Raj Reddy
***@*******.*** +1-732-***-****
SUMMARY:
Certified Network Engineer with 8 years of experience in Network Implementation, Configuration, Trouble Shooting and Maintenance of complex Network and Security devices.
Excellent working knowledge of TCP/IP protocol suite and OSI layers.
Expertise in IP Subnetting and worked on various designing and allocation various classes of IP address to the domain.
Extensive hands-on experience with complex routed LAN and WAN networks, routers and switches. Hands-on configuration and experience in setting up Cisco routers to perform functions at the Access, Distribution, and Core layers.
Experience with implementing, deploying and troubleshooting LAN, WAN, Frame-Relay, Ether-channel, IP Routing Protocols - (RIPV2, OSPF, EIGRP & BGP), ACL's, NAT, VTP, HSRP & GLBP, DNS, DHCP, MPLS, DMVPN.
Excellent skills to implement VLANS, private VLANS, Port security, SVI’s, STP and RSTP (802.1W), standard and extended access lists (ACL's) for managing access based security, creating root views for administrative privileges.
Strong hands on experience in Installing, Configuring and troubleshooting of Cisco 6500, 4500, 3750, 2950 and 3500XL series switches, Cisco 1800, 2500, 2600, 2800, 3600, 3800, 7200 and 7600 series and CSR Routers.
Experience in Design development, implementation, troubleshooting maintenance and Administration of Cisco VOIP, IP Telephony networks.
Experienced in Cisco Unified Communications Manager (CUCM) (6.x, 7.x, 8.x, 9.x, 10.x), Cisco Call Manager (CCM), Cisco Unified Presence (CUPs, IM & Presence), Cisco Unified Call Manager Express (CUCME), Cisco Unity Connection (CUC) (7.x, 8.x, 9.x, 10.x), Unified Contact Center Express (UCCX).
Good knowledge of CISCO NEXUS data center infrastructure with 5000 and 7000 series switches are including 5548, 7010 and CISCO NEXUS Fabric Extender (223, 2248).
Experience configuring VPC, VDC and ISSU software upgrade in Nexus 7010.
Hands of experience in Juniper switches like EX-4200/EX-8200, and Juniper routers such as MX 240, 480, 960 and 2000.
Test cable modems and head-end equipment for DOCSIS 3.0 standard compliance.
Involved in troubleshooting of DNS, DHCP and other IP conflict problems. Vast experience in implementing various networking services including SNMP, SNMP Traps and Syslog.
Experience in implementing site-to-site and remote access VPN Technologies using GRE, IPSEC & MPLS. Demonstrate excellent implementation of PPP and Frame Relay.
Implemented Security Policies using ACL, Firewall, IPSEC, SSL, VPN, IPS/IDS, AAA (TACACS+ & RADIUS).
Designed multi-site ACI SDN networking solution for the cloud environment.
Configuration, Troubleshooting, Maintain and administer firewalls: Palo Alto, Juniper SRX, Cisco ASA/ FirePower, and Checkpoint Firewalls.
Experience working on Aruba wireless controllers. Configuring, Debugging and Testing of AP (802.11n/ac) and WLAN stations.
Knowledge on end point antivirus of Symantec Managed Services provide of the Firewalls.
Understanding of JUNOS platform and worked with IOS upgrade of Juniper devices
Experience on Juniper (JunOS) SRX240, SRX220, SRX550 series firewalls. Design and configuring of OSPF, BGP on Juniper Routers and SRX Firewalls.
Experience with converting Checkpoint VPN rules over to the Cisco ASA 5500 solution. Migration with both Checkpoint R77.30 and Cisco ASA VPN experience.
Established IPsec-VPN tunnels with Cisco ASA firewalls between branch offices and headquarters.
Worked on Load Balancer F5 LTM series like 6400, 6800, 8800 for the corporate applications and their availability. Experienced with Load Balancer F5 ASM and APM.
Hands on Experience configuring and testing F5 iRules using Browser (IE), HTTP watch.
Configure all Palo Alto Networks Firewall models (PA-2k, PA-3k, PA-5k etc.) as well as a centralized management system (Panorama) to manage large scale firewall deployments.
Knowledge on VxLAN and/or Application Centric Infrastructure (ACI).
Proficient in using Solar Winds Network Management tools like Network Performance Monitor (NPM), Net flow Traffic Analyzer, Network Configuration Manager (NCM) and Cisco Prime.
