Network Engineer Manager
Resume:
Shiva
Sr Network Engineer
ac7alv@r.postjobfree.com
SUMMARY
8+ years of professional experience in Network Planning, Implementing, Configuring, Troubleshooting and Testing of networking system on both Cisco and Juniper Networks
Experience with the escalation problems for Routing, Switching and WAN connectivity issues using ticketing system remedy
Experience of routing protocols like EIGRP, OSPF, RIP, and BGP
Worked on Cisco 7200, 3800, 3600, 2800, 2600, 1800 series Routers and Cisco 2900, 3500, 4500, 5500, series switches
Extensive hands-on experience with complex routed LAN and WAN networks, routers and switches
Hands-on configuration and experience in setting up Cisco routers to perform functions at the Access, Distribution, and Core layers
Experience with BIG-IP F5 load balancers, version 9.x, 10.x, 11.x, Citrix Netscalers and Web Accelerators.
Experience in the setup of Access-Lists, and RIP, EIGRP, and tunnel installations
Proficiency in configuration of VLAN setup on various Cisco Routers and Switches
Configure all Palo Alto Networks Firewall models (PA-2k, PA-3k, PA-5k etc.) as well as a centralized management system (Panorama) to manage large scale firewall deployments.
Experienced in trouble-shooting both connectivity issues and hardware problems on Cisco based networks
Network monitoring and debugging tools: SevOneNetscout, Wireshark
Wrote server scripts using Perl to work with IPv6 instead of IPv4.
Experienced with VSS, VPC, Nexus7000
Good understanding of NAT & Firewall on Aruba Controllers.
Very good experience in Installation, configuration and maintenance of SQL Server.
Wireless design for over a total of 100 million square feet.
Along with other Network Engineers participated in the management and configuration of Cisco ASA, Juniper and Palo Alto Firewalls, ACL’s, and Packet Shaping devices and rules.
Worked on various network projects involving Cisco Routers- ASR 1000/9000, Switches-Nexus 7K/5K/2K.
Enhanced level of experience with OSPF, BGP, and TCP/IP
Hands-on experience in using network monitoring tool SolarWinds Orion.
Strong knowledge on cisco ISE.
Installed, configured and deployed Cisco IP Telephony.
Good knowledge on Cisco RSA.
Build UCS manager policy-based provisioning, automation and management to high density, high performance computing.
Worked extensively on Juniper MX Series Routers and EX series Switches
Great team player and able to work under pressure 24x7 duty rotation.
Strong knowledge in HSRP, VRRP redundancy Protocols.
Strong experience on Juniper SSG series Firewalls and Checkpoint R75, 76 Firewalls
Experience in Network Management Tools and sniffers like SNMP, HP-Open view, Wireshark and Cisco works to support 24 x 7 Network Operation Center.
Experience in physical cabling, IP addressing and subnetting with VLSM, configuring and supporting TCP/IP, DNS, installing and configuring proxies.
Access control server configuration for RADIUS & TACAS+.
Hands-on experience using Cisco Virtual Switching System (VSS).
Good knowledge on Bluecoat proxy server SG• Knowledge of advanced technologies like VOIP, H.323, SIP, QOS, Multicasting, MPLS and MPLS-VPN
Experience with 802.11x wireless technology.
Experience with Juniper SRX 240 Firewalls
Ability to Install, Manage & Troubleshoot Large Networks & Systems Administration on Windows & Linux platforms in Development, Lab & Production Environments.
Hands-on Experience with CISCO Nexus 9000, Nexus 7000, Nexus 5000, and Nexus 2000 platforms.
Experience with configuring Nexus 2000 Fabric Extender (FEX), which acts as a remote line card (module) for the Nexus 5000.
Tested and worked with software designers to establish a user-friendly environment.
