Arun Kumar
Sr Network Engineer
****.*.***************@*****.***
Professional Summary:
* ***** ** ** ********** in design, development, implementation, troubleshooting and maintenance of complex Network & Security devices, Network Security, Linux Kernel Programming.
In-depth Cisco technology experience/knowledge in design, implementation, administration and support.
Strong hands on experience in installing, configuring, and troubleshooting of Cisco 7600, 7200, 3800, 3600, 2800, 2600, 2500 and 1800 series Routers, Cisco Catalyst 6500, 4500, 3750, 2950 and 3500XL series switches.
Advanced knowledge of OSI model, TCP/IP, Internet technologies, system security, firewall infrastructure, network architecture and Cisco network routing / switching (Layer 2 and 3) experience, including LAN and WAN, design and implementation which includes Layer 1 to Layer 7 experience.
Expertise in network protocols, Firewalls and Communication Network design.
Experience with Troubleshooting tools for example protocol analyzers, load generators & network traces.
Working knowledge of frame relay, MPLS services, OSPF, BGP and EIGRP routing protocols, NATing, sub-netting, also including DNS, WINS, LDAP, DHCP, http, HTML, HTTPS, TCP/IP, UDP, SNMP, OSPF, RIP, IPSEC, PPTP, VLAN, STP (Spanning tree Protocol), RTSP & Multicasting protocols
Corporate trainer for certification like CCNA, CCNP, Hardware & Networking.
Also prepared documentation for various Vlans and Voice subnetworks and worked on Visio for the same.
Configuring rules and Maintaining Palo Alto Firewalls & Analysis of firewall logs using various tools.
Experience working with Cisco Nexus 2148 Fabric Extender and Nexus 5000 series to provide a Flexible Access Solution for a datacenter access architecture Expertise in installing, configuring and troubleshooting Juniper EX Switches (EX2200, EX2500, EX3200, EX4200, EX4500, EX8200 series
Enterprise Routing experience using protocols RIP v1 & 2, EIGRP, OSPF and BGP
Expertise in installing, configuring and troubleshooting Juniper Routers (E,J,M and T-series)
Experience with design and implementation of Virtual Switching System (VSS)
Implementing 3750 Stackable switches using Cisco Stack Wise technology. Experience to review and evaluate current and future design issues as required maintaining network integrity, efficient data flow.
Excellent Verbal, written communication skills and Interpersonal skills with ability to work with large teams as well as independently with minimum supervision & Team Player
Proficient with network hardware and technologies including routers, switches, firewalls, Ethernet, Fast Ethernet, Gigabit Ethernet, Frame Relay and Wireless devices.
Hands-on experience in configuring Cisco routers to perform functions at the Access, Distribution, and Core layers.
Proficient with Cisco ASA 5500 series firewall.
Hands on experience on Zone Based firewall and Proventia MX 1004 firewalls.
Good domain knowledge in Linux source code 2.6x & Shell scripting
Network security including NAT/PAT, ACL, VPN Concentrator.
Well Experienced in configuring protocols HSRP, GLBP, VRRP, ICMP, IGMP, PPP, HDLC, PAP, CHAP, and SNMP.
Designing, Implementing and Troubleshooting Cisco Routers (2800,2900,3900,3800,7600) using Static, RIP, IGRP, OSPF, EIGRP & experience with Checkpoint, Cisco PIX & ASA devices
Well experienced in configuring gateway redundancy protocols like HSRP, GLBP, PPP and SNMP.
Juniper: EX-2200, EX-4200, EX-4500, MX-480, M Series, SRX210, SRX240
Strong Hands on experience in installing, configuring and troubleshooting of Cisco 12404,12406,7600, 7200, 3800, 3600, 2800, 2600, 2500 and 1800 series Routers, Cisco Catalyst 6500, 4500, 3750, 2950 and 3500XL series switches.
Worked on F5 LTM, GTM series like 6400 & 6800 remotely under the enterprise network.
Worked on Ticket tool BMC Remedy 8 and Data Center tool Nlyte.
Worked on F5 LTM/GTM, BIG-IP, load balancing, iRules, and WAN acceleration.
