Harikanth Reddy
Certified Network Engineer
ac4mcn@r.postjobfree.com
PROFESSIONAL SUMMARY:
Cisco Certified Network Associate (CCNA) with 7+ years of experience in the industry, which includes expertise in the areas of Routing, Switching and Network Security.
Extensive exposure to Network troubleshooting, maintaining Network devices, implementing and executing Network Projects under ITIL Standards.
Hands on experience on configuring and troubleshooting various Cisco, Palo Alto, Checkpoint Firewalls and various security products.
Hands on Experience on F5 Load balancing.
Implement, configure, maintain VMWare ESX hosts, Linux and Windows VM’s, AWS and Azure Cloud infrastructure
Routing & switching
Strong hands on experience in installing, troubleshooting, configuring of Cisco ASR, 7200, 3900, 3800, 2900, 2800, and 1800 series Routers, Cisco Catalyst 6500, 4500, 3750, 2950 and 3500XL series switches.
Worked on Cisco 7200, 3800, 3600, 2800, 2600, 1800 series Router and Cisco 1200,2900, 3500, 4500, 5500, 6500 series switches
Hands on experience working with CiscoNexus7K, 5K&2KSwitches.
Experience in troubleshooting, implementing, optimizing and testing of static and dynamic routing protocols such as EIGRP, OSPF, BGP,EIGRP, IGRP, and RIPv1 & 2, IS-IS
ability to interpret and resolve complex route table problems.
Implementation traffic filters on Cisco routes using Standard, extended Access list.
Expert Level Knowledge about TCP/IP and OSI models.
In-depth knowledge and hands-on experience on IP Addressing, Sub netting, VLSM and ARP, reverse &proxy ARP, Ping Concepts.
Experience in working with video from end-point in the network to the backend.
Knowledge of implementing and troubleshooting complex layer 2 technologies such as VLAN Trunks, VTP Ether channel, STP, RSTP and MST.
Experience in working with Windows power shell scripting to maintain and administrating server environments.
Experience with Layer 2 and Layer 3 protocols like LDP, RSVP/ TE, QOS, COS L2 VPWS and VPLS, FRR.
Experience in configuring HSRP and redistribution between routing protocols troubleshooting them.
Experience on Virtual Private Network (VPN) for operating Network and Data Center.
Experience with Internet/Intranet Networking Protocols and Services
Designed, Configured and successfully implemented Port Security for Source based MAC Filtering, HSRP, VRRP, GLBP, and Ether Channel for network redundancy and load-balancing.
In-depth expertise in the analysis, implementation, troubleshooting & documentation of LAN/WAN architecture and good experience on IP services
Hands-on experience with Ether Channel, Spanning Tree, Trunking, ACLs, Syslog
Security:
Extensive working & configuring experience of firewalls like Cisco ASA 5510, 5520, 5500 and checkpoint R 75 firewalls, PA-200, 500 Series firewalls.
Troubleshoot and Worked with Security issues related to Cisco ASA Checkpoint, IDS/IPS and Palo Alto firewalls.
Responsible for Checkpoints and Cisco ASA firewall administration across global networks.
Working with Checkpoint Support for resolving escalated issues.
Experience the planning, design, implementation, organization and operation of Palo Alto Firewalls.
Configuring rules and maintaining Palo Alto Firewalls & Analysis of Firewall logs.
Management, monitoring, and reporting of Palo Alto firewalls
Extensive Knowledge troubleshooting network and firewall problems, specifically Palo Alto and Cisco ASA’s.
Familiar with Palo Alto software and firmware upgrades
Experience in handling Firewall Tickets with customer on call
F5
Hands on experience on F5 BIGIP LTM 11.2, F5 BIGIP GTM, F5 BIGIP APM and F5 BIGIP ASM.