Technical Skills:
Cisco Platforms
Nexus 7K, 5K, 2K & 1K, Cisco routers (7600,7200, 3900, 3600, 2800, 2600, 2500, 1800 series) & Cisco Catalyst switches (6500, 4900, 3750, 3500, 4500, 2900, 6807 series),
Juniper Platforms
SRX, MX, EX Series Routers and Switches
Networking Concepts
Access-lists, Routing, Switching, Subnetting, Designing, CSU/DSU, IPSec, VLAN, VPN, WEP, WAP, MPLS, VoIP, Bluetooth, Wi-Fi
Firewall
ASA Firewall (5505/5510), Checkpoint, Cisco ASA
Network Tools
Solar Winds, SNMP, Cisco Works, Wireshark
Load Balancers
Cisco CSM, F5 Networks (Big-IP)
WAN technologies
Frame Relay, ISDN, ATM, MPLS, leased lines & exposure to PPP, DS1, DS3, OC3, T1 /T3 & SONET
LAN technologies
Ethernet, Fast Ethernet, Gigabit Ethernet, & 10 Gigabit Ethernet, Port- channel, VLANS, VTP, STP, RSTP, 802.1Q
Security Protocols
IKE, IPSEC, SSL-VPN
Networking Protocols
RIP, OSPF, EIGRP, BGP, STP, RSTP, VLANs, VTP, PAGP, LACP, MPLS, HSRP, VRRP, GLBP, TACACS+, Radius, AAA, IPv4 and IPv6
Operating System
Windows 7/XP, MAC OS X, Windows Server 2008/2003, Linux, Unix
CERTIFICATIONS
Cisco Certified Network Professional (CCNP)
Cisco Certified Network Associate (CCNA)
Professional Experience:
Black Knight Financial, Jacksonville, FL Mar 2017 – Present
Network Engineer Sr
Responsibilities:
Configuring Static, IGRP, EIGRP, and OSPF Routing Protocols on Cisco 1600, 2600, 2800, 3600, 7300 series Routers.
Configured Site to Site IPsec VPN tunnels to peer with different clients and each of client having different specifications of Phase 1 and Phase 2 policies using Cisco ASA 5500 series firewalls.
Configured Easy VPN server and SSL VPN to facilitate various employees’ access internal servers and resources with access restrictions
Responsible for entire company network infrastructure that includes Cisco Switches, Routers, Firewalls, Access Points, Servers and PBX.
Configured VLAN’s, Private VLAN’s.
Design, and configuring of OSPF, BGP on Juniper Routers and SRX Firewalls
Subject Matter Expert for juniper Routing, Switching, Security, and VPN Systems
Configure various LAN switches such as CISCO CAT 2900, 3550, 4500, 6509 switches and Access layer switches such as Cisco 4510, 4948, 4507 switches for VLAN, Fast Ether Channel configuration.
Designed and Implemented Firewalls, F5Viprion deployments to Front end and DMZ customers
Configured inside ACL, outside ACL, inside, outside interfaces.
Configured NAT and PAT policies.
Configuration and troubleshooting of EIGRP, OSPF, BGP.
Configuration and troubleshooting of CSM, integration with ASA devices.
Experience in migration of VLANS & Configured VLANs with 802.1q tagging, Ether channels, and Spanning tree for creating Access/distribution and core layer switching.
Installed and configured DNS, DHCP. Responsible for creating and configuring FORWARD LOOKUP ZONE AND REVERSE LOOKUP ZONE
Redistributed required routes from OSPF in to BGP. OSPF cloud is present in US and is connected to all our customers over Sprint’s Frame Relay backbone
Implementation of Access Lists for allowing/blocking desired traffic.
Configured EBGP load balancing and ensured stability of BGP peering interfaces
Implemented site to site VPN in Juniper SRX as per customer Worked on Route-Reflectors to troubleshoot BGP issues related to customer route prefixes also route filtering using Route-maps.
Designed and implemented DMZ for Web servers, Mail servers & FTP Servers using Cisco ASA5500 Firewalls.
Deployed BIG IP Enterprise manager to cluster all the F5 LTM, GTM, ASA, Netscreen devices for easier management and common configurations.
Involved in migration of F5 Local traffic managers of LTM 5100 series to LTM 6800 series for higher.
Extensive use of NSM (Network and Security Manager) and CSM (Cisco Security Manager) for adding or modifying firewall policies for the firewalls in use.
Worked extensively on Cisco ASA 5500(5510/5540) Series, experience with convert PIX rules over to the Cisco ASA solution.
Worked on migration of existing PIX firewall to ASA firewall, PIX OS upgrade from 6.3 to 7.0.