Experience with Juniper SRX 240 Firewalls
Network Security – Anomaly Detection in Attack Prevention System, Network and Host IPS/IDS, Cisco PIX firewall, Vulnerability scanning, Penetration testing, Buffer Overflows, Cross Site Scripting,
Security consultant for Bombay Stock Exchange, India and Kotak Securities Pvt. Ltd and many more, involving web application testing, Penetration testing, Session Management
Technical Skills:
Routers
Cisco 7600, 7200, 3800, 3600, 2900, 2800, 2600,1800,1700
Switches
Nexus 2K/5K/7K, Cisco Catalyst 2900, 3500,3700,6500, 4500, 3850,3560, 3750, 2960
Load Balancer
Cisco CSM, F5 Networks (Big-IP) LTM and GTM
WAN Optimization
Riverbed Steelhead Appliance, PPP Multilink, Riverbed
Routing
OSPF, EIGRP, BGP, RIP-2, PBR, Route Filtering, Redistribution, Summarization, Static Routing
Switching
VLAN, VTP, STP, PVST+, RPVST+, Inter VLAN routing & Multi-Layer Switching, Multicast Operations, Layer 3 Switches, Ether channels, Transparent Bridging
LAN
Ethernet, Fast Ethernet, Gigabit Ethernet,Token Ring, Emulation
WAN
Leased lines 64k - 155Mb (PPP / HDLC), Channelized links (E1/T1/E3/T3), Fiber Optic Circuits, Frame Relay, ISDN, MPLS, Riverbed.
Wireless
Cisco 4400 Wireless Controller (WLC) and 1100, 1200 series Access Points
Firewalls
Cisco PIX, ASA, Juniper Netscreen, Palo Alto, SRX, Checkpoint
Features & Services
IOS and Features, HSRP, GLBP, IRDP, NAT, SNMP, SYSLOG, NTP, DHCP, CDP, DNS, TFTP and FTP Management
AAA Architecture
TACACS+, RADIUS, Cisco ACS
Network Monitor Tool
MRTG, Netbrain & Solarwinds & Cisco Prime Infrastructure,Opnet.
Protocol Analyzer
Wireshark
Ticketing tool & Data Center Tool
BMC Remedy 8 & Nlyte
Security
Cisco ASA, Check point, Juniper SRX, Palo Alto
Operating System:
DOS, Windows (95, 98, NT/2000, XP, Vista/7/8/10), Cisco IOS, Pan-OS
Hitachi Data Systems, Denver, CO May 2017 – Present
Sr. Network Engineer
Responsibilities:
Experience working in Data Centre environment, configuration changes as per the needs of company.
Daily responsibilities included monitoring remote site using network management tools, assisted in design guidance for infrastructure upgrade & help LAN administrator with backbone connection and connectivity issue Other responsibilities included documentation and support other teams.
Deploying and decommissioning Cisco switches and their respective software upgrades.
Experience on open DCIM tool which is to monitor the Data center environment and provides complete physical inventory (asset tracking) of the data center
Experience with design and implementation of Data center migration.
Assisted in building site-to-site IP sec VPN tunnels.
Hands on experience of data center environment and implementation of VPC, VDC and Fabric path on Nexus 9K, 7K, 6K, & 2K Switches
Providing Technical Support and solutions for Network Problems.
Creating and managing user accounts to all team members in partner environment.
Responsible for service request tickets generated by the helpdesk in all phases such as troubleshooting, maintenance, upgrades, patches, fixes, and all around technical support.
Worked on SNOW ticketing tool for handling different priority level tickets.
Experience configuring VLAN’s, WLAN’s (SSID), WLC’s and WAP’s.
Hands on experience in configuring and maintaining WLC-5508, Lightweight Access point LAP and LWAPP.
Implementing and configuring F5 LTM's for VIP's and Virtual servers as per application and business requirements.
Modify and implement ACL changes on Client routers and assist the user when there are any issues using Network Authority. Authentication to this is also done through TACACS.
Supporting more than 150 Site to Site IPSec based VPN Tunnels for all B2B and 3rd party communications including Federal govt and other Banks/financial institutes.
Involved in complete LAN, WAN, Extranet redesign (including IP address planning, designing, installation, pre-configuration of network equipment, testing, and maintenance) in both Campus and Branch networks.