Experience deploying BIG-IP F5LTM Load Balancers for load balancing and traffic management of business application
Experience in working with F5 Devices Big IQ and Big IP – LTM, GTM, AFM, ASM versions
Extensive Knowledge in configuring and troubleshooting as well as creating Virtual Servers, Nodes, Pools and I Rule son BIG-IP F5 load balancer LTM for load balancing and traffic management
Experience in F5 Load Balancer: Managing F5 LTM for Application Load Balancing.
Configure Amazon Web Services F5 ASM to protect block chain cloud applications
Creating I Rules for various redirection as well as security,
Experience in migrating cisco Any Connect to f5
Experience in building and troubleshooting F5 SSL VPN
Wireless
Proficiency with Cisco Wireless Controllers, and access points.
Extensive understanding in working with WLAN controllers using standard 802.11 a/b/g/n/ac protocols.
involved with troubleshooting wireless access points.
Network Monitoring
Successfully Recommended and deployed Orion – Solar Winds, IP Mon as Network Monitoring & Health Statistics tools which has in built feature like SNMP, Alerts, Events, Syslog etc.
Experience with Bluecoat to work on [DDI] DHCP, DNS, & IP Address Management in large enterprise organizations.
Other Interpersonal skills:
Ability to endure stress and meet the challenging requirements of the field
Ability to provide leadership and training to newly joined teammates on technical aspects of establishing and improvising IT Infrastructure network
Excellent communication and written skills that help delegate and coordinate activities within my team and with outsiders
In depth knowledge of providing troubleshooting services for software issues
Experience in documenting the network diagrams using Visio
Able to develop and maintain system and security documentation
Highly motivated with the ability to work independently or as an integral part of a team and Committed to highest levels of professional.
Excellent qualities such as Teamwork, Negotiation, Analysis and Communication.
TECHNICAL SKILLS
Cisco Routers:
12000, 10000, 7600, 7200, 3800, 3600, 2800, 2600, 2500, 1800 series. ASR, 7200, 3900, 3800, 2900, 2800, and 1800
Cisco Switches:
1200, 2900, 3500, 3750, 4500,,4900, 5500,6500, series switches
Cisco Catalyst 6500, 4500, 3750, 2950 and 3500XL
Cisco Nexus 7K, 5K & 2K Switches
Juniper Routers:
T640, M10i and M7i
Juniper Switches:
Ex4200, Ex4500, Ex6611
Routing Protocols:
RIP (v1, v2), IGRP, EIGRP, OSPF, and BGP, MPLS, VSS, HSRP,
L2 Protocols:
VTP, STP, RSTP, MSTP, ISL, 802.1q.
Switching:
VLANs, Private VLANs, Ether-Channel
Network Management:
Cisco Works
Servers:
FTP, DHCP, DNS, HTTP, Syslog, TFTP
Testing Tools:
IXIA
F5:
Big IQ, Big IP 12250, 10200, 4200, 7250 – LTM, AFM, APM
Load Balancers:
Cisco CSM, F5 Networks (Big-IP) LTM 8900, Cisco ACE 4710
Operating Systems:
Windows (98, ME, 2000, XP, Server 2003/2008, Vista, Windows 7), Linux
Firewalls
Cisco ASA - ASA5500, ASA5540, cisco Any Connect, FWSM Version 4 cisco Viper, F5 – 12250, 10200, 7250, 4200
PA-200, 500, 3000 Series Firewall
Checkpoint:R55 up to R70 version, R 75 firewalls.
Network Management
Cisco Works, Cisco Prime 3.1, Stat Seeker, Solar winds, Riverbed, Wireshark, Blue cat, VISIO.
Firewall Log Monitoring
Syslog, QRader
Ticketing
RT & S3
WORK EXPERIENCE:
Client: Bank of America July 2016 - Current
Role: Network Engineer /F5
Responsibilities
Evaluate the security stance of state and local and wide area networks
Recommend changes to network devices and firewalls to improve security protection and
Coordinate solutions and resolve resource competition issues.
Implement security technologies for the protection of information resources, and implement security measures for the protection of ETS customer data.
Recommend solutions regarding issues of data level security in support of ETS customer business objectives,
Extensive Knowledge on the implementation of Cisco ASA 5500 series firewalls.
