Network Engineer
Resume:
Name: Bharath Yellamilli
Phone: 732-***-****
Email: ac6hpb@r.postjobfree.com
Role: Network Engineer
Availability: Two weeks
SUMMARY:
8+ years of experience in Technology domain with specialization in Datacenter management and customer connectivity. Experience in configuring, optimizing, and troubleshooting of complex network infrastructure which includes expertise at enterprise wide Routing, Switching, Network Security and Wireless domains.
Skills Overview:
Experience in Designing, configuring and troubleshooting, security policies, Modular Policy Framework, Routing instances, Zone Based firewalls and implementing different failover mechanisms on Palo Alto (PA 5020 and PA 3020), Juniper, ASA 55XX&Checkpoint R77 firewalls.
Exposure to Wild Fire feature of Palo Alto.
Expertise configuring and monitoring Checkpoint firewalls through Smart Dashboard and Smart View Tracker Applications.
Migration of the firewall rules from Cisco ASA 55XX to Palo Alto firewalls using migration tool from PAN.
Implementing security policies using AAA, ACL’s, NAT, Policy NAT, PBF/PBR, Route-maps, Distribution lists and IPsec VPN’ s on different series of routers and firewalls.
Strong knowledge on mitigation of DDoS attack’ s & SSL implementation on Cisco and Palo Alto firewalls.
Expert level knowledge in firewall rule audit and optimization using Algosec.
Extensive knowledge on Kill Chain management.
Extensive knowledge on FireEye inspection.
Maintained and operated Bluecoat Proxy Manager and Reporter.
Strong knowledge of TACACS+, RADIUS implementation in Access Control Networks(ACN).
Extensively worked on different flow feeds like Cisco NetFlow and JFlow.
Strong hands on experience in installing, configuring, and troubleshooting of Cisco 7600 series routers and Juniper routers M320 and SRX series routers.
Expert level knowledge of troubleshooting, implementing, optimizing and testing of static and dynamic routing protocols such as EIGRP, OSPF, iBGP, EBGP and ability to interpret and resolve complex route table problems.
Solid knowledge on Cisco ACE, Brocade and F5 Big-IP Load balancing (LTM & GTM) method implementation and troubleshooting.
Expertise in installing, configuring and troubleshooting Cisco 6500, Nexus 7K,5K and 2K series switches and Juniper EX Switches.
Migration of Cisco 6500 to Nexus switches in complex data center environment.
Configuring and Troubleshooting HSRP, VRRP, GLBP, HA protocols.
Expert level knowledge of implementing and troubleshooting complex layer 2 technologies such as VLAN Trunks, VTP, Ether channel, Port Channel, VPC, STP, RSTP and Fabric Path.
Worked on network monitoring tools such as NMAP, Solar Winds, Wireshark (Ethereal) and Splunk.
Experience in installing and configuring DNS, DHCP and Forward proxy servers.
Administer and diagnose LAN and WAN with in-depth knowledge of TCP/IP protocol stack.
Expert level knowledge in OSI model, in depth knowledge and hands on experience on IPV4Addressing, VLSM, ARP, reverse ARP, proxy ARP and ICMP Concepts.
Extensive knowledge in manipulating network devices using PANOS, Cisco IOS, Junos and NX-OS.
Enterprise in network design and documentation using Microsoft Visio.
Knowledge on Cisco Firewalls, Cisco PIX (506E/515E/525/) & ASA 5500(5510/5540) Series.
Expertise in installing, configuring and troubleshooting using Cisco Asset Management Suite.
Troubleshooting & implementation of Vlan, STP, MSTP, RSTP, PVST, 802.1Q, DTP, HSRP, VRRP, GLBP, LACP, PAGP, AAA, TACACS, RADIUS, MD5, VTP & SVI.
Experience working with Cisco IOS-XR on the ASR9000 devices for MPLS deployments.
IOS/JUNOS upgrade for Cisco & Juniper routers cum switches.
Experience in testing Cisco & Juniper routers cum switches in laboratory scenarios and deploy on site for production.
Decent knowledge on cloud concepts, web services, and APIs (Amazon Web Services (AWS), OpenStack).
TECHNICAL SKILLS:
Firewalls
Palo Alto (3020, 5020), Checkpoint (R77), ASA (5500 series), Juniper (Net Screen 204).
Network Security
ACL’s, MPF, IPSEC, VPN, Port Security, AAA and IDS/IPS.
Routing
OSPF, EIGRP, BGP, PBR, IS-IS, Redistribution, Summarization.
Routers
Cisco 76XX,72XX series, Juniper M320, T640, SRX series
Load Balancer
Cisco ACE 4710, F5 Networks (Big-IP) & Brocade Load Balancers
Switching
VLAN, VTP, STP, PVST+, RPVST+, MSTP, ISL, 802.1q, Inter VLAN routing; Multi-Layer Switch, Multicast operations, Layer 3 Switches, Ether channels, Transparent Bridging
Switches
Cisco 65XX, Nexus 6K, 5K and 2K series and Juniper EX
CISCO ACS Server
RADIUS, TACACS+, and Digital Signatures.
