Post Job Free

Resume

Sign in

Network Engineer

Location:
East Peoria, IL
Salary:
Negotiable
Posted:
August 02, 2018

Contact this candidate

Resume:

Name : Sathwik Reddy

Phone : 732-***-****

Email : ac6evf@r.postjobfree.com

Role : Network Engineer

PROFESSIONAL SUMMARY

8+ years of IT experience in design, development, implementation, troubleshooting and maintenance of complex Network & Security devices, Network Security.

Experience in Layer 3 Routing Protocol configurations: RIP, OSPF, BGP, EIGRP and MPLS.

Strong hands on experience in installing, configuring, and troubleshooting of Cisco 9500, 9300, 7600, 7200, 3800, 3600, 2800, 2600, 2500 and 1800 series Routers, Cisco Catalyst 6500, 4500, 3750, 2950 and 3500XL series switches.

Switching tasks include VTP, ISL/ 802.1q, IPsec and GRE Tunneling, VLANs, Ether Channel, Trucking, Port Security, STP and RSTP.

Involved in Configuration of Access lists (ACL) on Juniper and Palo Alto firewall for the proper network routing for the B2Bnetwork connectivity.

Network security including NAT/PAT, ACL, VPN Concentrator, SOURCEFIRE IDS/IPS, and ASA/PIX Firewalls.

Switching tasks include VTP, ISL/ 802.1q, IPsec and GRE Tunneling, VLANs, Ether Channel, Trucking, Port Security, STP and RSTP.

Worked on F5 BIG-IP LTM, configured profiles provided and ensured high availability.

Worked with Aruba/Cisco wireless AP 205 series supporting 802.11 ac.

Work with the following routing/switching protocols: BGP, OSPF, EIGRP, LDP, HSRP, VRRP, GLBP, VTP, 802.1d, and 802.1q, ISL, VLAN's and Port-Channels.

Strong hands on experience on PIX Firewalls, ASA (5540/5550), Imperva (WAF) Firewalls. Implemented Security Policies using ACL, Firewall, IPSEC, SSL, VPN, Sourcefire IPS/IDS, AAA (TACACS+ & RADIUS).

Upgrade Cisco Routers, Switches and Firewall (PIX) IOS using TFTP

Worked extensively on Palo Alto, Juniper Net screen and SRX Firewalls.

Configured IPSEC VPN tunnels between Checkpoint and other non-Checkpoint endpoint devices

Configuration and troubleshooting on HSRP, VRRP, GLBP, RSTP, MST related issues coming in network environment

Proficiency in configuration of VLAN setup on various Cisco Routers and Switches.

Experience in layer-3 Routing and layer-2 Switching. Dealt with Nexus models like 7K, 5K, 2K series, Cisco router models like 7200, 3800, 3600, 2800, 2600, 2500, 1800 series and Cisco catalyst 6500, 4500, 3750, 3500, 2900 series switches.

Server load-balancing utilizing F5 LTM-Big IP, including APM, ASM and Viprion device modules

Enforcement Readiness period, Trusted and Untrusted traffic, Loosening and tightening restrictions in ASM.

Strong hands on experience on PIX Firewalls, ASA (5540/5550), Imperva (WAF) Firewalls. Implemented Security Policies using ACL, Firewall, IPSEC, SSL, VPN, Cisco Identity Services Engine (ISE), Sourcefire IPS/IDS, AAA (TACACS+ & RADIUS).

Implemented Zone Based Firewalling and Security Rules on the Palo Alto Firewall.

A highly organized individual who adopts a systematic approach to problem solving, effectively analyzes results and implements solutions.

Troubleshoot and Worked with Security issues related to Checkpoint, IDS/IPS

Utilized Wireshark for implementing enterprise monitoring and configuring F5 Big-IQ, BIG-IP Application Security Manager, Advanced Firewall Manager and BIG-IP DNS, GTM/LTM for the F5 BIG-IP 3900 and 6900 platforms.

