Network Engineer Manager
Resume:
Suresh T
Sr. Network Engineer
Email id: ******.*********@*****.***
Summary
* **** ***** ** ********** in the area of Networking, Security, Administration, AWS cloud services and Network support.
Extensive work experience on Cisco Routers, Cisco Switches, Load Balancers & Cisco Firewalls.
Configuration and implementation of BIG-IP load balancer.
Hands on Experience configuring and testing F5 iRules using Browser (IE), HTTP watch.
Working with F5 Load Balancers and their implementation in various networks.
Experience on F5 LTMs & GTMs to improve web application delivery speed and replication through and between distributed global data centers.
Worked on F5 LTM series like 1600, 6400 and Virions for the corporate applications and their availability.
Worked on F5 Enterprise Manager 3.1 version to manage multiple F5 LTM devices from single-pane view.
Has expertise to work in Cisco/Checkpoint/Juniper/F5/Riverbed Products.
Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500/PIX series security appliance.
Worked on Panorama firewall management tool which provides centralized monitoring and management of multiple Palo Alto devices from single window.
Knowledge & Experience on FortiGate Firewall Appliances.
Experience in configuration of Checkpoint 600, 1100,4800,12000 appliances.
Migration of Palo Alto firewalls from ASA.
Experience in configuration of Palo alto firewalls like PA2020, PA3050, PA5050
Experience with devices Palo Alto Network firewalls such as security NAT, Threat prevention URL filtering.
Implemented duo security two factor authentications for remote access VPN on Cisco ASA.
Worked on various blades like IDS/IPS, URLfiltering on CiscoASA.
Experience in Networking Area especially TCP/IP, Routing, Switching.
Expertise in deployment and duration of routing protocols such as OSPF, EIGRP and BGP.
Experience with network monitoring and performance tools such as Solar Winds, Fore scout and Wire shark.
Experience with Solar Winds Orion monitoring.
Strong hands on experience implementing and troubleshooting Switch technologies such as STP, RSTP, MSTP and VTP along with troubleshooting of inter-VLAN routing.
Implemented redundancy with HSRP, VRRP, GLBP, Ether channel technology.
Experience in working with Cisco 2500, 2600, 2800, 3600, 3800, 7200 series Routers.
Strong hands on experience on configuring Cisco Catalyst 2900,2960, 3560, 3750, 4500, 4900, 6500 series and VMWARE 7000, 5000 and2000 switches.
Working Experience on routing protocols for voice: VoIP, IPSEC, Multicast, MPLS, DSCP/QoS, Cisco IOS and Wireless security protocols (I.E. 802.1x, EAP, WPA2).
Configuration, managing and implementation the Linux/Unix and Sun Solaris Server in Network.
Experience in Wireless LAN (IEEE 802.11) and deployment of light weight access point.
Migrated and implemented new solution with Cisco ASA firewall series 5505,5510, 5540.
Experience in configuration of AAA with ACS protocols TACACS+, RADIUS and LDAP.
Hands on experience on Up-gradation of Cisco IOS & Firmware of different Cisco devices & modules.
Worked with Cisco ISE to identify threats in the network for rapid containment and remediation.
Shared the data with integrated partner solutions to accelerate the capabilities to identify and remediate threats using Cisco ISE.
Experience in installation, configuration and Administration of windows server 2003/2008, Active Directory, Linux, OS under various LAN and WAN environment.
Hands on experience in installing and configuring DNS and DHCP server.
Experienced in trouble-shooting both connectivity issues and hardware problems on Cisco based networks.
Strong problem-solving skills, extremely organized, detailed and deadline oriented.
Adapt in preparing Technical Documentation and presentations using Microsoft VISIO/Office.
CERTIFICATIONS
●CISCO CERTIFIED NETWORK ASSOCIATE (CCNA)
●CISCO CERTIFIED NETWORK PROFESSIONAL (CCNP)
●PALO ALTO NETWORKS ACE CERTIFICATION
TECHNICAL SKILLS:
Routers:
Cisco 1900, 2600, 2800, 2900, 3600, 3800, 3900, 7200, 7600
Juniper M7i, J230, M320
Switches:
Cisco Catalyst 3550, 3750, 4500, 4900, 6500
sq. 2248, 5548 and 7010
Dell S4810, S60, S55
Firewalls & Load Balancers:
Cisco ASA 5540 series, Checkpoint, Palo alto PA2020, PA3050, PA5050, IPSEC and SSL VPN, IPS/IDS, IOS Firewall features, DMZ set up, F-5 LTM.