LAN
Fast Ethernet, Gigabit Ethernet.
WAN
Frame Relay, AVPN, MPLS, SSL.
Various Features & Server
PANOS, IOS, Junos, NX-OS, HSRP, GLBP, VRRP, IRDP, NAT, SNMP, SYSLOG, NTP, DHCP, CDP, LLDP and FTP Management.
Tools
Wire Shark(Ethereal)& NMAP.
Reports
Microsoft (Visio pro.), Checkpoint (SmartView)
Operating Systems
Windows, Linux (RHEL 7) and Unix
EDUCATION:
Bachelor’s in Electrical and Electronic Engineer
CERTIFICATIONS:
Cisco Certified Network Professional (CCNP)
Cisco Certified Network Associate (CCNA)
PALO ALTO Accredited Configuration Engineer (ACE)- PAN-OS 8.0 Version
PALO ALTO Accredited Configuration Engineer (ACE)- PAN-OS 7.0 Version
WORK EXPERIENCE:
Key Bank, Cleveland, OH Oct 2016 – Present
Role: Palo Alto Engineer
Responsibilities:
Responsible for firewall rule set migration from Cisco ASA to newly implemented Palo Alto.
Worked with Palo Alto firewalls PA3020, PA5020 using Panorama servers, performing changes to monitor/block/allow the traffic on the firewall.
Troubleshooting the issues with the application owners hosted on the F5 environment in the 3- tier environments
Configuring rules and maintaining Palo Alto firewalls & analysis of firewall logs using various tools.
Centrally managed all Palo Alto Firewalls using Palo Alto Panorama M-100 management server.
Perform firewall rule audit and optimization using Algosec.
Worked on F5 VIPRION4800 series BIG IP devices, configured VIP’s with HTTP/SSL profiles, pools, configured iRules and ensured high availability.
Worked on FireEye for inspection of common attacks that enter our network.
Configure policies on the Bluecoat VPM, local database and PAC files to filter the traffic flow by creating custom rules, URL filters(PAN-DB) and routing policies.
Worked on ASA 5585firewalls configuration and Implementation for the network security.
Troubleshoot, conduct scans and assess Network issues, then patch vulnerabilities and mitigate DDoS attacks and other.
Troubleshooting various network security related issues using Cisco SDM.
Responsible for design and administration of complex network consists of Cisco7600series routers, Nexus7K, 5K Series switches.
Used NX-OS to manage Nexus switches.
Implementing Open Shortest Path First (OSPF) manipulated routing updates using route-map, distribute list and administrative distance.
Provided redundancy configuring BGP multi-homing using dual ISP links.
Worked on Most modern high-level NAC offer the ability to link in with many of these other systems and work in unison with them.
Monitoring links and configuration management using Solar Winds and NMAP.
Created Network connectivity diagram using Microsoft Visio.
Experience in enabling secure remote access to virtual desktops and applications Citrix Access Gateway.
Installation of Centos and/or RHEL (Red hat Enterprise Linux) 5.X.
Used Palo Alto Dashboard to monitor servers and status of firewalls.
BNSF Railways, Ft. Worth, TX Jun 2015 – Sep 2016
Role: Network Security Engineer
Responsibilities:
Worked on the migration to new Checkpoint R77 Firewalls from Juniper Firewalls.
Creating a rule on the checkpoint firewall for a NAT (used ACLs to block unauthorized users) to the VLAN IP and allowing the IPsec traffic.
Experience with converting Cisco ACE load balancer to F5 LTM load Balancer in Data center environment.
Configuring various advanced features (Profiles, monitors, I Rules, Redundancy, SSL Termination, Persistence, SNATs, HA on F5 BIGIP appliances SSL termination and initiation, Persistence, Digital Certificates, executed various migration/upgrade projects across F5 and hands on with F5 BIGIP LTMs/EM.
Migrated, created, and managed pools and clusters in F5 BigIP GTM 3DNS load balancers across multiple Datacenters.
Implement Cisco Works to manage Cisco routers, switches, firewall, Access Points and VPN concentrators.
Configured Juniper M320 routers and T640 routers.
Plan and implement Juniper Net screen 204 firewalls.
Configured and maintained juniper SRX 210,220,240,650 routers.
Installing and configuring Checkpoint NG R55&NGX R60
Worked with feeds and flow feeds using JFlow.
Monitoring and maintaining LAN/WAN networks using Snort and sniffer trace.
Design and Implement Remote access VPN server using Checkpoint NGX R55 & Cisco ASA 55xx.
Modified internal infrastructure by adding switches to support server farms and added servers to existing DMZ environments to support new and existing application platforms.
Big IP F5 Load Balance experience: setting up, monitoring and configuring F5 load balancer (using LTM & GTM).
Configuring IP, RIP, EIGRP, OSPF and BGP in routers.
Time to time upgrade network connectivity between branch office and regional office with multiple link paths and routers running HSRP, EIGRP in unequal cost load balancing to build resilient network.