Expertise in document creation with technical configurations, billing, security standards design and network documentation using MS Visio and MS office.
Managing the DNS entries using Infoblox.
Experience on Web Filtering solutions from Blue Coat & endpoint security from McAfee.
Worked on Bluecoat proxy server, Tipping Point Intrusion Protection System management.
Experience on TCPDUMP, SPLUNK, Solar Winds Network Monitoring Tool, Wireshark Packet Sniffing tool, ticketing tools such as Remedy and Service Now.
TECHNICAL SKILLS:
Cisco Routers 1800, 2500, 2600, 2800, 3600, 3800, 3900, 7200, 7600, ASR 100X, ASR 9000
Cisco L2 & L3 Switches 2900, 3560, 3750, 4500, 4900, 6500, Nexus 1K/2K/5K/7K/9K
Juniper Platforms SRX, MX, EX series Routers and Switches
Networking Concepts Access-lists, Routing, Switching, Subnetting, Designing, CSU/DSU, IPSEC,
VLAN, VPN, MPLS.
LAN Technologies Ethernet, Fast Ethernet, and Gigabit, Ethernet, SMTP, VLAN, Inter-VLAN,
Routing, VTP, STP, RSTP, Port-channels,802.1Q.
WAN Technologies Frame Relay, ISDN, ATM, MPLS, leased lines, PPP, HDLC, T1/T3&SONET.
Firewall NAT/PAT, Ingress & Egress Firewall design, IDS/IPS, URL Filtering, SSL &
IPSEC VPNs Configuration, IKE, Cisco ASA, ACL, Checkpoint, Juniper, Palo Alto
OS products/Services DNS, DHCP, Windows […] XP), Linux.
Networking Protocols RIP, OSPF, EIGRP, IS-IS, BGP, STP, RSTP, VLANs, VTP, PAGP, LACP,
MPLS, HSRP, VRRP, GLBP, TACACS+, Radius, AAA, Route Filtering, Redistribution, Summarization, and Static Routing.
Various Features Services IOS and Features, IRDP, NAT, SNMP, SYSLOG, NTP, DHCP, CDP, TFTP and
FTP.
Network Management Tools Wireshark, Solar winds, SNMP, Cisco Works, HP Open View
Load Balancers F5 Networks (Big-IP) LTM, Cisco ACE 4710.
Security Protocols IKE, IPSEC, SSL-VPN
Languages C, Perl, Python, Linux
Operating Systems Windows (XP, Server Windows 7), MAC OS X, Linux.
CERTIFICATIONS:
CCNA (Cisco Certified Network Associate)
CCNP (Cisco Certified Network Professional)
PROFESSIONAL EXPERIENCE:
Mondelez International, East Hanover, NJ Apr 2016 - Present
Sr. Network Consultant
Responsibilities:
Key contributions include configuring and troubleshooting of complex LAN/WAN infrastructure that include routing protocols EIGRP, OSPF & BGP, HSRP, VRRP, DMVPN, ACL’s, Redistribution, DNS, and DHCP on Cisco Routers, Cisco Switches (Layer-3), Juniper Routers and Juniper (JunOS) Switches.
Experience in installation, configuration, maintenance and administration of Cisco Routers (CSR, ASR: 900, 1000, 9000; NCS:1000, 5000, 5500; ISR:1800, 1900, 2900, 3900, 4000), Cisco Switches (Catalyst: 2960, 3650, 3850,4500, 6500, 6800), Cisco Nexus (3k, 5k, 7k), Juniper (JunOS) Routers (MX:2000, 960, 480, 2400) and Switches (EX:2000, 3000, 4000; QFX 5000 series Switches).
Configured BGP, IP SLA or RPMs on Cisco and Juniper Devices to provide failover for all customers' services (Hosted PBX, SIP Trunks, Direct Internet, MPLS, etc.)
Experience on dealing with Cisco Application Centric Infrastructure (ACI) by integration hardware and software products as per network layout.
Configured VLANs with 802.1q tagging. Configured Trunk groups, ether channels (PAgP, LACP), and Spanning tree for creating Access/distribution and core layer switching architecture on Cisco Switches (Layer-2 and Layer-3) and Juniper Switches (JunOS).
