Sai Kiran
Sr. Network Engineer
***.*********@*****.*** 908-***-****
Summary:
* ***** ** ********** ** the area of Networking, Security, Administration, AWS cloud services and Network support.
Extensive work experience on Cisco Routers, Cisco Switches, Load Balancers & Cisco Firewalls
Expertise in deployment and configuration of routing protocols such as OSPF, EIGRP and BGP.
Configuration and implementation of F5 BIG-IP load balancer.
Experience on F5 LTMs & GTMs to improve web application delivery speed and replication through and between distributed global data centers.
Worked on F5 LTM series like 1600, 6400 and viprions for the corporate applications and their availability.
Worked on F5 Enterprise Manager 3.1 version to manage multiple F5 LTM devices from single-pane view.
Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500/PIX series security appliance.
Worked on Panorama firewall management tool which provides centralized monitoring and management of multiple Palo Alto devices from single window.
Knowledge on Amazon AWS Virtual private cloud services.
Worked on Amazon AWS and Microsoft Azure could network services.
Configure a Site-To-Site IP sec VPN to the Amazon AWS VPN Gateway with other vendor security appliances devices.
Knowledge & Experience on FortiGate Firewall Appliances.
Experience in Networking Area especially TCP/IP, Routing, Switching.
In depth knowledge with network monitoring and performance tools such as Solar Winds and Wire shark.
Strong hands on experience implementing and troubleshooting Switch technologies such as STP, RSTP, MSTP and VTP along with troubleshooting of inter-VLAN routing.
Implemented redundancy with HSRP, VRRP, GLBP, Ether channel technology.
Hands on Experience configuring and testing F5 iRules using Browser (IE), HTTP watch.
Knowledge in working with F5 Load Balancers and their implementation in various networks.
Knowledge of network security protocols such as IPSEC tunnels, GRE tunnels, NAT/ PAT, ACLs and VPN– MP-BGP.
Experience in working with Cisco 2500, 2600, 2800, 3600, 3800, 7200 series Routers.
Strong hands on experience on configuring Cisco Catalyst 2900,2960, 3560, 3750, 4500, 4900, 6500 series and Nexus 7000, 5000 and2000 switches.
Working knowledge of routing protocols for voice: VoIP, IPSEC, Multicast, MPLS, DSCP/QoS, Cisco IOS and Wireless security protocols (I.E. 802.1x, EAP, WPA2).
Configuration, managing and implementation the Linux/Unix and Sun Solaris Server in Network.
Experience in Wireless LAN (IEEE 802.11) and deployment of light weight access point.
Migrated and implemented new solution with Cisco ASA firewall series 5505, 5510, 5540.
Experience in configuration of AAA with ACS protocols TACACS+, RADIUS and LDAP.
Experience in configuration of Checkpoint 600, 1100,4800,12000 appliances.
Migration of Palo Alto firewalls from ASA.
Experience in configuration of Palo alto firewalls like PA2020, PA3050, PA5050
Experience with devices Palo Alto Network firewalls such as security NAT, Threat prevention URL filtering.
Implement duo security two factor authentications for remote access VPN on Cisco ASA.
Worked on various blades like IDS/IPS, URL filtering on Cisco ASA.
Experience with Solar Winds Orion monitoring.
Strong knowledge on networking concepts like TCP/IP, Routing and Switching.
Hands on experience on Up-gradation of Cisco IOS & Firmware of different Cisco devices & modules.
Have experience with Amazon web services cloud.
Have hands on experience in AWS services like EC2, Database, VPC, Route 53, Access Group, IAM, Direct Connect.
Also worked with the physical server migration to AWS data center
Involved in designing and implementation of AWS network and connectivity b/w physical and AWS DC
Worked with the Python 2 & 3 version
Assisted in designing and programming of object oriented databases with Python and other languages.
Worked with Automation script with Python module like Chef& Ansible.
Managed relational database applications with UI designing services and Python languages.
Developed a python script, which will parse all trace files and calculate throughput, latency and drop rate.
Developed and implemented a web crawler program in Python that gathers data from social networking site.
Worked with Cisco ISE to identify threats in the network for rapid containment and remediation.
Shared the data with integrated partner solutions to accelerate the capabilities to identify and remediate threats using Cisco ISE.
Experience in installation, configuration and Administration of windows server 2003/2008, Active Directory, Linux, Unix OS under various LAN and WAN environment.
Hands on experience in installing and configuring DNS and DHCP server.
Experienced in trouble-shooting both connectivity issues and hardware problems on Cisco based networks.
Strong problem-solving skills, extremely organized, detailed and deadline oriented.
Adapt in preparing Technical Documentation and presentations using Microsoft VISIO/Office.
