Balaji

Email:ac4qw8@r.postjobfree.com

Phone:903-***-****

Professional Summary:

Cisco certified professional with 7+ years of experience in network design, implementation, and support. Experience working with Nexus 7K, 5K and 2K

Experience and knowledge in network design, implementation, configuration, optimization, administration, and network management.

Experience in Networking, including hands-on experience in IP network design providing network Support, installation and analysis.

Network Professional with experience in Designing and troubleshooting LAN, WAN, MPLS in Branch, Lab, Campus and Data Center environments.

Expert level knowledge of troubleshooting, implementing, optimizing and testing of static and Dynamic routing protocols such as RIP, EIGRP, OSPF, BGP; ability to interpret and resolve complex route table problems.

Configure VLANs, STP, RSTP, MSTP, and inter-VLAN routing in LAN environment for the customers.

Design and deployed networks using dynamic routing protocol (OSPF, EIGRP and BGP) MPLS on Cisco Equipment.

Successful implementation of technologies including: Ether channel,Trucking, VTP, VLAN, Inter-VLAN Routing, STP MSTP, Port security for L2 in a distribution layer and implemented EIGRP, OSPF routing for Site-site VPN connections on Cisco Switches.

Implementation of traffic filters on Cisco routes using Standard, extended Access list.

Expert Level Knowledge about TCP/IP and OSI models.

In-depth expertise in analysis, implementation, troubleshooting & documentation of LAN/WAN

Experienced in installation, configuration and maintenance of Ericsson SE 600, 800, 1200 Routers, Cisco 7200, 3900, 2800, 2600, 2500 and 1800 series Router / Cisco Catalyst Cisco 6500, 4500, 3750, 2950 series Switches.

Proficient in Cisco IOS for configuration & troubleshooting of routing protocols: MP-BGP, OSPF,

LDP, EIGRP, RIP, BGP v4, MPLS

Knowledge on SDN Networks and implementing the SD-Wan,Viplte SD-WAN

Knowledge on Controlers ONOS(Open Network Open System)

Trunks, VTP Ether channel, STP, RSTP and MST.

Coordinated with development team in resolving defects by providing all the required information for fixing the defects and verifying their fix in private builds.

Supported diagnostic and test activities to determine performance, validation and solutions to complex software issues.

Experience with hardware load balancer administration and support, preferably with F5 and Cisco ACE load balancers.

Experience in installing, configuring and troubleshooting Cisco Wireless Controllers.

Configuring Cisco routers and switches to enable and troubleshoot a variety of features such as Trunk, Vlan, Ether channel, port security, routing protocols including EIGRP, OSPF & BGP and Other related technologies such as multicasting.

Experience in the setup of Access-Lists and tunnel installations.

VNFM manages life cycle of VNFs. That is it creates, maintains and terminates VNF instances. ( Which are installed on the Virtual Machines (VMs) which the VIM creates and manages)

It is responsible for the FCAPs of VNFs (i.e. Fault, Configuration, Accounting, Performance and Security Management of VNFs).

SD-WAN is assign policies, and configure devices and sites.

Good knowledge and experience in Installation, Configuration and Administration of Windows

Servers 2000/2003, Active Directory, FTP, DNS, DHCP, TFTP, Linux OS under various WAN environments.

Experienced in creating multiple VPC’s and public, private subnets as per requirement and distributed them as groups into various availability zones of the VPC.

Created NAT gateways and instances to allow communication from the private instances to the internet through bastion hosts.

Used security groups, network ACL’s, internet gateways and route tables to ensure a secure zone for organization in AWS public cloud.

Created and configured elastic load balancers and auto scaling groups to distribute the traffic and to have a cost efficient, fault tolerant and highly available environment.

Created S3 buckets in the AWS environment to store files, sometimes which are required to serve static content for a web application.

Implement Cisco Prime Infrastructure and APIC-EM solution for network management and SD-WAN.

Configured S3 buckets with various life cycle policies to archive the infrequently accessed data to storage classes based on requirement.

Possess good knowledge in creating and launching EC2 instances using AMI’s of Linux, Ubuntu, RHEL, and Windows and wrote shell scripts to bootstrap instance.

Implemented and managed ArcSight ESM and Connectors at multiple locations.

Involved in installation and configuration of Cisco 3500 and 6500 series switches.

Designed and developed ArcSight architecture components and related upgrades.

Prepared system plans and executed ArcSight architecture modifications.