Enabled STP attack mitigation (BPDU Guard, Root Guard), using MD5 authentication for VTP, disabling all unused ports and putting them in unused VLAN and ensuring DHCP attack prevention where needed. Experience in VPC, VDC, Fabric path and OTV configurations.
Configured, installed, & managed DHCP, DNS, & WINS servers.
Successful configuration of the Infoblox system to meet client needs also calls for an ability to quickly grasp client-specific current solutions for DNS, DHCP, and IPAM (DDI).
Aruba OS AP's, Aruba Instant Controller-less AP's, Aruba MeshOS multi-radio mesh platform.
Configured, Managed and Supported new and existing Wi-Fi network with Aruba networks Wi-Fi Controllers (WLC), access points and airwave software.
Hands on experience as well as competitive sales training on Aruba's full product line including; AP-100/110/175/130.
Planning designing, Installation, configuration and maintenance of 802.11a/b/g channels for Wi-Fi Networks and working on 2.4GHz and 5 GHz frequencies.
Experience on dealing with VoIP information deployment including troubleshooting protocols like Session Initiation Protocol (SIP). Assisted campus for VOIP network management and troubleshoot.
Experience working with design and deployment of MPLS Layer 3 VPN cloud, involving VRF, Route Distinguisher (RD), Route Target (RT), Label Distribution Protocol.
Convert Branch WAN links from TDM circuits to MPLS and to convert encryption from IPSec/GRE to Get VPN.
Configuring rules and Maintaining Cisco ASA/Firepower, Checkpoint, Juniper SRX and Palo Alto (PANOS) Firewalls & Analysis of firewall logs using various tools. Exposure to wild fire feature of Palo Alto.
Researched, designed, and replaced aging Checkpoint firewall architecture with new next generation Palo Alto appliances serving as firewalls and URL and application inspection.
Configured and maintained IPSEC and SSL VPN's on Palo Alto, Cisco ASA/FirePower, Checkpoint, and Juniper SRX Firewalls.
Configuration of Anti-Virus / URL filtering and Security Rules on Zone Based Palo alto firewall, Cisco ASA/FirePower, Checkpoint and Juniper SRX Firewalls.
Successfully installed Palo Alto (Application and URL filtering, Threat Prevention, Data Filtering) PA-3060 firewalls to protects Data Center.
Configuring, Installing, Administering and troubleshooting the Checkpoint, Palo Alto (PANOS), and Cisco ASA 5500 & Firepower firewall, Juniper (JunOS) SRX, Bluecoat ProxySG and Cisco IronPort.
Developed redundant load-balancing design based on four Juniper MX 960 and two SRX 5600 using route leaking and policy routing.
Managed and Implementing new Cisco FirePower 4000 and 9000 series and Sourcefire Cisco technology.
Cisco Firesight management tool to manage Cisco ASA with firepower, Sourcefire appliances.
Work on Checkpoint R77.30 Platform including Provider Smart Domain Manager. Worked on configuring, managing and supporting Checkpoint Gateways.
Working on the project of F5 LTM and GTM code upgrade project, doing couple of them every week.
Configured F5 GTM Wide IP, Pool Load Balancing Methods, probers and monitors recreating Http and https redirect VIP's to client from data servers.
Configuring and troubleshooting the VIP’s, Pools, iRules, Virtual Servers and Profiles on F5 BIG-IP LTM 10.x and 11.x version.
Monitor network performance, security of assets, and security of the network through Cisco ISE, Cisco ACS, and Cisco Prime Infrastructure.
Participated as a subject matter expert in a 2-person team that replaced 96 DOCSIS 2.0 CMTS with 60 DOCSIS 3.0 CMTS. Maintained several different types of Cisco CMTS including 10K, 7246 and 7223
Train Dell's client on usage and reporting of Tufin.
Worked on Riverbed Steelhead Appliance for WAN Optimization. Configured and administered Riverbed Steelhead.
Coordinate with Change Management & Risk management team to Evaluate performance metrics and KPI’s.
Experience in Solar Winds Network Performance Monitor, Network Configuration Manager, Network Traffic Analyzer (Net flow) and IP Address Manager. Worked on Orion for analysis and monitoring purposes.
Resolved system errors and crashes, disk space problems, huge file sizes, file system full errors, and Root password recover for in the UNIX servers.
Installed and configured of SDN and NFV Solutions (cloud-based solutions) and Integration of SDN and NFV Solutions.
Worked on SIEM tools such as Splunk, Solar Winds, Log Rhythm.