TECHNICAL SKILLS
Routers:
Cisco 1900, 2600, 2800, 2900, 3600, 3800, 3900, 7200, 7600
Juniper M7i, J230, M320
Switches:
Cisco Catalyst 3550, 3750, 4500, 4900, 6500
Nexus 2248, 5548 and 7010
Dell S4810, S60, S55
Firewalls & Load Balancers:
Cisco ASA 5540 series, Checkpoint, Palo alto PA2020, PA3050, PA5050, IPSEC and SSL VPN, IPS/IDS, IOS Firewall features, DMZ set up, F-5 LTM.
Routing:
OSPF, EIGRP, BGP, RIP, PBR, Route Filtering, Redistribution, Summarization, Static routing
Switching:
VLANs, Dot1Q, VTP, STP, RSTP, VLAN Maps, HSRP, GLBP, CEF, DCEF, Port Security
LAN/WAN Technologies:
Ethernet, Frame relay, MPLS, HDLC, PPP, T1, T3, OC Standard, DSL, ISDN
Protocols:
IP, TCP, UDP, ICMP, NAT, DHCP, SNMP, IPSEC, SSL, HTTP, SSH
AAA Architecture:
TACACS+, RADIUS, Cisco ACS
Network Monitoring and Management Tools:
Solar winds, Wire Shark, SNMP, Elastic Search, Logstash and Kibana and WhatsUp Gold
Operating Systems:
Windows Server 2008 R2/ 2003, Windows XP Professional, Red hat Linux, Unix Sun Solaris 9/8
EXPERIENCE
DTE Energy Co, Detroit, MI Mar 2016 - Present
Sr Network Engineer
Responsibilities:
Responsible for Configuring Cisco and Dell Routers and Switches.
Installing and configuring F5 Load balancers and firewalls with LAN/WAN configuration.
Worked on F5 LTMs & GTMs to improve web application delivery speed and replication through and between distributed global data centers.
Worked on F5 LTM series like 1600, 6400 and VIPRIONS for the corporate applications and their availability.
Used F5 GTM for external DNS resolutions configured all listeners and created all zone files, A record and C Names.
Worked on F5 Enterprise Manager 3.1 version to manage multiple F5 LTM devices from single-pane view.
Worked on F5 VIPRIONS 2400 model with dual blades also had licensed this chassis with vCMP which can run multiple instances and versions of BIG-IP.
Configuring, deploying &upgrading the Cisco, Nexus5672 Series Switch fabric links.
Configuration& troubleshooting of Cisco and Dell switches, routers and Firewall.
Deployed & Implemented rules and created various zones in Palo Alto firewalls like PA2020, PA5020, and PA5050.
Experience on Panorama firewall management tool which provides centralized monitoring and management of multiple Palo Alto devices from single window.
Configuration and Installation of Cisco firewalls ASA (5510,5520 and 5540).
Migrating Cisco ASA Firewalls to Palo Alto firewall.
Knowledge & Experience on Fortigate Firewall Appliances.
Implemented Duo Security two-factor authentication as a service to access data centers via VPN.
Using solar winds Orion platform to monitor networking and systems management products.
Worked with IDS/IPS to identify threats in the network for rapid containment and remediation.
Shared the data with integrated partner solutions to accelerate the capabilities to identify and remediate threats using Cisco ISE.
Ability to analyze, configure and troubleshoot networks.
Establishing VPN tunnels using IPSec encryption standards and also configured and implemented site-to-site VPN, Remote VPN.
Worked on Amazon AWS and Microsoft Azure could network services.
Configure a Site-To-Site IPSec VPN to the Amazon AWS VPN Gateway with other vendor security appliances devices.
Configured and resolved various OSPF issues in an OSPF multi area environment.
Configured HSRP and VLAN trucking 802.1Q, VLAN Routing on Catalyst 6500 switches.
Optimized performance of the WAN network consisting of Cisco 3550/4500/6500 switches by configuring VLANs.
Have experience with Amazon web services cloud.
Have hands on experience on AWS services like EC2, Database, VPC, Route 53, Access Group, IAM, Direct Connect.
Also worked with the physical server migration to AWS data center
Involved in designing and implementation of AWS network and connectivity between physical and AWS DC
Worked with the Python 2 & 3 version
Assisted in designing and programming of object oriented databases with Python and other languages.
Worked with Automation script with Python module like Chef& Ansible.
Managed relational database applications with UI designing services and Python languages.
Developed a python script, which will parse all trace files and calculate throughput, latency and drop rate.
Developed and implemented a web crawler program in Python that gathers data from social networking site.
Have experience with Amazon web services cloud.
Have hands on experience on AWS services like EC2, Database, VPC, Route 53, Access Group, IAM, and Direct Connect.
Also worked with the physical server migration to AWS data center
Involved in designing and implementation of AWS network and connectivity b/w physical and AWS DC
Worked with the Python 2 & 3 version
Assisted in designing and programming of object oriented databases with Python and other languages.