Managed, upgraded and maintained operational data flows and ArcSight platforms

Used IAM for creating roles, users, groups and also implemented MFA to provide additional security to AWS account and its resources.

Created EBS volumes for storing application files for use with EC2 instances whenever they are mounted to them.

Created snapshots to take backups of the volumes and also images to store launch configurations of the EC2 instances.

Responsible for Continuous Integration and Continuous Delivery process implementation using Jenkins along with Python and Shell scripts to automate routine jobs.

Implemented Continuous Integration using Jenkins and GIT from scratch.

Technical Skills:

Cisco Routers: (1800, 2500, 2600, 2800, 3600, 3750, 3800, 7200), CISCO 4400 WLC ASR 1K and 9K.

Cisco Switches: (2900, 3500, 4000, 4500, 5000, 5800, 6500, and 7600 Nexus 2k, 3k, 5k and 7k).

Routing Protocol: (BGP, OSPF, EIGRP, ISIS, IGRP, LDAP, IGMP, RIP), Routed Protocol TCP/IP, Multicasting (PIM),MPLS,SD-WAN,

LAN Protocol: VLAN, PVLAN, VTP, IPX, Inter-VLAN routing, ISL, 802.1Q (dot1q), STP, IS-IS, RSTP,, Ethernet, Port security.

WAN Technology: Frame Relay, ISDN, ATM, PPP, ICMP, L2VPN, L3VPN,

Network Management: SNMP v2, Syslog, HP Open View NNM, Net flow Analyzer, Sniffer, Wireshark, Citrix Xen, HP SAN storage .

Operating systems: Linux, UNIX, DOS, Windows XP/2007/2008, Windows 2003 server and Windows 2008 server

Network Security: NAT/PAT, Ingress &Egress Firewall Design, VPN Configuration Internet Content Filtering, Knowledge of Firewall, ASA, IPSEC, Palo alto.

Application Protocols: DHCP, DNS, FTP, HTTP, SMTP, TFTP.

Documentation: Microsoft Office, excel.

Cloud Platforms: AWS,Microsoft Azure, Open Stack.

Configuration Management Tools: Chef, Puppet, Ansible, Jenkins.

Operating Systems/Virtualization: Windows, Unix, Linux, Solaris, MAC, VMware

Certification:

Cisco Certified Network Professional (CCNP)

Cisco Certified Network Associate (CCNA)

EUCATION DETAILS:

Bachelor of Information Technology -JNTU University, Hyderabad, India - 2010

Professional Experience:

Xtrac Solutions, Westlake, Texas Feb 17 - Present

Sr.Network Engineer

Responsible for Support of network security and network devices such as routers, switches and wireless access points.

Experience with Supporting both Network and Security infrastructure in data center environment and Campus environment, which involved with devices such as routers, switches, firewalls and wireless access points.

Responsible for designing and implementation of Network Infrastructure.

Implemented upgraded firewall platform built on Checkpoint Firewall Technologies.

Migrated the rules from Checkpoint firewall to Palo Alto firewalls

Configuring rules and Maintaining Palo Alto Firewalls & Analysis of firewall logs using various tools

Configured VLAN, OSPF, Sub-netting, EIGRP, BGP, VTP, spanning tree, IP Sub-netting, Wireless Access points

Involved in configuring Checkpoint firewall and applying rules to pass servers and switches through firewall.

Worked with users to resolve Wi-Fi authentication issues and performed reboot of WLC 4400.

Assigning IP addresses and configuring switch ports for multiple hosts to connect to the network.

Involved in Migration of Juniper EX series switches to Cisco 3500 series and 6500 series switches.

Coordinated and scheduled the delivery of F5 Professional Service implementations and consulting engagements

Experience working with Nexus 7010, 5548, 5596, 2148, 2248 devices.

Experience with configuring FCOE using Cisco nexus 5548

Configure and troubleshoot Juniper EX series switches and routers

Experience with moving data center from one location to another location, from 6500 based data center to Nexus

SD-Wan Deployment and Infrastructure to provide secure,carrier Connect-independent Wan Connectivity across the enterprise

Integrated with esisting BGP Environment to resdisturbute routes to MPLS WAN

Management saw significant 40% performance gains and cost-saving of 50% bendfit that

we began advocating for a more rapid deployment for the remaining sites/locations

Developed procedures and processes to deploy new SDWAN solutions to over 800 Sites with unique network infrasturcture

Reducing the time per install from 12 hours to under 3 hours and reducing the total project timeline for 1 years to 5 months

Configuring a hybrid WAN by hand

Viptela SD-WAN Deployment. Team lead for deployment, worked with the team of network engineers to design and implement industry leading SD-WAN infrastructure to provide secure, carrierindependent

WAN connectivity across the enterprise. Integrated with existing BGP environment to redistribute routes seamlessly from Viptela into traditional MPLS WAN. Management saw significan 40% performance gains and cost-saving of 50% benefit that we began advocating for a more rapid deployment for the remaining sites/locations.