Configuring A records, PTR records, C records and DNS related requests on IPAM.
Packet capturing, troubleshooting on network problems with Wireshark, identifying and fixing problems
Implementing, configuring, and troubleshooting various routing protocols like RIP, EIGRP, OSPF, BGP etc.
Experience in performing IOS upgrades in Cisco 2900/ 3500/ 4500 series switches and 2500/ 2600/ 3600 routers.
Implemented changes and upgrades to network equipment and perform quality assurance reviews of those upgrades. Reviewed all changes to network configuration for technical accuracy and impact.
Environment: Cisco 4500/3850/3560/3750/3550/3500/2960 6500 switches and Cisco 2921 /12000 /7200/ 3845/2800 routers, Cisco Nexus 7K/5K, Cisco ASA 500, WLC 5508, F5 BIGIP LTM, Cisco WAAS, RIP, OSPF, BGP, EIGRP, LAN, WAN, VPN, HSRP
T-Mobile, Parsippany NJ Jul 2015 – April 2017
Sr. Network Engineer
Responsibilities:
Worked on migration of existing PIX firewall to ASA firewall, PIX OS upgrade from 6.3 to 7.0.
Worked extensively on Cisco ASA 5500(5510/5540) Series, experience with convert PIX rules over to the Cisco ASA solution.
Deploying and decommission of VLANs on core Nexus 7000 and its downstream devices.
Assisted in MPLS migrations, implemented a backup for the existing WAN connection using site-to-site IP sec VPN tunnels.
Involved in the deployment of content delivery networks (CDN).
Switches Replace branch hardware with new 2851 routers and 2960 switches.
Conversions to BGP WAN routing. Which will be to convert WAN routing from OSPF to BGP (OSPF is used for local routing only) which involves new wan links.
Convert Branch WAN links from TDM circuits to MPLS and to convert encryption from IPsec/GRE to GetVPN.
Configuring HSRP between VLANs, Configuring Ether-Channels, and Port Channel on 6500 catalyst.
To secure configurations of load balancing in F5, SSL/VPN connections, Troubleshooting CISCO ASA firewalls, and related network security measures.
Worked on F5 LTM, GTM series like 6400, 6800, 8800 for the corporate applications and their availability.
Involved in the configuration & troubleshooting of routing protocols: MP-BGP, OSPF, LDP, EIGRP, RIP, BGP v4, Spanning Tree, 802.1q. Configured IP access filter policies.
Involved in configuring and implementing Checkpoint VSX firewalls.
Performing the ACL requests change by collecting source and destination information from them.
Supported wireless networking team working on Aruba wireless.
Maintained complex LAN/WAN networks with several VLANS and provided support for routing protocols and provided secure sessions over internet using IPsec and SSL encryption.
Performing troubleshooting on slow network connectivity issues, routing issues that involves OSPF, BGP and identifying the root cause of the issues.
Supporting EIGRP and BGP based on the network by resolving level 2 & 3 problems of internal teams & external customers of all locations.
Configuration and support of Juniper Netscreen firewalls.
Knowledge of Juniper environment including SRX/Junos Space.
Configured and set up of Juniper SRX firewalls for policy mgmt. and Juniper SSL VPN's
Design and Implement DMZ for FTP, Web and Mail Servers with CISCO PIX 506, PIX515
Building the VPN tunnel and VPN encryption.
Involved in Configuration of Access lists (ACL) on ASA firewall for the proper network routing for the B2B network connectivity.
Environment: Cisco Catalyst 2960/3750/4500/6500 Series Switches, Cisco 2800/2900/3000 Series ISR’s and Cisco 3640/12000 /7200/3845/3600/2800 routers, Cisco Nexus 7K, Cisco ASA 5500, Checkpoint, juniper SRX,windows server 2003/2008, F5 BIGIP LTM/GTM, ACL, RIP, OSPF, BGP, EIGRP, LAN, WAN, VPN, HSRP.
HSA Bank, Milwaukee, WI Jan 2014 – Jun 2015
Sr. Data Network Engineer
Responsibilities:
Worked on F5 LTM/GTM, BIG-IP, load balancing, iRules, and WAN acceleration.
Knowledge of F5 Best Practices, used iHealth, SSL offloading, Route Domains, GTM Sync Group.