Routing:
OSPF, EIGRP, BGP, RIP, PBR, Route Filtering, Redistribution, Summarization, Static routing.
Switching:
VLANs, Dot1Q, VTP, STP, RSTP, VLAN Maps, HSRP, GLBP, CEF, DCEF, Port Security.
LAN/WAN Technologies:
Ethernet, Frame relay, MPLS, HDLC, PPP, T1, T3, OC Standard, DSL, ISDN.
Protocols:
IP, TCP, UDP, ICMP, NAT, DHCP, SNMP, IPSEC, SSL, HTTP, SSH.
AAA Architecture:
TACACS+, RADIUS, Cisco ACS
Network Monitoring and Management Tools:
Solar winds, Wire Shark, SNMP, Elastic Search, Log stash and Kibana and What Sup Gold
Operating Systems:
Windows Server 2008 R2/ 2003, Windows XP Professional, Red hat Linux, UNIX Sun Solaris 9/8
PROFESSIONAL EXPERIENCE:
Publix, Lakeland, FL Dec 16 - Present
Sr. Network Engineer
Responsibilities:
Working experience with deployment of Pa-5000 series Palo Alto firewalls.
Pushed Policies from Panorama to Firewall in Palo Alto, and also Configured and Maintained IPSEC and SSL VPN's on Palo Alto Firewalls.
Implemented zone based firewalling and security rules on the Palo Alto Firewall.
Configured and maintained IPSEC and SSL VPN's on Palo Alto Firewalls.
Worked on firewall technologies including general configuration, optimization, security policy, rules creation and modification of Palo Alto.
Installing and Configuring Palo Alto Pa-500 series and Pa-2000 series firewalls using Panorama.
Implemented firewall rules in Palo Alto firewalls using Panorama for one of the environment.
Deployed & Implemented rules and created various zones in Palo Alto firewalls like PA2020, PA5020, PA5050.
Implemented the numerous firewalls rules on the Palo Alto with both Hide Nat and Static NAT.
Monitoring Traffic and Connections in Palo Alto and ASA Firewall. Backup and restore of Palo Alto Firewall policies.
Good experience working on Citrix Net scalar 1000v. Implemented it along with F5 load balancers, Configured and troubleshooter for issues
Worked on F5 LTMs & GTMs to improve web application delivery speed and replication through and between distributed global data centers.
Used F5 GTM for external DNS resolutions configured all listeners and created all zone files, A record and Names.
Performed upgrading of load balancers from Citrix to F5 Big IP load balancer to improved functionality, reliability and scalability in the system.
Worked on F5 Enterprise Manager 3.1 version to manage multiple F5 LTM devices from single-pane view.
Implemented a highly available and scalable (load balanced) web proxy solution utilizing F5 Big IP, Smooth wall proxy(VMware) and Active Directory together with Checkpoint firewall.
Experience in configuring HSRP and redistribution between routing protocols troubleshooting them.
Experience on Panorama firewall management tool which provides centralized monitoring and management of multiple Palo Alto devices from single window.
Using Solar Winds Orion platform to monitor networking and systems management products.
Worked with IDS/IPS to identify threats in the network for rapid containment and remediation.
Shared the data with integrated partner solutions to accelerate the capabilities to identify and remediate threats using Cisco ISE.
Establishing VPN tunnels using IPSec encryption standards and configured and implemented site-to-site VPN, Remote VPN.
Configured and resolved various OSPF issues in an OSPF multi area environment.
Performed OSPF, BGP, DHCP Profile, HSRP, IPV6, Bundle Ethernet implementation on ASR 9K redundant pair.
Configured and managed VLANs, 802.1Q Trunk, RPVST+, Inter-VLAN routing, HSRP and LAN security for Layer-2 and Layer-3 switching domains as per the organization's requirement plan.
Configuration and maintenance of Cisco ASR routers such as ASR 1013, 1009-X, 1006, 1006-X,1004, 1002-HX, 1002-X, 1001-X routers.
Experienced in installation, configuration and maintenance of Cisco ASR 9K, 7200, 3900, 2800, 2600, 2500 and 1800 series Router / Cisco Nexus 7010, 5548, 2148 Catalyst Cisco 6500 (sup 720), 4500 (SUP 6), 3750, 2950 series Switches.
Experience configuring Virtual Device Context in Nexus 7k, 5k and 2k.
Decommissioning the Nexus 7K supervisors and Deploying latest software upgrades on Nexus 7K.