Managing SEP (Symantec Endpoint Protection) client - Install/removal.
Installing agents on DLP, enabling agents on all workstations and monitoring the endpoint system, scanning Linux and windows system. Tuning the policies on Symantec DLP.
Environment: Nexus (NX-OS) 7K/5K/2k, 2248/3560/5020/6509, Cisco (IOS) 3640/12000/7200/ 3845/3600/ 2800 routers, Juniper routers J2350, ACS, Cisco 3750/3550/3500/2960 switches, Routing Protocols (EIGRP, OSPF, BGP), Switching protocols (VTP, STP, GLBP, HSRP), F5 BIG-IP LTM, Cisco ISE server, Cisco ASA 5510 and Palo Alto.
Charter Communications, STL, MO Nov 2014 – Mar 2016
Network Security Engineer
Responsibilities:
Experience with working on Palo Alto Next-Generation firewalls security profiles ((Application and URL filtering, Threat Prevention, Data Filtering).) and Cisco ASA VPN.
Refining IPS Policy and Creating Rules according to the Security Standard on Palo Alto, Checkpoint R77.30 and Cisco ASA firewall.
Configuration and troubleshooting of Site to Site as well as Remote Access VPN on Cisco ASA, Palo Alto and Checkpoint firewalls.
Convert Checkpoint VPN rules over to the Cisco ASA 5500 solution, Migration with both Checkpoint and Cisco ASA VPN.
Experience in installing, configuring and troubleshooting of Palo Alto (2k,3k,5k), Checkpoint & Cisco ASA/Pix firewall.
Configuration of Application, Anti-Virus and URL filtering rules on Palo alto, Checkpoint and cisco ASA/Sourcefire firewall.
Worked on the migration of checkpoint to Palo alto firewalls. Worked with Palo Alto Panorama management tool to manage all Palo Alto firewall.
Checkpoint Firewall using the Smart Dashboard NGX R70 software and connecting via Smart Center management. Authentication is done using an RSA SecurID.
Cisco ASA Firewall troubleshooting and policy change requests for new IP segments that either come on line or that may have been altered during various planned network changes on the network.
Configuration and troubleshooting F5 LTM, GTM series like 6600, 6800 for different applications and monitoring the availability.
F5 Big-IP GTM Wide IP configuration. F5 Big-IP LTM VIP configuration with health check.
F5 Big-IP iRule programming and troubleshooting. Load balancing technology including algorithms and health check options. Provided Security using F5 BIG-IP APM.
Configuration and Troubleshooting on Juniper: EX 2300, EX-3300, EX-4300, and EX-4500, EX 6200 series Switches and Juniper: MX240, MX480, MX960, MX2008, MX2010 Series Routers for LAN /WAN connectivity.
Configuration and Troubleshooting on Cisco Catalyst 2960/3650/3850/4500/6500 Series Switches, Cisco ISR 1800/1800/1900/2900; ASR 900/1000; NCS 1000/5500/5000 series Routers and Cisco Nexus 3k/5k/7k for LAN /WAN connectivity.
Experienced in working with Cisco IOS, NX-OS, IOS-XR, Juniper JunOS and on testing network environment and troubleshooting.
Perform network engineering, design, configuration (WAN & LAN), & implementation.
Implementing, Monitoring, Troubleshooting and Convergence in Frame-Mode MPLS inside the core. Configuration of MPLS using OSPF as IGP.
Experience on dealing with Infoblox traffic control products to simplify DNS load balancing operations. Experience in installing and configuring DNS, DHCP server by using Infoblox.
Well Experienced in Configuring and Troubleshooting protocols OSPF, EIGRP, BGP, VRRP, MPLS, DMVPN, Frame-Relay, QoS, HSRP, GLBP, NAT, VPN, IPS/IDS, PAT, ICMP, IGMP, PPP, PAP, ACL’s, CHAP, DNS, DHCP and SNMP on Cisco routers, Cisco Switches (Layer-3), Juniper Routers and Juniper Switches(Laye-3).
Switching related tasks included Implementing, Configuration, and Troubleshooting VLANs, VTP, SVI, STP, MSTP, RSTP, Ether Channel (LACP & PAgP), Port Security on Cisco Switches and Juniper Switches. Implementation of l2 technology VPC and Fabric Path and OTV.