Design and Implement DMZ for FTP, Web and Mail Servers with CISCO PIX 506, PIX515
Worked extensively on Cisco ASA 5500(5510/5540) Series, experience with convert PIX rules over to the Cisco ASA solution.
Building the VPN tunnel and VPN encryption.
Mapped, Network Diagrams and physical identification in MS Visio.
Worked with engineering team to resolve tickets and troubleshoot L3/L2 problems efficiently.
Configured Cisco 2800, 3800 routers and 3750, 4500, 6500 switches as part of the implementation plan.
TIAA-CREF, Charlotte, NC Oct 2014 – Feb 2017
Sr Network Engineer
Responsibilities:
Experience working with Nexus 7018/7010, 5020, 5548, 2148, 2248 devices
Experience with configuring Nexus 2000 Fabric Extender (FEX) which acts as a remote line card (module) for the Nexus 5000
Involved in upgrading switches from 6500 E to 4500-X
Implementation of BGP to optimize WAN routing on the core and edge routers.
Mutual redistribution of OSPF and BGP routes using route maps.
Involved in upgrades to the WAN network from existing 7200vxr with ASR1004 and 3845/3945 routers.
Networking Experience- Cisco IOS, racking and cabling of servers, experienced with TCP/IP, Ethernet (802.3), Wireless […] networking motoring, firewall implementation
Palo Alto design and installation (Application and URL filtering, Threat Prevention, Data Filtering)
Configuring rules and Maintaining Palo Alto & Analysis of firewall logs using various tools.
Build Cisco UCS 6200 series fabric interconnect.
Provides direct support for all hardware moves, add and changes for the VoIP devices and troubleshot with customers on site and remote.
Experience in Layer 3 routing - Cisco Routers: 2500, 2600, 3600, 3800, 3900, 7200 series, ASR 9000, 9001, 9006 series.
Worked on F5 BIG-IP LTM 8900, configured profiles, provided and ensured high availability.
Provides Level-3 incident response and problem management support for IP Telephony platforms, interfacing with other key Corporate IT teams, such as LAN, WAN, Security and/or IT Service Center
Worked on F5 and CSM load balancers deploying many load balancing techniques with multiple components for efficient performance.
Also worked with Cisco ASA's 5505 and 5520, 5512X, 5515X.
Developed and implemented core network consolidation plan. Included redundant configuration of Juniper EX8200.
Racking, Stacking, configuring, Nexus 5K, 7K and 9K, Static pinning fabric interface connection, Port Channel fabric interface connection, configuring a Fabric Port Channel Created Build-Outs of New Safe Zone in Palo Alto Panorama VLANS, VIP, IP, VRF, BGP.
Configuring Static, IGRP, EIGRP, and OSPF Routing Protocols on Cisco ASR 9000, 9001, 9006, 6500 series Routers.
Created labs for F5 APM, ASM, and LTM implementations of Microsoft Exchange, Microsoft SQL, Microsoft IIS services, LAMP servers,
Created VSYS Builds from Checkpoint to Palo Alto Panorama Database Zone, Access Zone.
Created and resolved Palo Alto and Checkpoint Firewall Rules, Routing, Pushed Policy.
Migrated over 50+ 3845 infrastructure to a 3945-series router. The new platform
positioned corporate-wide move to IPv6 to support depletion of IPv4.
Configuration and troubleshooting on HSRP, VRRP, GLBP, RSTP, MST related issues coming in network environment
Expert in troubleshooting F5 software modules, including BIG-IP LTM, ASM, APM, and iRules (Tcl-based script).
Designed OPNET labs for the switching and QOS management in IP Networks course
Put together Cisco BoM in preparation for IP Telephony migrations.
Involved in the redesign of the routing architecture while replacing the 6500’s edge routers with ASR 9K routers in the data centers.
Aruba Clear Pass Policy Manager configuration and installation for VMWare appliance and hardware appliance
Handling Checkpoint and Checkpoint firewalls appliances, Checkpoint Provider-1/Multi-Domain-Mgmt. platform, Check point Smart Console R70.20 & R75.40, R77.10, R77.20.
Hands on Experience testing iRules using Browser (IE), HTTP watch on f5 load balancers.