Experience with convert Checkpoint VPN rules over to the Cisco ASA solution. Migration with both Checkpoint and Cisco ASA VPN experience

Experience with Network Automation using Python, shell scripting.

Experience with Checkpoint and Cisco ASA, Palo Alto Firewalls environment.

Installation & configuration of Microsoft Proxy Server 2.0 & Blue Coat Proxy

Worked on Blue coat proxy server, Tipping Point Intrusion Protection System management

Involved in design and implementation of Data Center Migration, worked on implementation strategies for the expansion of the MPLS VPN networks

Experience converting Cat OS to Cisco IOS on the Cisco 6500 switches

Provided 24x7x365 availability and on-call support as required by the projects.

TECHNICAL SKILLS:

Cisco Switches : (2900, 2924, 2950, 3550, 5500, 6500, 6509, 6513)

Cisco routers : (2600, 2800, 3640, 3700, 3825, 7200, 7204, 7206, 9300, 9500), Cisco PIX 500 Series, Catalyst 6500, 7600, 4500, ASR 9000.

Juniper : Switches EX-2200, EX-4200, EX-4500, routers T640, MX-480, M Series, SRX210, SRX240

Firewalls and Sniffers : Cisco PIX, FWSM, ASA, Checkpoint, OPNET, Palo Alto, Imperva, AFM,

WIRESHARK

Protocols : RIP, RIP2, PPP, OSPF, EIGRP, IS-IS, BGP, SNMP, HTTP, FTP, TFTP, HTTP,

DHCP, SMTP, ICMP

Gateway Redundancy : GLBP, VRRP, HSRP

WAN Protocols &Tech : HDLC, PPP, ATM, FRAME RELAY, ISDN, Metro Ethernet

LAN Technologies : Ethernet, TCP/IP, CDP, STP, RSTP, VTP, VLAN, Trunks, Ethernet channel, MPLS.

F5 load balancers : (LTM, GTM) configuration, administration and troubleshooting. Have good experience working on both 9.x, 10.x and 11.x versions, F5 BigIP 1500, 3400, 6400 8900 LTM, GTM 5, and F5 3DNS Load balancer GTM

Various Features & Services : MS Ticketing, Secure CRT, ServiceNow, Cisco Prime Infrastructure, Putty.

Redundancy Protocols : HSRP, VRRP, GLBP, RPR, RPR+, NSF-SSO.

Servers : AD/DC, DHCP, DNS, VPN, NAP, WSUS, Email Server, Software Deployment Server, BHS, GC Server, Windows Deployment Service, Proxy Servers, Print Servers, Application servers, FTP Servers

Physical interfaces : Fast Ethernet, Gigabit Ethernet, Serial, HSSI, Sonnet (POS)

Operating Systems : Windows 2000/2003/2008, windows XP/7, LINUX, Red hat, UNIX, Macintosh

VMware : VMware vSphere 3.5/4.1/5.0, Workstation 6/7, ESX Server 3.5

EDUCATION

Bachelor of Technology in Electrical and Electronics Engineering.

PROFESSIONAL CERTIFICATIONS

Cisco Certified Network Associate (CCNA)

Cisco Certified Network Professional (CCNP)

PROFESSIONAL EXPERIENCE:

Caterpillar, East Peoria, IL Aug 2016 - Present

Sr. Network Security Engineer

Responsibilities:

Configured and implemented of composite Network models consists of Cisco 2600, 2800, 7600, 7200, 3800 series routers and Cisco 3550, 3750, 3500, 5000, 6500 Series switches.

Experience working with Nexus 7018/7010, 5020, 5548, 2148, 2248 devices

Experience with configuring Nexus 2000 Fabric Extender (FEX) which acts as a remote line card (module) for the Nexus 5000 and Fabric path and OTV in NX-OS

Upgrading branch network connectivity with total refresh of the network infrastructure with new 3845 routers and 2960 switches.

Configuration and troubleshooting on HSRP, VRRP, GLBP, RSTP, MST related issues coming in network environment

Worked extensively on Palo Alto, Juniper Net screen and SRX Firewalls.