Responsible for Cisco ASA firewall administration, Rule Analysis, Rule Modification
Configuring and troubleshooting site-to-site IPSEC VPN tunnels using cisco Viper and worked ACI
Providing assistance in setting up Remote ASA for Agencies
Understand different types of NAT on Cisco ASA firewalls and apply them
Configure and administer Cisco ASA Firewalls and use command line CLI, ASDM for day-to-day administration.
Working closely with customer issues related to firewall.
Working with different teams to gather info for the new request and troubleshoot for any connectivity issues by capturing traffic using TCPDUMP.
Working on Software Infrastructure Lifecycle replacement Project
Worked on sync Config and involved in data Center design
Configuring and implementing F5 BIG-IP, LTM, GTM load balancers to maintain global and local traffic.
Remediation of firewall rules from Cisco ASA firewalls to F5 and their implementation.
Reviewing the firewalls rules with the customer
Experience in building new Access policy, Rule List, Forwarding Virtual Server, VRF, VLAN, Self IP’s, Routes and Virtual Server on F5 required for the Migration Process
Experience in migrating cisco Any Connect VPN to F5.
Experience in building and troubleshooting F5 VPN
N-able (Solarwinds) Technologies Specialist Server, 2X & Terminal Server, Foundry/Brokade
Server Irons and ADX series
Building AAA - LDAP server, SSL Profile, Access Profile, Connectivity Profile, Lease Pool, Network Access List, Web top, Redirect Virtual server
Creating APM Security profile for provide access to the application based AAA /LDAP functionality, Creating ASM security policy for all critical web application for identify all web attack and create the necessary action plan etc
Creating iRules for various redirection as well as security& worked on ACI Implementation
Ticketing: working on Firewall tickets
Worked with SQL for data.
Addition/ Deletion of Firewall Rules, Reviewing and Processing the ticket, Firewall Clean up,Virtual Servers, Certificate Creation/Renewals, Troubleshooting.
Experience in working with F5 Devices Big IQ and Big IP – LTM, AFM versions
Extensive Knowledge in configuring and troubleshooting as well as creating Virtual Servers, Nodes, Pools and iRules on BIG-IP F5 loads balancer LTM for load balancing and traffic management.
Configuring and managing F5 ASM (Application security manager). Develop security policies
Configuring and managing F5 ASM (Application security manager). Develop security policies
Worked complex Irules for APM and
Decommission the old boxes
Configuring and installing distribution switches such Cisco 6807,
Strong knowledge of various routing protocols like OSPF, and BGP.
Hands-on experience in configuring ASR9k which is compatible with IOS XR software. Responsible for configuring and maintaining the network running on OSPF, and BGP at layer 3.
Working on MPLS protocol to speed up the network traffic flow.
Maintenance and troubleshooting of connectivity problems.
Working knowledge of Cisco VRFs, VLANs.
Design, implement and operational support of routing/switching protocols in complex environments including BGP, OSPF, EIGRP, STP, 802.1q, etc.
F5 Big IP GTM Wide IP configuration. F5 Big IP VIP configuration with health check.
F5Big iRule programming and troubleshooting..
Working with field engineers to support remote installations
Upgrading the IOS of the devices
Handling high priority service-disruptions tickets
Documenting the migration process, agency architecture diagrams, firewall documentation using Visio
Environment:F5: BIG-IP LTM,BIG-IP APM, DPA, ACI, BIG-IP AFM, Big IP 12.1.1, Big IP 11.6.0, Linux, MySQL, ASA Firewall, ASA5500, ASA5540, cisco Any Connect, FWSM Version 4 cisco Viper, F5 – 12250, 10200, 7250, 4200
Client: American Airlines Sep 2014 – July 2016
Role: Network Engineer/F5
Responsibilities:
Routing Protocols, Networking Layer1, 2, 3Switching concepts, LAN/WAN technologies, Wireless Networking, TCP/IP concepts.
Managed network device configurations, logical names and addresses, network design and implementation.