Convert Branch WAN links from TDM circuits to MPLS and to convert encryption from IPsec to get VPN.
Used DHCP to automatically assign reusable IP addresses to DHCP clients.
Implement ACLs and authenticate (EIGRP, BGP) to ensure high security on the network.
Used Protocol analysis tools to assess and pinpoint networking issues causing service disruption
Used Junos to configure, manipulate and monitoring all Juniper network devices.
Used Checkpoint SmartView to monitor checkpoint firewall status and maintenance.
Capital One Bank, Virginia Dec 2013 – May 2015
Role: Sr. Network Engineer
Responsibilities:
Involved in troubleshooting of DNS, DHCP and other IP conflict problems.
Worked with snipping tools like Ethereal (Wireshark) to analyze the network problems.
Hands on Experience working with security issue like applying ACL's, configuring NAT and VPN.
Configuring and analyzing ASA firewall logs.
Testing various BGP attributes like AS Path, local preference, MED, Weight and replicated customer issues in the test environment.
Spearheaded meetings & discussions with team members regarding network optimization and BGP issues.
Perform advanced troubleshooting, diagnostics and provide tier/level-1 solutions to network failures.
Design the layout for cable installations across datacenter racks.
Testing and validating new solutions in lab before deploying them to customers.
Support customers with the configuration and maintenance of ASA firewall systems.
Troubleshoot and resolved dynamic routing, Ethernet switching and host connectivity issues in a window and network environment.
Troubleshoot wiring problems and serial communication lines.
Develop, plan and maintain documentation necessary for operation in support of LAN to WAN connectivity.
In-depth knowledge and experience in WAN technologies including T3, T1, MPLS and Frame Relay.
Implemented VTP and Trunking protocols (like 802.1q and ISL) on 4500 switches.
Installation, Maintenance, Troubleshooting Local and Wide Areas Networks
Configured STP for loop prevention and VTP for Inter-VLAN Routing.
Providing Network and Security Architecture and Operations support services for Windows 2008 based web, application and database servers.
Used Solar winds to monitor networks and troubleshooting.
Troubleshoot TCP/IP problems; troubleshoot connectivity issues in multi-protocol Ethernet, Environment.
Troubleshoot connectivity issues in multi-protocol Ethernet, Environment.
SV Apps, Hyderabad, India Aug 2012 – Oct 2013
Role: Network Engineer
Responsibilities:
I Responsible for Internal and external accounts and, managing LAN/WAN and checking for Security
Planning and configuring the entire IP addressing plan for the clients' network.
Managed the IP address space using subnets and variable length subnet masks (VLSM).
Involved in troubleshooting IP addressing issues and Updating IOS images using TFTP.
Provided redundancy in a multi homed Border Gateway Protocol (BGP) network by tunings AS-path.
Implemented Hot Standby Router Protocol (HSRP) various OSPF scenarios on networks consisting of 7600 routers.
F5 Big- IP LTM-6400 load balancers, all Clustered, 3DNS GTM Balancers, Active and Secondary Datacenter's, working with IIS 6 and up for migration.
Deploying and decommission of VLANs on core ASR 9K, Nexus 7K, 5K and its downstream devices
Configured policy-based routing for BGP for complex network systems.
Interacted with support services to reduce the downtime on leased lines.
Daily responsibilities included monitoring remote site using network management tools, assisted in design guidance for infrastructure upgrade & help LAN administrator with backbone connection and connectivity issues.
Configured Multiprotocol Label Switching (MPLS) VPN with Routing Information Protocol (RIP) on the customer’s Site.
Implemented strategies for operating systems, virus protection, mail systems and Internet services
Installing operating systems, software and hardware on computers.
Handling various trouble tickets, firewall rule changes, assisting other teams to bring the device to production, making DNS changes in Infoblox and routing changes.
Experience with configuring BGP, OSPF on 7609 routers.
Maintained redundancy on Cisco 2600, 2800 and 3600 routers with HSRP.
Monitor performance of network and servers to identify potential problems and bottleneck.
Network Migration from RIP to OSPF.
Shore Infotech, Hyderabad, India Mar 2010 – Jul 2012
Role: Network Engineer
Responsibilities:
Provided Tier 3 support and problem resolution for technology products and/or application.
Worked with customer and 3rd party service provider NOC for Critical and above Network events.
Helped with Pre-Implementation Lab Testing
Troubleshooting Cisco Routers and Switches (4500, 6509, 4900, 2951. 2800, 7609, 3900, 3560, 2960 series)
Basic Cisco Routing Configurations
Created event analysis report (root cause, ICA)
Wrote scripts and tools to automate deployments and improve network monitoring.
Created MOP Documentations
IP Routing (EIRGP, BGP, TCP/IP), Mail servers, network Connectivity and other LAN related issues.
Cisco Call Manager and VOIP Maintenance and setup
Maintenance and oversight of Servers and Switch of client
Provided technical training and mentoring to customers after network deployments.
Helped with Vendor Management, provided Vendor Reliability report (Scorecards, HW, SW Reliability)
Contact this candidate