Configure switch ports connecting to the WAN and LAN networks with separate subnets and VLAN's

Configuring IPSEC VPN on SRX series firewalls

Convert Campus WAN links from point to point to MPLS and to convert encryption from IPSec/GRE to GetVPN.

Work with the following routing/switching protocols: BGP, OSPF, EIGRP, LDP, HSRP, VRRP, GLBP, VTP, 802.1d, and 802.1q, ISL, VLAN's and Port-Channels.

Implementation and configuration of GLBP/HSRP on multilayer switches for first hop redundancy

Worked on F5 BIG-IP LTM, configured profiles provided and ensured high availability.

Configuration of Virtual Servers, Nodes, and load balancing Pools

Administer and Troubleshoot Cisco ACE/GSS load balancers.

Involved in Configuration of Access lists (ACL) on Juniper and Palo Alto firewall for the proper network routing for the B2Bnetwork connectivity.

Supported and executed migration to F5 BIG-IP LTM/GTM ADC Appliances from Citrix NetScaler

Implementation of BGP to optimize WAN routing on the core and edge routers.

Monitoring, managing and troubleshooting Cisco Wireless devices using Cisco Meraki.

Mutual redistribution of OSPF and BGP routes using route maps.

Involved in upgrades to the WAN network from existing 7200vxr with ASR1004 and 3845/3945 routers.

Design and configuring of OSPF, BGP on Juniper Routers and SRX Firewalls

Configuration and extension of VLAN from one network segment to their segment between Different vendor switches (Cisco, Juniper)

Configured networks using routing protocols such as RIP, OSPF, BGP and manipulated routing updates using route-map, distribute list and administrative distance for on-demand Infrastructure

Configured the Switches to add DNS, DHCP Infoblox servers to the network.

Experience with configuring IPAM on DNS Infoblox like adding the already existing networks and worked with Cisco IOS, NX-IOS, IOS-XR.

Enabled STP attack mitigation (BPDU Guard, Root Guard), using MD5 authentication for VTP, disabling all unused ports and putting them in unused VLAN and ensuring DHCP attack prevention where needed

Performed basic security audit of perimeter routers, identifying missing ACL's, writing and applying ACL's

Troubleshooting and installing of ISR, GSR, ASR9000 and Nexus devices.

Upgrade Cisco Routers, Switches and Firewall (PIX) IOS using TFTP

Responsible for provisioning and configuring Aruba routers and Avaya/Cisco phones

Installed, configured and set security policies on Cisco and checkpoint firewalls, VPN.

Monitored and tested network protocols (Ethernet, TCP/IP) using Wire shark tool.

Hands on experience with arista 7100 and 7050 switches.

Troubleshoot and Worked with Security issues related to Checkpoint, IDS/IPS

Worked with Aruba/Cisco wireless AP 205 series supporting 802.11 ac.

Setting Aruba Access to link distribution switch system and then to WLAN controller.

Implemented traffic engineering on top of an existing Multiprotocol Label Switching (MPLS) network using Open Shortest Path First (OSPF).

Involved in the removal of EIGRP from all devices and making OSPF the primary routing protocol.

Configured IPSEC VPN on SRX series firewalls.

Configured site-to-site and client VPNs and identify and resolve firewall and VPN connectivity issues.

Perform installs, configure and troubleshooting on stateful inspection firewalls and inline/passive IPS/IDS sensors.

Worked with Juno OS on EX Series switches and MX series routers.

Specialized in Network Security technologies (Firewall, IPS/IDS, Content Filtering, Proxy and Cisco network products).

Engineering the configurations for the different branches, campus locations

Responsible for layer 2 securities which was implemented using a dedicated VLAN ID for all trunk ports, setting the user ports to non-Trunking, deployed port security when possible for user ports

Responsible for Cisco ASA firewall administration across our global networks

Key contributions include troubleshooting of complex LAN/WAN infrastructure that include routing protocols EIGRP, OSPF & BGP

Involved in the modification and removal of BGP from the MPLS routers.