Team member of Configuration of Cisco 7206 router with VPN and Configuration of Catalyst switches.
Configuration 7609, 7606 with OSPF and catalyst 6505, 4500, 3550switches with various VLAN.
Configuration and troubleshooting of Cisco 2500, 2600, 3000, 6500, 7500, 7200 Series routers.
Creating iRules for various redirection as well as security.
Create and test Cisco router and switching operations using OSPF routing protocol, ASA Firewalls, and MPLS switching for stable VPNs. Cisco CLI, Cisco works, Network Security, Network Analysis Tools.
Configured Cisco IOS-XR Engineer Feature Set, NAT and Simple Network Management Protocol (SNMP) for Network Security implementation.
Worked Cloud and worked on GUI ACI
Planning and implementation of OSPF protocol and internet IBGP and EBGP peering relationship with other ISP.
Configuring of IP Allocation and sub netting for all applications and servers and other needs throughout company using FLSM, VLSM addressing.
Worked on Fabric for ACI implementation and supported second level support to team.
Use and maintain routing protocols EIGRP, OSPF and BGP on the Routers in the network & also worked on BGP Route Reflectors, Confederations.
Applied iRules such as cookie persistency, SSL termination and SSL initiation, redirection of URL from http to https for application specific e-commerce technology
Created F5 ASM WAF virtual labs and tested certain changes before going live
Provision the F5 Application Security Manager from scratch
Tune F5 ASM layer 7 firewall security policies
Write F5 ASM Run book
Provide F5 ASM training to engineering staff
Modified router configurations with additional VLANs, port assignment.
Configured Routing protocols such as RIP, OSPF, EIGRP, MPLS static routing and policy base routing.
Configured HSRP and VLAN trucking 802.1Q, VLAN Routing on Catalyst6500switches.
Provided Technical Support and solutions for Network Problems.
Designed User Interface using CISCO CVP call flow designer
Dedicatedly Improved OSPF convergence by controlling SPF algorithm.
Configuration and troubleshooting link state protocols like OSPF in single area and multiple areas
Highly skilled in TCP/IP tool like TELNET for remote login to the routers and SSH for secure login.
Responsible for Checkpoint firewall management and operations across our global networks.
Extensively worked on Checkpoint Support for resolving escalated issues.
Extensively worked on Nexus 5k and 7k, troubleshooting and configuration.
Worked on AWS and Azure Cloud infrastructure
Configured and managed Cisco IDS/IPS, Cisco secure Intrusion Prevention System (IPS/IDS)
Having Data Center Design Experience, installing and Configuring Network Devices in a Data Center including patching the cables in the Patch Panel.
Design and implemented network provided Load Balancing towards access layer from core layer using F5 Network Load Balancers.
Upgraded load balancers from Rad ware to F5 Big IP v9 which improved functionality and scalability in the enterprise.
Involving in planning, design, implementation, organization and operation of Palo Alto Firewalls.
Assisting in troubleshooting network and firewall problems, specifically Palo Alto and Cisco ASA’s.
Management, monitoring, and reporting of Palo Alto firewalls
Familiar with Palo Alto software and firmware upgrades
Responsible for Checkpoint firewall management and operations across our global networks.
Extensively worked on Checkpoint Support for resolving escalated issues.
Worked on UTB and Wireless Networks Configuration, maintenance, management and Data Backup.
Selected to assist Personal Wireless Communications work Center during critical manning shortage to provide expertise and assist with repairs of pagers, cell phones, and radio equipment.
Experience converting Cat OS to Cisco IOS-XR on the Cisco 6500 switches
Managing a TACACS server for VPN user authentication and network devices authentication
Planned, tested and evaluated various equipment, IOSs and procedures for use within the Network security infrastructure, upgraded IOS, troubleshoot network outages.
Participated in all technical aspects of Internet security Service projects including, short and long-term planning, implementation, project management and operations support as required.
Validate existing infrastructure and recommend new network designs.
