3750 and 3550 series and configured routing protocol OSPF, EIGRP, BGP with Access Control Lists implemented as per Network Design.
Maintained Redundancy on Cisco 2600, 2800 and 3600 routers with HSRP.
Strong knowledge in Windows Server Operating Systems, Active Directory, Exchange, DNS, DHCP, and Terminal Services.
Handled different tasks such as network address assignment, Domain Controller, DNS and Active Directory.
Provide administration of services (Active Directory, security appliances, switching & telecommunications)
Configured access for all Active directory groups to get network access over WAN connections in Cisco ACS.
Adds, moves and changes of network users in Active Directory
Maintain Windows 2000 Active Directory server
SPIDIGO, India APR 2011 – JUN 2012
Network Analyst
Responsibilities:
Working on Network support &implementation related internal projects.
Ensure network, system and data availability and integrity through preventative maintenance and upgrade.
Responsible for Configuring SITE_TO_SITE VPN on Cisco ASA 5500 series firewall between Head office and Branch office
Performed migration activity from CSS to ACE using CSS2ACE conversion tool.
Manage all network and firewall devices which includes Cisco routers, switches, Check Point, Cisco PIX, Cisco ASA, Cisco FWSM and F5 Load Balancer in enterprise environment.
Upgraded Nexus OS on Nexus5k.
Provided technical support for full setup, debugged the problems of OSPF, switching and HSRP.
Working knowledge of Firewall service module FWSM UPGRADE, FWSM RULESET conversion
Router memory & IOS upgrade using TFTP
Experience working Juniper T-Series, M-Series, MX-Series, J-Series Routers
Worked on commissioning and decommissioning of the MPLS circuits for various field offices.
Configured and debugged policy based routing for special traffic, route filtering with route maps, route redistribution.
Implemented Site-to-Site VPNs over the internet utilizing 3DES, AES/AES-256 with PIX Firewalls
Configure VLAN Trucking 802.1Q, STP, and Port Security on Catalyst 6500 switches.
Install and maintain routers and switches in various network configurations supported VLANs, and advanced ACL.
ACME INFO, INDIA June 2009 – APR 2011
Network Engineer
Responsibilities:
Designed VLAN’s set up both L2 and L3 logical to have it communicate to Enterprise network.
Configuration and maintenance of Cisco 2900 series including VLANS and TRUNKING protocols.
Configured EIGRP, BGP and MPLS
Implemented load balancing between Cisco L3 switch by HSRP and GLBP.
Delivered Departmental Efficiency through advanced engineering, technical support and documentation procedures.
Performed the general activities of LAN administration on switches, routers, hubs and WI-FI and network printers.
Provided high level technical support, including identifying and resolving problems on Cisco supported products for e-commerce infrastructure. This included external routing and internal routing for DMZ servers.
Provided Technical support to the entire organization on software, hardware and network.
Involved in troubleshooting of DHCP and IP conflict problems.
Installing computer hardware, software, printers, wired, wireless network management, maintenance and troubleshooting devises and network problems.
Contact this candidate