Troubleshooting the various issues while upgrading and installing the new supervisors on Nexus 7K
Well Experienced in configuring protocols HSRP, GLBP, VRRP, ICMP, IGMP, PPP, HDLC, PAP, CHAP, and SNMP
Hands On experience Cisco IOS/IOS-XR/NX-OS, Juniper JUNOS for configuration & troubleshooting of routing protocols: MP-BGP, OSPF, LDP, EIGRP, RIP, BGP v4, MPLS.
Configured HSRP and VLAN trucking 802.1Q, VLAN Routing on Catalyst 6500 switches.
Experience in working with Cisco Nexus 5000 series switches for data center.
Configuring/Troubleshoot issues with the following types of routers Cisco (7200, 6500, 4500, 1700, 2600 and 3500 series), to include: bridging, switching, routing, Ethernet, NAT, and DHCP, as well as assisting with customer LAN /MAN, router/firewalls.
Configuring HSRP between VLANs, Configuring Ether-Channels, Port Channel on 6500 catalyst
Environment: Cisco routers, switches, ASA Firewalls, Palo alto Firewalls, OSPF, EIGRP, BGP routing protocols, VLANs, F5 load balancers, checkpoint, wireless access points, IP, TCP, UDP, ICMP, NAT, DHCP, SNMP, IPSEC, SSL, HTTP, SSH protocols.
Barracuda Networks, Campbell, CA Jan 16- Nov16
Sr. Network Engineer
Responsibilities:
Experience in installation, configuration and maintenance of Cisco ASR 9K, 7200, 3900, 2800, 2600, 2500 and 1800 series Router / Cisco Nexus 7010, 5548, 2148 Catalyst Cisco 6500 (sup 720), 4500 (SUP 6), 3750, 2950 series Switches.
Optimized performance of the WAN network consisting of Cisco 3550/4500/6500 switches by configuring VLANs.
Performed OSPF, BGP, DHCP Profile, HSRP, IPV6, Bundle Ethernet implementation on ASR 9K redundant pair.
Involved in the configuration & troubleshooting of routing protocols: MP-BGP, OSPF, LDP, EIGRP, RIP, BGP v4. Configured IP access filter policies.
Configuring VLAN, Spanning tree, VSTP, SNMP on EX series switches
Implementing MPLS VPN for the Branch locations.
Responsible for turning up BGP peering and customer sessions, as well as debugging BGP routing problems.
Performed OSPF, BGP, DHCP Profile, HSRP, IPV6, IPV4 Bundle Ethernet implementation on ASR 9K redundant pair.
Experience with configuring Nexus 2000 Fabric Extender (FEX) which acts as a remote line card (module) for the Nexus 5000.
Experience in working with Cisco Nexus Switches and Virtual Port Channel configuration.
Worked on Datacenter Migration project to migrate the existing 6509, 4509 devices to a Nexus 7010, 5010 and Nexus 2248 FEX based solution.
Configuring, deploying &upgrading the Cisco, Nexus 5000 and Nexus 7000Series Switch fabric links.
Developed and executed datacenter migration plan for all managed security services such as firewalls, IDS, VPNs and authentication servers with no impact on production environments.
Worked with Cisco ISE to identify threats in the network for rapid containment and remediation.
Shared the data with integrated partner solutions to accelerate the capabilities to identify and remediate threats using Cisco ISE.
Configuring rules and maintaining Palo Alto Firewalls & analysis of Firewall logs using various tools.
Creating object, groups, updating access-lists on Palo Alto, apply static, hide NAT using smart dashboard.
Configured and maintained IPSEC and SSL VPN's on Palo Alto Firewalls.
Experience in managing large scale firewall deployments using centralized management system Panorama.
Experience in configuring and maintaining firewall security policies including NAT, VPN, ACL, IDS/IPS.
Experience in adding Rules and Monitoring Checkpoint Firewall traffic through Smart Dashboard and Smart View Tracker applications.
Hands on experience on all software blades of Check Point firewall.
Using Smart Update, User Management and Authentication in Check Point Firewall.
Configuration and troubleshooting of Site to Site as well as Remote Access VPN on Check Point firewalls.
Handled deployment and management Checkpoint GAIA, R75, R71, R65 and Cisco ASA 5500 series.
Implemented the numerous firewalls rules on the Checkpoint with both Hide Nat and Static NAT.
Provided application level redundancy and availability by deploying F5 load balancers LTM.
Worked extensively on Controlling the Traffic, creating the groups, SSL offload and SSL certification on F5 load balancer.