Worked with Automation script with Python module like Chef& Ansible.
Managed relational database applications with UI designing services and Python languages.
Developed a python script, which will parse all trace files and calculate throughput, latency and drop rate.
Developed and implemented a web crawler program in Python that gathers data from social networking site.
Implemented the numerous firewalls rules on the Palo Alto with both Hide Nat and Static NAT.
DNS administration like adding/modifying/deleting IP and DNS assignments using log messages.
Providing Technical Support and solutions for Network Problems.
Upgrading IOS, troubleshooting network outages.
Modified internal infrastructure by adding switches to support server farms and added servers to existing DMZ environments to support new and existing application platforms.
Environment: Cisco routers, switches, ASA Firewalls, Palo alto Firewalls, OSPF, EIGRP, BGP routing protocols, VLANs, F5 load balancers, checkpoint, wireless access points, IP, TCP, UDP, ICMP, NAT, DHCP, SNMP, IPSEC, SSL, HTTP, SSH protocols.
ATOS, NJ Oct 2014 – Feb 2016
Sr Network Engineer
Responsibilities:
Responsible for Configuring Cisco and Juniper Routers and Switches.
Configured and resolved various OSPF issues in an OSPF multi area environment.
Installing and configuring F5 Load balancers and firewalls with LAN/WAN configuration.
Worked on F5 LTM series like 6400, 6800, 8800 for the corporate applications and their availability.
Configured HSRP and VLAN trucking 802.1Q, VLAN Routing on Catalyst 6500 switches.
Optimized performance of the WAN network consisting of Cisco 3550/4500/6500 switches by configuring VLANs.
Involved in the configuration & troubleshooting of routing protocols: MP-BGP, OSPF, LDP, EIGRP, BGP v4. Configured IP access filter policies.
Configuring, deploying &upgrading the Cisco, Nexus 5000 and Nexus 7000Series Switch fabric links.
Configuring OSPF and Static routing on Juniper M and MX series Routers.
Configuration& troubleshooting of Juniper switches, routers and Firewall.
Deployed & Implemented rules and created various zones in Palo Alto firewalls like PA2020, PA2050.
Maintain and troubleshoot Cisco IOS SIP gateways and TDM trunks, plus VoIP UC servers, infrastructure, and applications.
Worked with Cisco ISE to identify threats in the network for rapid containment and remediation.
Shared the data with integrated partner solutions to accelerate the capabilities to identify and remediate threats using Cisco ISE.
Ability to analyze, configure and troubleshoot networks.
Responsible for turning up BGP peering and customer sessions, as well as debugging BGP routing problems.
Establishing VPN tunnels using IPSec encryption standards and also configured and implemented site-to-site VPN, Remote VPN
Worked on troubleshooting and resolving issues escalated by the NOC and internal systems, including developing, implementing and deploying emergency hot fixes within a global network
Configuration and Installation of Cisco firewalls Pix and ASA (PIX 510, 515E, 525 and ASA 5520, 5540).
Migrating PIX Firewalls to ASA Firewalls
Configuring VLAN, Spanning tree, VSTP, SNMP on EX series switches
Implementing MPLS VPN for the Branch locations
Configured and deployed QOS and defined class of service (COS) WRED and WFQ for bandwidth management.
Handled deployment and management Checkpoint GAIA, R75, R71, R65 and Cisco ASA 5500 series
Implemented the numerous firewalls rules on the Checkpoint with both Hide Nat and Static NAT.
Configured the Checkpoint Anti-Spoofing on the right interfaces to enable the traffic.
DNS administration like adding/modifying/deleting IP and DNS assignments using log messages.
Providing Technical Support and solutions for Network Problems.
Upgrading IOS, troubleshooting network outages.
Modified internal infrastructure by adding switches to support server farms and added servers to existing DMZ environments to support new and existing application platforms.
Environment: Cisco routers, switches, ASA Firewalls, OSPF, EIGRP, BGP routing protocols, VLANs, F5 load balancers, checkpoint, Palo alto, wireless access points, IP, TCP, UDP, ICMP, NAT, DHCP, SNMP, IPSEC, SSL, HTTP, SSH protocols.
Loch Bridge, Lansing, MI Jun 2013 – Oct 2014
Sr Network Engineer
Responsibilities:
Configuring, deploying & upgrading the NX-OS operation system in the data center
Replacing the 3750X switch with a stack of 4507 switches and creating VLANS for Production and Wireless whose traffic was segregated by access-lists to restrict traffic flow between them.
Experience working with using EIGRP/OSPF as a internal Company routing protocol and Using BGP as a WAN protocol towards Service Provider
Worked on F5 LTM series like 6400, 6800, 8800 for the corporate applications and their availability
Experience with configuring Virtual Server and Configuring Load balancing methods in F5 LTM
Implementing & troubleshooting of Juniper switches, routers and Firewall.