Estimated Project costs and created documentation for project funding approvals.
Managed various teams involved in site surveys, cabling specifications, Network equipment installation and configuration.
Client: Forsythe, Chicago, IL Feb 2014 to Aug 2014
Role: Network Engineer/F5
Responsibilities:
Configured Routing protocols such as RIP, OSPF, EIGRP, static routing and policy based routing.
Team member of Configuration of Cisco 7206 router with VPN and Configuration of Catalyst switches.
Installed and maintained Cisco and Load Balancer and documentation.
Worked on Cloud, AWK with team
Moved all SSL Certs from outdated Brokade Load Balancers to F5 BigIP LTM/AFM (Local Traffic Manager/Global Traffic Manager)
Wrote irules as per client requirements Give direction to app owners regarding their app's F5 ASM on boarding
Worked on ACI implementation and support for other projects
Design, implementation, and maintenance of complex VoIP call control, call routing and applications and services
Troubleshoot T1 PRI issues and VoIP call setup & audio quality issues involving Cisco voice gateways in environments ranging from small business to enterprise and service provider
Hands on Experience testing iRules using Browser (IE), HTTP watch
Proficient in Cisco IOS-XR Engineer for configuration & troubleshooting of routing protocols: MP-BGP, OSPF, LDP, EIGRP, RIP, BGP v4, MPLS
Configuration 7609, 7606 with OSPF and catalyst6505, 4500, 3550 switches with various VLAN.
Create and test Cisco router and switching operations using OSPF routing protocol, ASA Firewalls, and MPLS switching for stable VPNs.
Worked on Cisco's Application Centric Infrastructure (ACI) implementation (Nexus 9K, APIC)
Configuration and troubleshooting link state protocols like OSPF in single area and multiple areas.
Managed the F5 Big IP GTM/LTM appliances to include writing iRules, SSL offload and everyday task of creating WIP and VIPs .
Good knowledge on implementing ACI
Redesign of Internet connectivity infrastructure for meeting bandwidth requirements.
Configured HSRP and VLAN trucking 802.1Q, VLAN Routing on Catalyst 6500 switches.
Experience with configuringNexus2000 Fabric Extender (FEX) which acts as a remote line card (module) for the Nexus 5000.
Experience configuring VPC, VDC and ISSU Software upgrades on CiscoNexus7010
Cisco IOS and Cisco Cat OS configuration and backups, Uploading and download IOS and Cat OS using X Modem, TFTP and FTP protocols
Optimized performance of the WAN network consisting of Cisco switches by configuring VLANs.
Design, and configuring of OSPF, BGP on Juniper Routers and SRX Firewall.
Give direction to app owners regarding their app's F5 ASM on boarding
Direct application testing for comprehensive policy learning
Open F5 ASM vendor support cases
Communicate with application owners and project management regarding ASM issues.
Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500/PIX security appliance, Failover DMZ zoning& configuring VLANs/routing/ NAT with the firewalls as per the design.
Upgraded, installed and supported Cisco Wireless controllers (Cisco 7500, 8500).
Prepared action plans and schedules to identify specific wireless problems and to solve the problem, limit the number of contacts to be made.
Configured VLANs with 802.1q tagging. Configured Trunk groups, ether channels, and Spanning tree for creating Access/distribution and core layer switching architecture.
Configured BPDU Guard, port-fast, up link fast and other spanning tree features.
Configuration and troubleshooting of Cisco 2500, 2600, 3000, 6500, 7500, 7200 Series routers.
Providing Technical Support and solutions for Network Problems.
Implementing NAT solutions on wan applications.
Planned, tested and evaluated various equipment's, systems, IOSs and procedures for use within the Network / security infrastructure.
Continually monitor, assess and improve network security, test and implement new security technologies.
Experience in HSRP standby trouble shooting & Experience in configuring & upgrading of Cisco IOS-XR
Configuring and implementing F5 BIG-IP, LTM, GTM load balancers to maintain global and local traffic.