Support and Administration on Aruba Wi-Fi. Hands on experience in Aruba S2500 switches, Aruba 7200, 3600 series wireless controllers, Aruba IAP 105, Airwave Products and clear pass Servers.
Configured and troubleshooting Cisco unified UC560 manager VoIP systems
Worked on leading research and engineering team on rapid prototyping next generation cloud computing and software defined networking (SDN) products and services
Design network system architecture and implement the prototype of the system using SDN.
DDoS remediation using SDN techniques
Maintaining HIPPA, PCI, ISO, HITRUST, NIST, and SOX compliance/remediation, Threat Management and Scanning, Risk Analysis, Vulnerability Scanning, Network Forensics, Compliance.
Setup scripting of various aspects of Tufin management
Worked with corporate and local staff as subject-matter-expert to design and implement scalable core DOCSIS 3.0 and Digital Video Networks for Cox Systems.
Scripting in multiple languages on UNIX, LINUX using Python, Shell script.
Maintained and updated Active Directory for authentication purposes.
Implemented WAN Optimization using Riverbed Steelhead CMC and SMC Appliances.
Configured, tested and deployed Steelhead's Riverbed 5050H WAN Accelerator
Worked on SIEM for detecting malwares and threat analysis on web based url filtering.
Worked on SIEM tools like Symantec end to end point for threat analysis and malware detection.
Experience on dealing with Cisco ISE Secure Network Server 3515 and other network security products. Managed network devices using Cisco's Prime LMS and Prime Infrastructure.
Managed successful delivery of massive security response portfolio including Splunk, Cisco ISE.
Implemented and administered Websence Web Security Gateway for web content filtering and DLP.
Implement URL filtering requests in Bluecoat Proxy SG for website blocklist and whitelist purpose. Web Filtering solutions from Bluecoat/Websence/Cisco etc.
Perform upgrades, patching, troubleshooting, threat remediation on McAfee VirusScan Enterprise (VSE), McAfee Host Intrusion Prevention System (HIPS).
Experience on dealing with Cisco Application Centric Infrastructure (ACI) by integration hardware and software products as per network layout.
Monitoring the network traffic with the help of Qradar and Cisco IPS event viewer.
Co-ordinate with data center team for any kind new installations, remote support and device RMA's.
Installed Solar Winds Network Performance Monitor with emphasis on traffic analysis and virtualization management.
Environment: Cisco 3640/12000/7200/3845/3600/2800 routers, Cisco 3750/ 3550/3500/2960 switches, Routing Protocols (EIGRP, OSPF, BGP), Switching related (VTP, STP, GLBP, HSRP), and F5 BIG-IP LTM, Cisco ASA.
PetSmart, Philadelphia, PA Nov 2012 – Oct 2014
Network & Security Engineer
Responsibilities:
Configured, maintained, and troubleshoot on Cisco ISR 1800/1900/2900; ASR 900/1000 series Routers, Cisco Catalyst 2960/3650/3850/4500/6500 series Switches, Juniper EX series 2200/2300/3300/4550 Switches and Juniper MX 480/960/2020 series Routers.
Configured and troubleshoot VLAN, VTP, STP and Trunks Cisco Switches and Juniper Switches.
Experience in deploying EIGRP/BGP redistribution and the changing the metrics for the primary and backup paths for the packet prioritization and EIGRP tuning.
Configuration and Troubleshooting includes LAN/WAN, TCP/IP, EIGRP, OSPF, ACL’s, NAT, HSRP, VRRP, SNMP, Frame relay, BGP and VPN tunnel on GRE on Cisco Routers and Switches, and Juniper Routers and Switches.
Configured OSPF over frame relay networks for NBMA and point to multipoint strategies.
Experienced Implementing traffic engineering on top of an existing Multiprotocol Label Switching (MPLS) network using OSPF and BGP.
Experience in Design and implementation of MPLS VPN, QoS for the architecture. Providing daily network support for national wide area network consisting of MPLS, VPN and point-to point site.
Monitoring IP address blocks, Address inventory, DHCP scopes for all the inside network infrastructure through IPAM Infoblox.
Configuring, Troubleshooting, Designation and Implementation of Aruba Wireless solution including Aruba S3500 mobility switch, Aruba 105, 175, 225 Campus AP, Aruba 7210 & 7220 AP Controller.
Upgrading WAN link using PPP Multilink and by implementing Cisco WAAS.