Implement Cisco Prime Infrastructure and APIC-EM solution for network management and SD-WAN.

Design, and configuring of OSPF, BGP on Juniper Routers and SRX Firewalls

Experience with configuring BGP, OSPF in Juniper M and MX series routers

Infrastructure trouble shooting and TCP/IP Protocols Experience.

Involved in installing newer 3502 Wireless Access Points.

Helped the Network team to install New switches and routers and configure the IOS according to the requirement

Research, diagnose, troubleshoot and identify solutions via phone, email, and WebEx to resolve customer issues regarding a collection of products within the Qualys Solutions Suite including

Worked on F5 LTM, GTM series like 6400, 6800, 8800 for the corporate applications and their availability

Configuration and extension of VLAN from one network segment to their segment between Different vendor switches (Cisco, Juniper)

Assisted in backup, restoring and upgrading the Router and switch IOS.

Maintaining the health of 250+ wireless Access points in two locations.

Involved in installation and configuration of Cisco 3500 and 6500 series switches.

Configure trunk ports and implement granular control of VLANs and VXLANs using NX-OS to ensure virtual and flexible subnets that can extend further across the network infrastructure than previous generation of switches.

Maintaining the health of 250+ wireless Access points in multiple locations.

Configure port-profiles as part of the NX-OS command structure that allows for configuration of multiple ports and port-types via inherited configurations applied via a single command that reduces administrative error and allows for better configuration readability.

Integrate a virtual version of Nexus: Nexus1000v into VMWare to extend Nexus capabilities directly adjacent to virtual machines so that they benefit from Cisco switching capabilities and network topology consistency ensuring VMs maintain their subnet/VLAN relationships during failover.

Configure secure privileged administrative access to the Cisco IOS system. Enable the encryption of system passwords to prevent unauthorized users access to passwords in the system configuration.

Configure secure access to the console and vty ports, and set the interval that the EXEC command interpreter waits until user input is detected on the Console and vty ports. Also, configure the console and vty ports log messaging to not interfere with active device configuration.

Highly experienced in AWS Cloud platform and its features which includes Amazon AWS Cloud Administration which includes services like: EC2, S3, EBS, VPC, ELB, AMI, RDS, IAM, Glacier, SNS, SWF, SES, ELASTIC BEANSTALK, Route 53, Auto scaling, LAMBDA, Cloud Front, Cloud Watch, Cloud Trail,CloudFormation,OPSWork,SecurityGroups.

Helped migrating and managing multiple applications from on premise to cloud using AWS services like S3, Glacier, EC2, RDS, SQS, SNS, SES, Cloud Formation, VPC etc.

Implemented secured way of Centralized login for AWS users using 389 Directory Services (LDAP) and Open VPN.

Created NAT gateways and instances to allow communication from the private instances to the internet through bastion hosts.

Involved in writing Java API for Amazon Lambda to manage some of the AWS services.

Used security groups, network ACL’s, internet gateways and route tables to ensure a secure zone for organization in AWS public cloud.

Created and configured elastic load balancers and auto scaling groups to distribute the traffic and to have a cost efficient, fault tolerant and highly available environment.

Created S3 buckets in the AWS environment to store files, sometimes which are required to serve static content for a web application.

Created EBS volumes for storing application files for use with EC2 instances whenever they are mounted to them.

ENVIRONMENT: Expertise in configuring Cisco Routers, Cisco Switches,Cisco 4400 WLC,VLANS, Spanning Tree (RPVST+, MST), VTP, Ether Channels, MPLS. OSPF, EIGRP, BGP, HSRP, VRRP, GLBP, QoS, ACl, IP Prefix-list, Nexus (VPC, VDC), WAAS, MPLS VPN, IPSEC, IPV4, IPV6, AWS,S3,EC2,DMVPN,Vxlan,

Western Digital Corporation - San Jose, CA Jan16– Feb 2017

Sr. Network Engineer

Key Responsibilities:

Experience with configuring Cisco 6500 VSS in Distribution layer of the Data center network

Configuration and Administration of Cisco Routers and Switches

Experience configuring VPC(Virtual Port Channel), VDC(Virtual Device Context) in Nexus 7010/7018

Convert Campus WAN links from point to point to MPLS and to convert encryption from IPsec/GRE to Get VPN.