Designs and implement the security appliance ASA and Sonicwall for the Site to Site, AnyConnect, SSL and Remote access VPN of many clients.
Upgraded Roger Management Network security appliances with Cisco Firewall ASA 5580, IDS, network management tools Cisco works (VMS, LMS, CSM), IDS/IPS.
Configuration of Virtual Servers, Nodes, and load balancing Pools
Implemented best practices in structuring SQL queries, Debugging Unexpected SQL Results etc.
Planning/Implementation of the Cisco VPN clients to Cisco anyconnect.
Perform wireless surveys for coverage, high capacity and location services with Air Magnet Pro.
Worked with different control flow elements like Data Flow Task, Bulk Insert Task, Active X scripts, Execute SQL Task, Script Task, Send Mail Task, and XML Task.
Installed high availability Big IP F5 LTM and GTM load balancers to provide uninterrupted service to customers.
Design, and configuring of OSPF, BGP on Juniper Routers and SRX Firewalls
Configuration and extension of VLAN from one network segment to their segment between Different vendor switches (Cisco, Juniper)
Implement and Troubleshooting issues including but not limited to 2600-7600 Series Routers, ISR and ASR routers (1Ks, 9Ks), & 2900-6500 Series Switches, Cisco Nexus 5000&7000 Series Switches and Nexus fabric extenders FEX2000s, Cisco UCS technologies, Cisco VSS/VPC, fabric path, OTV, VPLS technologies, WLAN controllers
Tested & evaluated various wireless products and software in a lab environment to comply with company and/or customer requirements.
Convert Campus WAN links from point to point to MPLS and to convert encryption from IPSec/GRE to GetVPN.
Handles different networking platforms such as Cisco ASA firewall, ASR routers, Cisco Catalyst switches and routers, Bluecoat Packetshaper, Cisco WSA.
Enabled STP attack mitigation (BPDU Guard, Root Guard), using MD5 authentication for VTP, disabling all unused ports and putting them in unused VLAN and ensuring DHCP attack prevention where needed
Troubleshooting and installing of CRS, ISR, GSR, ASR9000 and Nexus devices.
Engineering the configurations for the different branches, campus locations
Responsible for layer 2 securities which was implemented using a dedicated VLAN ID for all trunk ports, setting the user ports to non-Trunking, deployed port security when possible for user ports
Responsible for Cisco ASA firewall administration across our global networks
Involved in the redistribution into OSPF on the core ASA firewall.
Involved in the removal of EIGRP from all devices and making OSPF the primary routing protocol.
Involved in the modification and removal of BGP from the MPLS routers.
Migration of existing IPSEC VPN tunnels from Pre-Shared key to Certificate Authority for purpose of scaling
Berkley Medical Management Solutions, Overland Park, KS Jul 2013 – Sep 2014
Sr Network Engineer
Responsibilities:
Maintain and track the status of device supplied to the client.
Coordinating with JTAC for faulty part replacement and configuring standby device to support customer with minimal downtime.
Implementing and maintaining WAN/LAN and WLAN networks in different diagrams
Identified opportunities for implementation of network best practices, particularly F5 load balancer implementations.
Monitor performance of network appliances and WAN utilizing using network analyzer like Wireshark.
Study of migration of the old WAF infrastructure from DenyAll to F5 BIG IP ASM technologies.
Responsible to providing support for IT infrastructure in the laboratory. Surveillance activities for physical and virtual switches. Openflow, 802.1x and MAC authentication test.
Involved in migration of F5 Local traffic managers of LTM 5100 series to LTM 6800 series for higher.
BigIP ASM Positive and Negative Policy Reinforcement, iRule, Full proxy for HTTP, Server Performance Anomaly Detection.
Security systems and appliances Cisco ASA 5520, Fortinet, Bluecoat, Packet Shaper 7500).
Extensive experience in using T-SQL (DML, DDL, DCL) in SQL Server […] platforms.
Configuring and managing FC zones on Cisco 9K/7K/5K.
Firewall worked upon include Checkpoint (R77 GAiA GUI) and Cisco ASA's (ASDM GUI).
Focused on building new content and functionality for several F5 ecommerce sites.