Design, deployment and maintenance of enterprise networks and datacenters. Experience configuring Virtual Device Context (VDC) in Nexus 7010. Supported on Cisco Nexus 5000 and Nexus 7000 Series Switch fabric links in Data Center including VPC and VDC configurations.
Involved in designing data communications and networks utilizing that utilize a mixture of frame relay, point to point T1, T3 & OC3 lines.
Implemented core backbone network consisting of global point of presence (POP) in support of new iWAN network.
Configuring, Troubleshooting and Implementation of VPN-Sites to Site and Remote access using Palo Alto Firewalls, Juniper SRX and Checkpoint firewalls.
Configuring rules and Maintaining Palo Alto, Juniper SRX and Checkpoint Firewalls & Analysis of firewall logs. Palo Alto SSL decryption installation and configuration on PA 3060 and 5060.
Implementation, configuration and troubleshooting of Checkpoint Firewall R77.30. Worked on auditing and reviewing the rule sets on Palo Alto, Juniper SRX and Checkpoint R77.30 Gaia firewalls.
Installation of Palo Alto (Application and URL filtering, Threat Prevention, Data Filtering). Worked with Palo Alto Firewalls PA250, PA4050, PA3020 using Panorama servers, performing changes to monitor/block/allow the traffic on the Firewall.
Managed VPN, IPSec, Endpoint-Security, status policy, and Application control, IPS, Monitoring, Anti-Spam, Smart Provisioning and DLP using Checkpoint Firewalls.
Manage and lead in the architecture and migration to a next generation firewall platform from Cisco ASA and PIX to Juniper SRX3400, SRX650 and SRX 210 platforms in three data centers.
Daily Support of JUNIPER SRX 3400, SRX 610, SRX 210. - Develop rule sets, migrate Interfaces, HA Configurations, upgrade JUNOS, migration to Global Address Book. Performed daily log analyses.
Experience working with configuring virtual servers, nodes, creating pools in F5 BIG-IP LTM load balancer.
Executed various migration/upgrade projects across F5 and hands on with F5 BIGIP LTMs/EM.
Customer service representative responsible for all repairs in North and South America. Experience in Data over Cable System Interface Specification (DOCSIS) Certification for High-Speed Internet Access Applications.
Utilized SmartBits Packet Generator and Cisco CMTS (uBR7200) to perform DOCSIS 2.0 testing.
Designed, configured and administrated Silver-Peak WAN Optimization devices.
Deployed a Cisco Identity Services Engine (ISE) solution (wired, wireless, and VPN users) for a commercial client with converged access switches.
Installed Solar Winds Network Performance Monitor with emphasis on traffic analysis and virtualization management. Worked on SIEM tolls such as Splunk, Solar Winds, Log Rhythm.
Installation & configuration of Microsoft Proxy Server 2.0 & Bluecoat Proxy.
Designed and deployed Cisco ACS server solutions including TACACS+, High availability and integrating active directory.
Environment: Nexus 7000,7010 series, Cisco 3640/12000/7200/3845/3600/ 2800 routers, Cisco 3750/3550/ 3500/2960 switches, Routing Protocols (EIGRP, OSPF, BGP), Switching related (VTP, STP), F5 load balancer, Cisco ACS 4.x, Palo Alto firewall and checkpoint firewall.
Vixos Technologies Private Limited, Hyderabad, India Dec 2011 – Oct 2012
Data Network Engineer
Responsibilities:
Installation, configuration, and testing cisco equipment’s, IOS updates, and configuration changing, troubleshooting various LAN/WAN technologies issues for internal and external clients, monitoring network performance, defining network policies and procedures.
Worked on Cisco routers 7200, 3800, 2800 series and Cisco switches 4900, 2900 series.
Routers are configured with the routing protocols OSPF, EIGRP, RIP and BGP.
Worked on Cisco Layer 2 switches to configure and troubleshoot STP, VLAN, VTP, Trunking using dot1q. Extensive day to day work with Spanning Tree Protocol and multiple VLANs.
Port-fast, Uplink-fast and Backbone-fast are used to enable STP Enhancements to speed up the network convergence.
Creating Private VLANs & preventing VLAN hopping attacks & mitigating spoofing with snooping & IP source guard.
Implemented OSPF, BGP, static routes, EIGRP, RIP, IGRP, Full and fractional T1s, frame-relay, PPP, HDLC, NAT, PAT, HSRP. Hands on Experience working with security issue like applying ACL’s, configuring NAT and VPN.