Involved in designing and implementation of wireless IPT devices.

Experience in Deploying and configuring Cisco WLC 5500 Series Controllers

Experience with setting up MPLS Layer 2 VPN in data center and also working with dBGP WAN towards customer

Worked on F5 LTM, GTM series like 6400, 6800, 8800 for the corporate applications and their availability

Experience with moving data center from one location to another location, from 6500 based data center to Nexus based data center

Network Redesign for Small Office/Campus Locations. This includes changes to both the voice and data environment

Network security including NAT/PAT, ACL, and ASA/SRX Firewalls.

Good knowledge with the technologies VPN, WLAN and Multicast.

Well Experienced in configuring protocols HSRP, GLBP, ICMP, IGMP, PPP, PAP, CHAP, and SNMP.

Installation and Configuration of Cisco Catalyst switches 6500, 3750 & 3550 series and configured routing protocol OSPF, EIGRP, BGP with Access Control lists implemented as per Network Design Document and followed the change process as per IT policy It also includes the configuration of port channel between core switches and server distribution switches

Experience with communicating with different with different customers, IT teams in gathering the details for the project

Switching tasks include VTP, ISL/ 802.1q, IPSec and GRE Tunneling, VLANs, Ether Channel, Trunking, Port Security, STP and RSTP.

Experience in installing and configuring DNS, DHCP servers.

Replace branch hardware with new 3900 routers and 2960 switches.

Conversions to BGP WAN routing. Which will be to convert WAN routing from OSPF to BGP (OSPF is used for local routing only) which involves new wan links.

Implemented and managed ArcSight ESM and Connectors at multiple locations.

Prepared and customized report templates and reviewed dynamic content.

Created notification templates and reported as per specific event attributes.

Provided support to content development tasks and analyzed ArcSight data sources.

Designed and developed filter and evaluated significant events.

Formulated security content data such as filters, reports, signature and mapping.

Executed database tuning and troubleshooting processes and updated configuration files.

Documented and reviewed new report templates, functional reports and system configurations

Convert Branch WAN links from TDM circuits to MPLS and to convert encryption from IPSec/GRE to GetVPN.

Responsible for layer 2 securities which was implemented using a dedicated VLAN ID for all trunk ports, setting the user ports to non-trunking, deployed port security when possible for user ports

Involved in configuring Juniper SSG-140 and Cisco ASA firewall

Enabled STP attack mitigation (BPDU Guard, Root Guard), using MD5 authentication for VTP, disabling all unused ports and putting them in unused VLAN and ensuring DHCP attack prevention where needed.

Environment: Cisco Routers 3600, 3700, 7200; Cisco Switches 6500, 4500,3750,3500, 2900 and 1900 series; Routing protocols RIPv2, EIGRP, OSPF, BGP; RADIUS & TACACS, Switching Protocols STP, VTP, RSTP and VLAN; Firewall Security Protocols: ACL, NAT, PAT,VPC,VDC,NAT,PAT,

Tata Consultancy Services - Hyderabad,Telangana.

Client-3

APSRTC & TSRTC -- Network Engineer Aug 14 - Dec 15

Performed network engineering, design, planning (WAN & LAN) & implementation.

Studied single point failures & designed WAN structure in such a way that there are no failures in network in case of any device or link failure

Establishing the networking environment by designing system configuration, directing system installation, defining, documenting and enforcing system standards.

The design and implementation of new solutions and improving resilience of the current environment.

maximizing network performance by monitoring performance, troubleshooting network problems and outages, scheduling upgrades and collaborating with network architects on network optimization.

undertaking data network fault investigations in local and wide area environments, using information from multiple sources.

securing network systems by establishing and enforcing policies, and defining and monitoring access.

Worked on FTP, HTTP, DNS, DHCP servers in windows server-client environment with resource allocation to desired Virtual

Network security including NAT/PAT, ACL.

Good knowledge with the technologies VPN, WLAN and Multicast.

Well Experienced in configuring protocols HSRP, GLBP, ICMP, IGMP, PPP, PAP, CHAP, and SNMP.