Worked on Orion for analysis and monitoring purposes

Migration of existing IPSEC VPN tunnels from Pre-Shared key to Certificate Authority for purpose of scaling

Regular upgrade and maintenance of Juniper Routers and Firewalls, Nexus 7k,5k & 2k, f5 BIG IP, Palo Alto Firewalls, Blue coat Proxy and Riverbed Steelhead appliances.

Implemented Zone Based Firewalling and security rules on the Palo Alto Firewall.

Environment: Infoblox, DNS, DHCP, OSPF Troubleshooting, BIG-IP F5-LTM-1600, 3600, Active Directory, OSPF, EIGRP, Nexus-7k, Cisco Routers-7600, 7200, 3800, Cisco Switches-2950, 3500, 5000, 6500, HSRP.

CVS, Phoenix, AZ Feb 2015 – Jul 2016

Sr. Network Engineer

Responsibilities:

Modified internal infrastructure by adding switches to support server farms and added servers to existing DMZ environments to support new and existing application platforms.

Analyzed customer application and bandwidth requirements, ordered hardware and circuits, and built cost effective network solutions to accommodate customer requirements and project scope.

Configured routers and coordinated with LD Carriers and LECs to turn-up new WAN circuits.

Experience with convert Checkpoint VPN rules over to the Cisco ASA solution. Migration with both Checkpoint and Cisco ASA VPN experience

Working with BGP, OSPF protocols in MPLS Cloud.

•Providing daily network support for national wide area network consisting of MPLS, VPN and point-to-point site.

Configuring HSRP between the 3845 router pairs of Gateway redundancy for the client desktops.

Configuring and troubleshooting CISCO catalyst 6509, 7609, 7613 with Supervisor cards, Cisco 3640, Cisco GSR 12416, 21418 (with PRP and RPR processors)

Advanced knowledge in design, installation and configuration of Juniper Net Screen Firewall ISG, SSG series and NSM Administration

Strong Troubleshooting Skills and Customer Centric approach.

To secure configurations of load balancing in F5, SSL/VPN connections, Troubleshooting CISCO ASA firewalls, and related network security measures.

Designed and implemented DMZ for Web servers, Mail servers & FTP Servers using Cisco ASA5500 Firewalls

Involved in Configuration of Access lists (ACL) on Juniper and Palo Alto firewall for the proper network routing for the B2Bnetwork connectivity.

Configuring GLBP, VLAN Trunking 802.1Q, STP, Port security on Catalyst 6500 switches.

Responsible for service request tickets generated by the helpdesk in all phases such as troubleshooting, maintenance, upgrades, patches and fixes with all around technical support.

Configuring BGP, MPLS in Cisco IOS XR.

Experience with high availability Nexus Environment and provide Level 3 Network Support.

Configuring, Upgrading and verifying the NX-OS operation system.

Converting PIX rules over to the Cisco ASA solution.

Basic and advance F5 load balancer and Cisco ACE configurations, general troubleshooting of the F5 load balancers.

Strong hands on experience on PIX Firewalls, ASA (5540/5550), Imperva (WAF) Firewalls. Implemented Security Policies using ACL, Firewall, IPSEC, SSL, VPN, Sourcefire IPS/IDS, AAA (TACACS+ & RADIUS).

Experience in working with BGP route redistribution.

Hands on experience in creating a default route for BGP paths.

Experience in working with creation of Access lists (ACL) & Network Address Translation (NAT) for allowing or blocking certain traffic for EBGP/IBGP peers

Configuring Virtual Device Context in Nexus 7010.

Working on HP open view map for Network Management System and Ticketing

Involved in Configuration of Access lists (ACL) on ASA firewall for the proper network routing for the B2B network connectivity.

Providing Level 3 support to customers, resolving issues by attending to conference calls.

Providing Level 3 Engineering and Support to other internal network engineers and contractors.