Worked on F5 load Balancer, configured Virtual servers, pool, pool members, worked on load balancing methods for LTM
Environment: Cisco routers, switches, ASA Firewalls, OSPF, EIGRP, BGP routing protocols, VLANs, F5 load balancers, checkpoint, Palo alto, wireless access points, IP, TCP, UDP, ICMP, NAT, DHCP, SNMP, IPSEC, SSL, HTTP, SSH protocols.
Lochbridge, Lansing, MI Oct 14 – Jan 16
Network Engineer
Responsibilities:
Configuring, deploying & upgrading the NX-OS operation system in the data center
Replacing the 3750X switch with a stack of 4507 switches and creating Vlans for Production and Wireless whose traffic was segregated by access-lists to restrict traffic flow between them.
Experience working with using EIGRP/OSPF as an internal Company routing protocol and Using BGP as a WAN protocol towards Service Provider.
Involved in design, testing and implementation of firm's consolidation of Data centers with new MPLS/VPN and VPLS infrastructures.
Implementation of TCP/IP & related Services-DHCP/DNS/HOSTS/SMTP.
Experience in routing protocols like OSPF, BGP, and standby protocols like HSRP and VRR.
Worked Experience in configuring and troubleshooting OSPF, EIGRP and BGP on Cisco routers
Working experience in configuring and troubleshooting Ether-channel, STP, RSTP, VLAN on Cisco Switches
Hands on Experience with Cisco Wireless Controllers 5500's and 2500's and coming to access points, worked on 3700's, 3500's and 1142 access points.
Actively participated in upgrading fast Ethernet, Layer 3 switched/routed LAN infrastructure from Cisco 3640 to Cisco 2811.
Provided Daily network support for national wide area network consisting of MPLS, VPN and point-to-point site.
Experience working with Cisco Nexus 2148 Fabric Extender and Nexus 5000 series to provide a Flexible Access Solution for datacenter access architecture.
Experience configuring Virtual Device Context in Nexus 7010
Troubleshooting the issue using Wireshark if an individual is not able to connect to the installed Aironet Access points.
Deployed the Cisco 3500 Access Points using Cisco Wireless controllers 5500 and 2500 and WCS System.
Experience with Monitoring wireless networks and performing site surveys.
Experience in Wireless LAN (IEEE 802.11) and deployment of light weight access point.
Troubleshoot and hands on experience on security related issues on Checkpoint IDS/IPS.
Setup and maintained Check Point security policies including NAT, VPN and Secure Remote access.
Experienced in configuring, troubleshooting, maintaining and support Check point Firewalls, Provider-1. Responsible for any changes in Firewall rule base, review Firewall logs, provide daily support for any Firewall related issues.
Configured, monitored and troubleshoot Cisco's ASA 5500 security appliances,
Created and tested Cisco router and switching operations using OSPF routing protocol, ASA Firewalls, and MPLS switching for stable VPNs.
Experienced in configuring Cisco ASA in different modes and implementing dynamic routing protocols.
Monitored security and audit logs via Solar winds LEM and also manage the cisco asa firepower firewall using FMC.
Configured and tweak the URL Filtering on Cisco ASA with Fire POWER.
Configured ACL's, NAT's and VPN tunnels on Cisco ASA devices.
Experience in Solar winds Network Performance Monitor, Network Configuration Manager, Network Traffic Analyzer (Net flow) and IP Address Manager.
Implemented Solar winds groups as required for monitoring
Hands on experience with packet sniffer, TCP DUMP and Wire shark for packet monitoring.
Environment: Cisco routers, switches, ASA Firewalls, OSPF, EIGRP, BGP protocols, VLANS, wire shark, IP, TCP, UDP, NAT, DHCP, HTTP, SSH.
KPG, Century, KS Jan 13 – Sep 14
Network Engineer
Responsibilities:
Worked on Cisco Layer 2 switches (spanning tree, VLAN).
WAN Infrastructure running OSPF & BGP as core routing protocol.
Work on different connection medium like Fiber and Copper Connectivity.
In-depth expertise in the implementation of analysis, optimization, troubleshooting and documentation of LAN/WAN networking systems.
Planning and configuring the routing protocols such as OSPF, RIP, and Static Routing on the routers.
Implemented the concept of Route Redistribution between different routing protocols.
Experience in deploying EIGRP/BGP redistribution and the changing the metrics for the primary and backup paths for the packet prioritization and EIGRP tuning
Experience with converting WAN routing from EIGRP/OSPF to BGP (OSPF is used for local routing only) which also involved converting from Point to point circuits to MPLS circuits.