Installation and Configuration of Cisco Catalyst switches 6500, 3750 & 3550 series and configured routing protocol OSPF, EIGRP, BGP with Access Control lists implemented as per Network Design Document and followed the change process as per IT policy It also includes the configuration of port channel between core switches and server distribution switches

Experience with communicating with different with different customers, IT teams in gathering the details for the project

Switching tasks include VTP, ISL/ 802.1q, IPSec and GRE Tunneling, VLANs, Ether Channel, Trunking, Port Security, STP and RSTP.

Experience in installing and configuring DNS, DHCP servers.

Replace branch hardware with new 3900 routers and 2960 switches.

Conversions to BGP WAN routing. Which will be to convert WAN routing from OSPF to BGP (OSPF is used for local routing only) which involves new wan links.

Client-2

Hyderabad Race Club -- Network Engineer April 12 - Aug 14

Responsible for providing the network support and windows support

Maintaining the NMS and antivirus server

Interact with the clients to resolve the queries, issues and problems.

Responsible for providing help, support and assistance in initial installation of the system, and solving network queries

Install and configure the Cisco Wireless 300+ and assign the access to the Hand manchine users to allow the internet access and sepearte each Access point with different Vlan

Configure the Network Cisco aces switches 2960 and core switches(4503-E) and (4506-E) series

Configure the OSPF and HSRP in Cisco Routers 3945/E9 and Cisco Core Switch 4503,4506 E Series

Configure the VLAN, STP, OSPF, Inter VLAN and HSRP

Configure the trunk in the switches and HSRP Protocol on routers

Configure the MPLS,SIFY,ISDN lines

Maintaining the Networking and hardware issues of Thin client and Client router 1941/E9 and Core router 3945/E9

Install and configure the LMS in windows 2008 Server.

Client-1

Advanced Data Processing Research Institute (ADRIN) -- Network Engineer Jun 10 - March12

Designed and implemented a complex network system that used both LAN and MAN technologies

customer operational performance by resoling IT issues Established network specifications

Computer assembling and maintenance

Configuring the Cisco Routers and switches

Interacting with the clients to resolve the queries, issues and problems

Responsible for providing help, support and assistance in initial installation router and configure on site locations

Monitoring the NMS system for different Network Alerts.

Set up of distributed core LAN using Cisco 6500 series switches.

Coordinating with service providers for WAN link outages.

Performed switching technology administration including VLANs, inter-VLAN routing, Trucking, STP, RSTP, port aggregation & link negotiation.

Network Cabling, dressing, labeling and troubleshooting various network drops onsite

Design, execution of installation and configuration of VPN/IVPN, LAN/WAN as per organizational requirements.

Experienced in Planning and Organizing Change Managements.

Gained good experience by working with configuration management tool Ansible and CI/CD tool Jenkins.

Set up and built AWS infrastructure with various services available by writing cloud formation

With the help of IAM created roles, users and groups and attached policies to provide minimum access to the resources.

Integrated Amazon Cloud Watch with Amazon EC2 instances for monitoring the log files and track metrics.

Created AWS S3 buckets, performed folder management in each bucket, managed cloud trail logs and objects within each bucket.

Created Highly Available Environments using Auto-Scaling, Load Balancers, and SQS.

Defined branching, labeling, and merge strategies for all applications in Git.

Configured Elastic Load Balancers with EC2 Auto Scaling groups

Configured S3 to host Static Web content.

Experienced in S3 Versioning and lifecycle policies to and backup files and archive files in Glacier

Created monitors, alarms and notifications for EC2 hosts using Cloud Watch

Maintenance/updating of Network diagrams.

Worked on Network Operations using Ticketing system.

Ensure standard Router and Switch Configurations are maintained.

LAN Segments monitoring/Trouble shooting LAN related issues.

Carryout periodic backup of Router/Switch configurations.

Analyzing the Bandwidth Utilization of the Links

Environment: Catalyst switches 4503, 3750 and Cisco routers 3600. RIP, RIP V2, IGRP, EIGRP and OSPF, LAN, VPN. Red hat Linux, Windows server manager, Expertise in configuring Cisco Routers, Cisco Switches, VLANS, Spanning Tree (RPVST+, MST), VTP, Ether Channels, MPLS. OSPF, EIGRP, BGP, HSRP, VRRP, GLBP, QoS, ACl, IP Prefix-list, Nexus ( VPC, VDC), MPLS VPN, IPSEC, IPV4, IPV6.

Contact this candidate