Involved in configuring Juniper SSG-140, Cisco PIX and ASA firewall.
Experience working with Cisco Nexus 2148 Fabric Extender and Nexus 5000 series to provide a Flexible Access Solution for a datacenter access architecture
Experience configuring Virtual Device Context in Nexus 7010
Configured 6500 to support a lot more functions with special feature blades, like firewall, content load balancing, Flex WAN
Configured, monitored and troubleshoot Cisco's ASA 5500/PIX 515 security appliances,
Migrating PIX Firewalls to ASA Firewalls
Defined and rolled out rules firewall policies.
Involved in iRule management like loading rules, writing iRule syntax using TCL language
Support customer with the configuration and maintenance of PIX and ASA firewall systems
Definition, problem solving, design advice, troubleshooting, updating, maintenance, etc.
Identify, design and implement flexible, responsive, and secure technology services
Troubleshooting the issue using Wire shark if an individual is not able to connect to the installed Aironet Access points.
Experience with Firewall Administration, Rule Analysis, Rule Modification
Environment: Cisco routers, switches, ASA Firewalls, OSPF, EIGRP, BGP protocols, VLANS, wire shark, IP, TCP, UDP, NAT, DHCP, HTTP, SSH.
Computer Science Corporation, India Jan 2012 – May 2013
Network Engineer
Responsibilities:
Worked on Cisco Layer 2 switches (spanning tree, VLAN).
WAN Infrastructure running OSPF & BGP as core routing protocol.
Support various Routers like 2600/3600/7200 series routers.
Tested authentication in OSPF and BGP.
Configured and troubleshoot OSPF and EIGRP.
Troubleshooting IOS related bugs based on past history and appropriate release notes.
Work on different connection medium like Fiber and Copper Connectivity.
In-depth expertise in the implementation of analysis, optimization, troubleshooting and documentation of LAN/WAN networking systems.
Planning and configuring the routing protocols such as OSPF, RIP, and Static Routing on the routers.
Performed and technically documented various test results on the lab tests conducted.
Planning and configuring the entire IP addressing plan for the clients' network.
Assist the certification team and perform configuration of LAN\WAN technologies such as Ethernet, Fast Ethernet, and Gigabit Ethernet.
Supported networks, which are comprised of 200+ Cisco devices.
In-depth expertise in the implementation of analysis, optimization, troubleshooting and documentation of LAN/WAN networking systems.
WAN Infrastructure running OSPF as a core routing protocol.
Follow process & procedures for change & configuration management.
Supported nationwide LAN infrastructure consisting of Cisco 4510 and catalyst 6513.
Deployed the switches in high availability configuration with HSRP.
Configured UDLD, port-fast, uplink fast and other spanning tree features.
Support various Series of Cisco Routers like 7200/7600 series.
Support Complex 6500 /5500 Series Switches.
Worked on Cisco Routers Models# 2600-2800 and ISR model;
Network Monitoring using tools like Cisco Works 2000.
Created Lab demonstrations for new technology deployments with loaner equipment from various vendors and presented the findings to upper management.
Troubleshoot network problems using Packet Analysis tools like Ethereal.
Environment: Cisco routers, switches, ASA Firewalls, OSPF, EIGRP routing protocols, VLANS, IP, TCP protocols.
L&T InfoTech, India Jun 2010 – Dec 2011
Network Engineer
Responsibilities:
Responsible for the configuration, implementation and operation of Cisco 3745 routers, Cisco 6509 and 3560 L2/L3 switches
Removed Cisco 3600 and 2600 series routers and Cisco 2900 series switches from the current infrastructure and replaced them with the Cisco 6509 or 3560 L2/L3 switches.
Configured RSTP, MST and used VTP with 802.1q trunk encapsulation. Provided port binding and port security wherever required. Provided router redundancy through HSRP.
Configured ether channels using PAGP and LACP.
Designed ACLs, VLANs, troubleshooting IP addressing issues and taking back up of the configurations on switches and routers.
Provided testing for network connectivity before and after install/upgrade
Switching related tasks included implementing VLANS and configuring ISL trunk on Fast-Ethernet and Gigabit Ethernet channel between switches.
Experience in Cisco switches and routers: Physical cabling, IP addressing, Wide Area Network configurations (Frame-relay and ATM).
Performed troubleshooting, while maintaining trouble ticket tracking, following internal/external
Escalation procedures and customer notifications.
Configured Cisco Routers for OSPF, IGRP, RIPv2, EIGRP, Static and default route.
Worked on HSRP and GLBP for first hop redundancy and load balancing.
Prepare, update, and maintain technical and logistical network documentation
Environment: Cisco routers, switches, ASA Firewalls, OSPF, EIGRP routing protocols, VLANS, IP, TCP protocols.