Designing and installing new branch network systems.

Resolving network issues, running test scripts and preparing network documentation.

Actively participated in upgrading fast Ethernet, Layer 3 switched/routed LAN infrastructure from Cisco 3640 to Cisco 2811 ISR routers and switches at access level to 2950, 3550.

Converting Cato’s to Cisco IOS Config Conversion on distribution layer switches

Configured various Router interfaces like ATM interface, T3 & Channelized T1 interfaces

Environment: Cisco 2k, 3k,4k,6k switches and Cisco 2k, 3k, 7k, 12k routers, Cisco ASA5510, Checkpoint, F5 BIGIP LTM, RIP, OSPF, BGP, EIGRP, LAN, WAN, VPN, HSRP, Cisco Nexus 7K/5K.

West Safety Services, Denver CO Nov 2013 – Jan 2015

Network Engineer

Responsibilities:

Working on a broad range of topics such as routing and switching, dedicated voice access, planning and implementation, large-scale high-visibility outages, change management coordination, proactive monitoring and maintenance, disaster recovery exercise and core network repairs.

Excellent Knowledge on OSI and TCP/IP layers.

Advanced knowledge in design, installation and configuration of Juniper Net Screen Firewall ISG, SSG series and NSM Administration

Working in high availability Nexus environment and provide Level 3 network support.

Configuring, upgrading and verifying the NX-OS operating system.

Designing and installing new branch network systems.

Resolving network issues, running test scripts and preparing network documentation.

Implemented Positive Enforcement Model with the help of Palo Alto Networks and deployed PAN-5050.

Working with CISCO Nexus 7000, Nexus 5000, and Nexus 2000 platforms

Good understanding of VoIP implementation and protocols such as H.323, RTP, and SIP.

Create, assign and provide IP and DNS records for server and application teams using Microsoft DNS server.

Used VLAN Trunk Protocol (VTP) while configure a new VLAN on one VTP server

Establish VPN tunnels using IPsec encryption standards and configure & implement site-to-site VPN, Remote VPN.

Designed and implemented a spine/leaf data center design, using MP-BGP EVPN control plane for VXLAN overlay

Configuring HSRP between the 3845-router pairs of gateway redundancy for the client desktops.

Configuring GLBP, VLAN, VTP's, Trunking 802.1Q, STP, Port security on Catalyst 6500 switches.

Enable multicast routing on a Cisco ASR 9000 Series router

Configure virtual private LAN service (VPLS) L2VPN on ASR 9K

Configure VPLS with Border Gateway Protocol (BGP) auto discovery on ASR 9K

Designed multi-site ACI SDN networking solution for the cloud environment.

Identify and drive new Customer use cases for SDN Controller and VNF Management Deployments

Configured and supported multiple remote site installations. Migration from ASR1002-X Routers to ASR 1006.

Implement migration plan network engineers on switch/routers refresh ASR9K/1K per low-level design troubleshoot migration issues

Evaluate technologies for Managed Services Service Assurance from SDN/NFV standpoint

Involved in L2/L3 Switching technology administration including creating and maintaining VLANs, Port security, Trunking, STP, Inter Vlan Routing, LAN security.

Worked on updating the SSL certificates to the application URL using the F5 LTM and F5 GTM.

Utilized Wireshark for implementing enterprise monitoring and configuring F5 Big-IQ, BIG-IP Application Security Manager, Advanced Firewall Manager and BIG-IP DNS, GTM/LTM for the F5 BIG-IP 3900 and 6900 platforms.

Responsible for service request tickets generated by the helpdesk in all phases such as troubleshooting, maintenance, upgrades, patches and fixes with all around technical support

Configured VoIP using Cisco Call Manager, RTP for real time voice transfer, settings of QoS using CoS Trust Boundaries, call controlling signaling like MGCP, H323 and SIP.

Experience with ALG (RTP, RTSP and FTP, DNS, HTTP), DHCP.