Participate in all technical aspects of LAN, WAN, VPN and security Internet Service projects including, short and long-term planning, implementation, project management and operations
Worked on Cisco Routers, Active /Passive Hubs, Switches, Cisco PIX Firewall, Cisco ASA, NOKIA Firewalls, Nortel VPN Concentrators TCP/IP, NAT and Checkpoint ESX/GSX firewall.
Having Data Center Design Experience, installing and Configuring Network Devices in a Data Center including patching the cables in the Patch Panel. Design and implemented network infrastructure.
Client: 711, NEC America /Retail Project Nov 2012 to Dec 2013
Role: Network Engineer
Responsibilities:
Working with Network Design and implementation teams on various projects across related to Brach, Campus and Data Center.
Implemented and maintained various WAN equipment such as Cisco 2800, 3800 and 7200 routers, ASR 1006.
Experience working with Cisco 3750, 4948, 2811, 2600, 7200, 6500, series switches. Designing and deployment of Partner IPSEC VPN tunnels.
Involved in the configuration & troubleshooting of routing protocols: MP-BGP, OSPF, LDP, EIGRP, RIP, BGP v4. Configured IP access filter policies.
Implemented AWS and Azure Cloud infrastructure
Deploying and decommissioning Cisco switches and their respective software upgrades.
Experience with manipulating various BGP attributes such as Local Preference, MED, Extended Communities, Route-Reflector clusters, Route-maps and route policy implementation.
Work closely with management to complete security related deliverables
Update F5 ASM security signatures
Implemented variety of VoIP PBX, including Open PBX, TrixBox, Elastix and Call Weaver
Deploying and commission of core ASR 1K, Nexus 7K, 5K and its downstream devices.
Experience configuring Virtual Device Context in Nexus 7010
Experience with converting Cisco 6500 IOS to Cisco Nexus NX-OS in the data Center environment.
Provided Wireless Tier1, II support for our Federal customers.
Experience configuring VPC, VDC and ISSU Software upgrades on Cisco Nexus 7010.
Experience in Configuring, upgrading and verifying the NX-OS operation system.
Performed OSPF, BGP, DHCP Profile, HSRP, IPV6, Bundle Ethernet implementation on ASR 9K redundant pair.
Design, implementation and operational support of routing/switching protocols in complex environments including BGP, OSPF, EIGRP, Spanning Tree, 802.1q, etc.
Performing troubleshooting on slow network connectivity issues, routing issues that involves OSPF, BGP and identifying the root cause of the issues.
Maintain Change Management for Enterprise VoIP Platform
Configure Corporate, Wireless and Lab Devices which includes Bandwidth Upgrade, Adding New Devices, Decom the Devices, Testing (Pilot)
Implemented DHCP, DNS, IPAM configuration on the servers to allocate, resolute the ip addresses from Subnet.
Troubleshoot the Network Issues onsite and remotely depending on the severity of the issues.
Client: Orange eye technologies Sep-2011- Oct 2012
Role: Network Administrator
Responsibilities:
Configured STP for loop prevention and VTP for Inter-VLAN Routing
Implemented VTP and Trunking protocols (802.1q and ISL) on 3560, 3750 and 4500series Cisco Catalyst switches
Configured RIP and EIGRP on 2600, 2900 and 3600series Cisco routers
Performed troubleshooting of connectivity problems using PING, and Trace route
Planned and implemented Sub netting, VLSM to conserve IP addresses
Involved in troubleshooting of DNS, DHCP and other IP conflict problems
Done troubleshooting of TCP/IP problems and connectivity issues in multi-protocol Ethernet environment
Provided on-call support for installation and troubleshooting of the configuration issues
Configured Standard, Extended, and Named Access Lists to allow users all over the company to access different applications and blocking others
Provided Technical support for improvement, up gradation, and expansion of the existing network architecture
EDUCATION / PROFESSIONAL CERTIFICATIONS
Bachelors in computer science engineering
Jawaharlal technological university, Hyderabad, INDIA
CCNA: Cisco certified Network Associate
F5 certified