Managing and configuring Aruba Wireless devices and Cisco Access Points.
Hands on experience with trouble shooting and configuring terminal servers.
Providing Technical Support and solutions for Network Problems.
Creating and managing user accounts to all team members in partner environment.
Experience in Cisco switches and routers: IP addressing, WAN configurations.
LAN cabling in compliance with CAT6 standards; Installing new hardware and swap out hardware physically.
Hands on using crimp tools, punchdown tools to punch cables to the 110 data/voice blocks.
Communicating and escalating tickets with service providers for network outage issues.
Managing the DNS entries using InfoBlox.
Monitoring Network infrastructure using SNMP tools HP NNM, Solar-winds and Opnet.
Escalation of procedures and customer notifications.
Experience in troubleshooting VLAN, STP (Spanning tree protocol), & Switch Trunk and IP subnet issues.
Worked on Physical site; latency and slowness issues in transmitting results within internal quest network.
Experience working with Nexus 7010, 5020, 2148, 2248 devices.
Experience updating IOS on devices.
Configuring and implementing F5 BIG-IP Load balancer.
Experience working with Nexus 7010, 5020, 2148, 2248 devices.
Design and configuring of OSPF, BGP on Juniper Routers and SRX Firewalls.
Configuring ASA Firewall and accept/reject rules for network traffic.
Designing, implementing LAN/WAN configurations on Cisco 5K, catalyst 6500 switches.
Upgrading WAN link using PPP Multilink and by implementing Cisco WAAS
Installing, configuring Cisco Catalyst switches 6500, 3750 & 3550 series and configured routing protocol OSPF, EIGRP, BGP with Access Control lists implemented as per Network Design.
Expertise in maintenance of layer2 switching tasks which advocate VLAN, VTP, STP, RSTP, PVST, RPVST, configuring of ether channel with LACP and PAGP along with troubleshooting of inter-VLAN routing.
Performing network monitoring, providing analysis using various tools like WireShark, Solarwinds etc.
Environment: Cisco 2948/3560/4500/3560/3750/3550/3500/2960 6500 switches and Cisco 3640 /12000 /7200/ 3845/3600/2800 routers, Cisco Nexus 7K/5K, Cisco ASA 500, F5 BIGIP LTM,Juniper, Cisco WAAS, RIP, OSPF, BGP, EIGRP, LAN, WAN, VPN, HSRP
General Electric, San Ramon, CA Oct 2012 – Jan 2014
Network Engineer
Responsibilities:
Assisted in troubleshooting LAN connectivity and hardware issues in the network of 100 hosts.
Studied and analyzed client requirements to provide solutions for network design, configuration, administration, and security.
Maintained redundancy on Cisco 2600, 2800 and 3600 router with HSRP.
Created a backup and recovery policy for software application and verified peripherals are working properly.
Monitor performance of network and servers to identify potential problems and bottleneck.
Performed RIP & OSPF routing protocol administration.
Interacted with support services to reduce the downtime on leased lines.
Troubleshoot problems on a day to day basis & provide solutions that would fix the problems within their Network.
Worked with Palo Alto Panorama management tool to manage all Palo Alto firewall and network from central location.
Configured OSPF over frame relay networks for NBMA and point to multipoint strategies
Implementing traffic engineering on top of an existing Multiprotocol Label Switching (MPLS) network using Frame Relay and Open Shortest Path First (OSPF).
Provided redundancy in a multi homed Border Gateway Protocol (BGP) network by tunings AS-path.
Cisco ASA/Checkpoint Firewall troubleshooting and policy change requests for new IP segments that either come on line or that may have been altered during various planned network changes on the network.
Configuration and troubleshooting of Cisco catalyst 6509 switch with supervisor 2T cards.
Experience with implementing and maintaining network monitoring systems (Cisco works and HP Open view) and experience with developing complex network design documentation and presentations using VISIO
Estimated Project costs and created documentation for project funding approvals.
Performed and presented network analysis as a part of network migration. Involved in knowledge transfer to vendors and provided them network support as required
Worked as a single point of contact for the whole migration
Configuration and maintenance of EIGRP and BGP network on router 7200 and 6500 MLS.