Working on Cisco Secure ACS (RADIUS/TACACS+) authentications.

Environment: Cisco Routers, Switches, OSPF, EIGRP, Access Control Server (ACS), DMVPN, VPN, MPLS, LAN, WAN, ASA, ASR, SolarWinds, Cisco Prime, VMware, Cisco ISE, NetScaler, F5 Load Balancer, Blue coat.

Thomson Reuters, Hyderabad, India Oct 2011 – Aug 2013

Network Administrator

Responsibilities:

Configuring Static, IGRP, EIGRP, and OSPF Routing Protocols on Cisco 1600, 2600, 2800, 3600, 7300 series Routers.

Configured Site-to-Site IPsec VPN tunnels to peer with different clients and each of client having different specifications of Phase 1 and Phase 2 policies using Cisco ASA 5500 series firewalls.

Configured VLAN's, Private VLAN's.

Configure various LAN switches such as CISCO CAT 2900, 3550, 4500, 6509 switches.

Configuring access layer switches such as Cisco 4510, 4948, 4507 switches for VLAN, Fast Ether Channel configuration.

Configured inside ACL and interfaces, outside ACL and interfaces.

Configured, installed software applications, anti-viruses, drivers and security software on user devices, maintained and troubleshoot desktop, laptop and peripheral equipment.

Perform hardware and software diagnostics, fault isolation and coordinate repairs and/or replacement of faulty equipment.

Maintain logs of network and bandwidth utilization of servers and network devices and create utilization report based on the logs

Design network and create physical and logical network layout diagrams

Write and maintain technical documents describing implemented technologies and architecture

Provided consultation services to clients for installing and configuring Cisco routers and switches

Configured NAT and PAT policies.

Configuration and troubleshooting of EIGRP, OSPF, BGP.

Design OSPF areas for reliable Access Distribution and for Core IP Routing.

Extensively used TCP/IP tool like TELNET for remote login to the routers and SSH for secure login.

Has expertise in LAN/WAN technologies (fast Ethernet, Layer2 & 3 switched/routed LAN, and Frame Relay)

Environment: Cisco Routers ASR1002X/3945/3845/2800/3600, Cisco ASA Firewalls, STP, VLAN, VTP, VPN, NAT, OSPF, BGP, EIGRP, Load Balancer (BIG-IP)

Dr. Reddy’s, Hyderabad, India Nov 2009 – Sep 2011

Jr. Network Engineer

Responsibilities:

Installing and maintaining Windows NT Workstations and Windows NT Server.

Providing technical support to LAN & WAN systems.

Monitoring performance of network and servers to identify potential problems.

Performing RIP, OSPF, BGP, EIGRP routing protocol administration.

Preparing feasibility report for various upgrades and installations.

Other responsibilities included documentation and support other teams.

Configuring and troubleshooting multi-customer ISP network environment.

Involved in network monitoring, alarm notification and acknowledgement.

Installing and maintaining Windows NT Workstations and Windows NT Server.

Providing technical support to LAN & WAN systems.

Configuring and troubleshooting multi-customer ISP network environment.

Involved in network monitoring, alarm notification and acknowledgement.

Implementing new/changing existing data networks for various projects as per the requirement.

Troubleshooting complex networks layer 1, 2(frame relay, ATM, Point to Point, ISDN) to layer 3 (routing with BGP, EIGRP, OSPF and RIP protocols) technical issues.

Working on creating new load balancing policies by employing BGP attributes including Local Preference, AS-Path, and Community, MED.

Monitoring performance of network and servers to identify potential problems.

Performing RIP, OSPF, BGP, EIGRP routing protocol administration.

Implementing new/changing existing data networks for various projects as per the requirement.

Troubleshooting complex networks layer 1, 2(frame relay, ATM, Point to Point, ISDN) to layer 3 (routing with BGP, EIGRP, OSPF and RIP protocols) technical issues.

Working on creating new load balancing policies by employing BGP attributes including Local Preference, AS-Path, and Community, MED.



Contact this candidate