Supported nationwide LAN infrastructure consisting of Cisco 4510 and catalyst 6513.
Performed Installation, configuring, troubleshoot Proxy, DHCP, DNS, VPN, and Protocols, Sub netting.
Deployed the switches in high availability configuration with HSRP.
Configured UDLD, port-fast, uplink fast and other spanning tree features.
Troubleshoot network problems using Packet Analysis tools like Ethereal.
DNS administration like adding/modifying/deleting IP and DNS assignments using log messages.
Planning and configuring the entire IP addressing plan for the clients' network.
Upgrading IOS on routers and switches.
Upgraded all Cisco devices with new Cisco IOS.
Experienced in Troubleshooting clientless VPN issues.
Designed, configured, implemented VPN Tunnels using IPSec encryption standards and implementing site-to-site VPN, Remote Access VPN on ASA Firewall.
Implemented failover (Active-standby and Active-Active) and clustering with ipv4 on ASA Firewall.
Configured and implemented dynamic routing protocols, ACL and Object Groups on Cisco ASA Firewall.
Involved in the redistribution into OSPF on the core ASA firewall.
Environment: Cisco routers, switches, ASA Firewalls, OSPF, EIGRP routing protocols, VLANS, IP, TCP protocols.
HCL, India Mar 11 – Dec 12
Network Engineer
Responsibilities:
Responsible for the configuration, implementation and operation of Cisco 3745 routers, Cisco 6509 and 3560 L2/L3 switches
Removed Cisco 3600 and 2600 series routers and Cisco 2900 series switches from the current infrastructure and replaced them with the Cisco 6509 or 3560 L2/L3 switches.
Configured RSTP, MST and used VTP with 802.1q trunk encapsulation. Provided port binding and port security wherever required. Provided router redundancy through HSRP.
Configured ether channels using PAgP and LACP.
Designed ACLs, VLANs, troubleshooting IP addressing issues and taking back up of the configurations on switches and routers.
Provided testing for network connectivity before and after install/upgrade
Switching related tasks included implementing VLANS and configuring ISL trunk on Fast-Ethernet and Gigabit Ethernet channel between switches.
Experience in Cisco switches and routers: Physical cabling, IP addressing, Wide Area Network configurations (Frame-relay and ATM).
Configuring & managed around 500+ Network &Security Devices that includes Cisco Routers & Switches, Nexus Switches, Juniper and Palo Alto Firewalls, F5 BigIP Load balancers, Blue Coat Proxies and Riverbed WAN Optimizers
Performed troubleshooting, while maintaining trouble ticket tracking, following internal/external
Escalation procedures and customer notifications.
Configured Cisco Routers for OSPF, IGRP, RIPv2, EIGRP, Static and default route.
Worked on HSRP and GLBP for first hop redundancy and load balancing.
Prepare, update, and maintain technical and logistical network documentation
Environment: Cisco routers, switches, ASA Firewalls, OSPF, EIGRP routing protocols, VLANS, IP, TCP protocols.
Mindtree, India Jun 09 – Feb 11
Network Engineer
Responsibilities:
Configured EIGRP for Lab Environment.
Involved in designing and implementing QOS and policy map to 2800 series routers for all the branches.
Migration of RIP V2 to OSPF routing protocols.
Implemented VOIP and QoS policies for initial deployment of IPT. This involved both switch and router configuration and ran over a frame-relay WAN.
Implemented ISL and 802.1Q for communicating through VTP.
Working with Client teams to find out requirements for their Networks.
Designing solutions for frozen requirements using Cisco Routers and Switches.
Deploying the network infrastructure to meet the requirements.
Created VLAN and Inter-VLAN routing with Multilayer Switching.
Providing technical consultancy for better application response using QoS
Monitor performance of network and servers to identify potential problems and bottleneck.
Performed RIP, OSPF, BGP EIGRP routing protocol administration.
Installed wireless access points (WAP) at various locations in the company.
Maintained redundancy on Cisco 2600, 2800 and 3600routers with HSRP.
Troubleshoot network problems using Packet Analysis tools like Ethereal.
Real time monitoring and network management using Cisco Works LMS.
Provided technical support on hardware and software related issues to remote production sites.
Involved in configuring IP Quality of service (QoS)
Ensuring optimal traffic routing, analyzing and QoS for the network.
Troubleshoot connectivity issues involving VLAN’s, OSPF, QoS etc.
Environment: Cisco routers, switches, ASA Firewalls, OSPF, EIGRP routing protocols, VLANS, Cisco work, WAP.
Contact this candidate