Configuration and maintenance of 3750 stack and 6500 VSS for improved efficiency of the data plane.
Configuration and management of NEXUS network in the existing network infrastructure.
Environment: Cisco 3750/3550/3500/2960 switches and Cisco 3640/12000 /7200/3845/3600/2800 routers, Cisco ASA5510, Checkpoint, Palo Alto, Cisco Nexus7K/5K, 2248/3560/5020/6509, ASA, Checkpoint, LAN, OSPF, BGP, RIP, EIGRP
Capgemini, India Mar 2010 – Aug 2012
Network Engineer
Responsibilities:
Responsible for network design, bandwidth allocation, IP address allocation, supervising installation, configuration and maintenance on major network technologies. Worked with various internal organizations during pre/post deployment phase of different type of circuits.
Providing Tier II support in the provisioning, end-to-end test and turn-ups and maintenance of the major accounts. Optimizing Network by continuously and extensively working with customer to upgrade and optimize network and Circuit Move Add Changes including detailed design documentation.
Performed Layer I, II and III troubleshooting, while maintaining trouble ticket tracking, following internal/external escalation procedures and customer notifications. Configured Cisco Routers for BGP, OSPF, RIP, RIPv2, EIGRP, Static and default route in a VPN environment using MPLS.
Implemented and troubleshooted the MPLS network.
Provided Network Support in the designing and implementation of Point to Point over T1s Frame Relay, DSL over ATM and IP over Frame Relay and Gigabit Ethernet.
Schedule conference bridges for escalated issues, used troubleshoot ticketing system such as BMC remedy and on - call support for severity one network outages.
Documentation of network resources, systems, peripherals, procedures and policies for optimization of IT resources and security.
Network consists of Heavy Cisco equipment such as: Cisco 356*-****-**** switches, Cisco 650*-****-**** series Layer 3 switches, Cisco 382*-****-**** series routers.
Hands on experience and good working knowledge with Checkpoint Firewall policy provisioning.
Worked on Firewall Administration, Rule Analysis, and Rule Modification.
Configuring and implementing F5 BIG-IP, LTM, GTM load balancers to maintain global and local traffic
Hands on experience with Nexus Switches 2K, 5K and 7K.
Worked on F5 BIG-IP LTM 8900, configured profiles, provided and ensured high availability.
Worked on F5 and CSM load balancers deploying many load balancing techniques with multiple components for efficient performance.
Environment: Cisco 3560/2950/2924/6509/6513/5500 switches, Cisco 3825/3640/7200 routers, VPN, BGP, OSPF, RIP, EIGRP, F5 BIG-IP, LTM, GTM, Nexus Switches 5K/7K, VLAN, VTP, Checkpoint
Progress Software, India April 2009 – Feb 2010
Jr. Network Engineer
Responsibilities:
Installed Hard disks, Floppy drives, CD Drives, Sound Blaster cards, CPU, Memory, Power supply unit, Network card, Video graphics card, Hard disk controller card on PC systems.
Troubleshooting of personal computers. On line Support to customers concerning their computer problems.
Involved in troubleshooting of DNS, DHCP and other IP conflict problems.
Responsible for reporting day to day operations of all associated hubs, routers, bridges, gateways and related equipment.
Configured BGP for CE to PE route advertisement inside the lab environment
Monitoring the network, troubleshooting network problems, implementing changes, communicating and working closely with vendors, customers, system administrators.
Spearheaded meetings & discussions with team members regarding network optimization and regarding BGP issues.
Plans, coordinates, implements and supports the LAN / WAN hardware, software and Internet /Intranet integration network connectivity, diagnose network failures and resolve any problems.
Responsible for LAN and internet connection file and print server.
Maintained and installed new internet connections for customers.
Validate existing infrastructure and recommend new network designs.
Created scripts to monitor CPU/Memory on various low end routers in the network.
Installed and maintained local printer as well as network printers.
Handled Tech Support as it relates to LAN & WAN systems.
Handled installation of Windows NT Server and Windows NT Workstations.
Maintained and installed new internet connections for customers.
Used various scanning and sniffing tools like Wire-shark
Environment: Cisco catalyst 2960/4550/5550 switch, Cisco 2880/3700/3880 router, LAN, MAN, BGP and DHCP.