WAN Infrastructure running OSPF & BGP as core routing protocol. Assisted in MPLS migrations, implemented a backup for the existing WAN connection using site-to-site IP sec VPN tunnels.
Manage and monitor the global OSPF, EIGRP and BGP routing environments as well as test and tune the failover of the global MPLS and VPN networks.
Installed and Configured, Documenting and Log analyzing the Cisco ASA and Juniper SRX firewall.
Configured remote access IPSEC VPN and site to site VPN on Cisco ASA and Juniper SRX Firewall. Configuration of OSPF, BGP on Juniper SRX Firewalls.
Maintained, upgraded, configured, and installed Cisco ASA 5510, 5520, & 5505 Firewalls from the CLI and ASDM. Backup and restore of checkpoint and Cisco ASA Firewall policies.
Troubleshoot and hands on experience on security related issues on Cisco ASA and Juniper SRX firewall.
Responsible for implementation of security policies on SRX 240, SRX 550 series of firewalls at branches and datacenter. Implemented antivirus and web filtering on Juniper SRX 240.
Implementation of name resolution using DNS in TCP/IP environment. Involved in troubleshooting of DNS, DHCP and other IP conflict problems. Configured FTP server for inside/outside users & vendors.
Deployed Cisco ACS using TACACS+ for Authentication, Authorization and Accounting of access to network devices. Configuration of AAA security on routers and network access servers using TACACS+.
Greatly enhanced network manageability using SNMP, NTP, SSH and Solar Winds. Used various scanning and sniffing tools like Wire-shark.
Environment: Cisco 4900/2900/7200/3800/3600/ 2800 routers, Cisco 3750/3550/3500/2960 switches, Routing Protocols (EIGRP, RIP, OSPF, BGP), Switching protocols (VTP, STP, HSRP, VLAN, Dot1q) and Cisco ASA 5510 firewall.
Techno Brain Ltd, Hyderabad, India May 2009 – Nov 2011
Network Support Consultant
Responsibilities:
Involved in Local Area Network (LAN) design, troubleshooting, and maintenance as per company’s requirements and Providing LAN support.
Configured Cisco Routers 7200,3800,2800,2600 series using RIP, OSPF, and EIGRP and configured Cisco Switches 4900,2900. Configured VLANS to isolate different departments.
Enabled STP Enhancements to speed up the network convergence that include Port-fast, Uplink-fast and Backbone-fast. LAN Configuration to different applications with RSTP, STP, VTP. Troubleshoot issues related to VLAN, VTP, HSRP failovers, related issues.
Network layer tasks included configuration of IP Addressing using FLSM, VLSM for all applications and servers throughout the company.
Configuring LAN/WAN, TCP/IP, RIP, EIGRP, OSPF, BGP, Frame Relay, ISDN, PPP, HDLC, Network Troubleshooting using CLI Show commands, PING, Trace route, telnet.
Responsible for configuring HSRP between multilayered switch networks.
Troubleshooting and diagnosis of network problems using IP tools like Ping, Trace route.
Configured BGP for CE to PE route advertisement inside the lab environment.
Involved in troubleshooting of DNS, DHCP and other IP conflict problems. Implementation of name resolution using WINS&DNS in TCP/IP environment.
Configuring static NAT, dynamic NAT, inside Global Address Overloading, TCP overload distribution, Overlapping Address Translation (PAT).
Involved in SNMP Network management. Worked on various scanning and Sniffing tools like Wire-shark. Greatly enhanced network manageability using SNMP, NTP, SSH and Solar Winds.
Redistributing from OSPF to RIP and vice versa by implementing hub and spoke topology with a Frame Relay Switch in between. Troubleshoot TCP/IP problems; troubleshoot connectivity issues in multi-protocol Ethernet, Environment.
Configured Cisco IOS Feature Set, NAT and Simple Network Management Protocol (SNMP) for Network Security implementation.
Used TFTP server to backup Cisco configuration files. Performed scheduled Virus Checks & Updates on all Servers & Desktops.
Environment: Cisco 7200,3800,2800,2600 series routers, Cisco 4900,2900 series switches, Routing Protocols (EIGRP, RIP, OSPF, BGP), and Switching protocols (VTP, STP, HSRP).
Education:
B. Tech in Electronics and Communication Engineering.