Created and resolved Palo Alto and Checkpoint Firewalls Rules, Routing, Pushed Policy.
Created and resolved Checkpoint, Palo Alto Customer Orders, and Request Orders.
Configuration of Fabric path and connectivity between Nexus 7K and Nexus 5K.
Configuration and installation of Nexus 5K.
Researches software and hardware issues related to the company's IP Telephony infrastructure
Designed, installed, configured and deployed enterprise-wide Cisco IP Telephony platform.
Migration of corporate networks from IPv4 to IPv6.
Experience in CSM& Waterfall Methodologies
Managed all project work related to F5.com development (code, content, and marketing).
Drove development of new API's related to F5 product trials that focused on verifying and capturing.
Maintenance and trouble-shooting of LAN, WAN, IP Routing, Multi-Layer Switching.
Performed interconnection of customer sites using IPSec VPN.
Perform Packet shaper Bluecoat 75000 OS upgrade, maintenance and configurations
Cisco ASA and PIX: NAT, Failover, Remote VPN, ACLs.
Performing onsite data center support including monitoring electrical power, switch alarms, network alerts and access logs.
VSS, VPC, VRF, VDC, SNMP, Netflow, NAT, ACL.
RTMT experience with VoIP and VoSIP (monitoring clusters).
Installation and trouble-shooting of routing protocols like static and dynamic.
Implemented site to site VPN in Juniper SRX as per customer.
Provides direct support for all hardware moves, adds, and changes for the VoIP devices.
Configure Aruba routers for work at home Humana employees.
Responsible for providing Certification and Accreditation support for Cisco VoIP systems and helping with Voice Engineering efforts.
Developing access lists to meet user specifications.
Supporting core layer, distribution layer and access layer issues.
Tracking and installation of requirements & development by working with client and related teams to implement changes.
Installed high availability Big IP F5 LTM and GTM load balancers to provide uninterrupted service to customers.
Optimizing and monitoring the performance of a WLAN, LAN, WAN and user's segments
Configuring RIP, OSPF and Static routing on Juniper M and MX series Routers
Configuring VLAN, Spanning tree, VSTP, SNMP on EX series switches
Maintain connectivity for approximately 300 switches and routers in a 500+ node network.
WLAN integration of all hotspot access points with wired central LAN infrastructure by using bridged backhaul point to point, point to multi-point and mesh type wireless network topology
Experience with configuring OTV between the data centers as a layer 2 extension.
Experience with configuring FCOE using Cisco Nexus 5548.
Implemented cluster and configuration of SRX-100 Juniper firewall.
Implemented cluster and configuration of SRX-110 Juniper firewall.
Installed Trapeze-MX 2800 wireless controller and light weight access points.
Working with MPLS Designs from the PE to CE.
Maintain, monitor, and troubleshoot network devices, wireless.
Experience with designing and deployment of MPLS Traffic Engineering
Polaris, India Dec 2012 – Jun 2013
Network Engineer
Responsibilities:
Actively participated and completed many projects based on MPLS VPN, Internet Solutions for corporate customers Backbone.
Actively participated Implementation and customization of customer network.
Currently working on wireless upgrade project for Allegheny Health network and their EPIC roll out.
Designing, Provisioning and Installation of the Customer Sites in Oracle IPSA for MPLS Backbone.
Verifying IPv4/IPv6 Addressing Architecture.
Verifying Dynamic Host Configuration Protocol for IPv6 (DHCPv6) and DNSv6 options.
Performed wireless network design, site surveys, as well as Troubleshooting and repairing any issues that occurred on site.
Managing proxy server for branches and head office for internet access through Bluecoat Proxy SG600 for URL Filtering, traffic acceleration and visibility reporting with Bluecoat reporter.
Configuration and troubleshooting of many link types i.e. SONET Controllers for sub E1/T1, E3/T3 and POS controllers for STM1 links.
Provided tier 3 support for Checkpoint Firewall-1 software to support customers.
Work on Checkpoint Platform including Provider Smart Domain Manager. Worked on configuring, managing and supporting Checkpoint Gateways.
DNS Zone administration for 13 countries across EU for COLT customers.
closely with RIR(Regional Internet Registry) to procure PI(Provider Independent) and PA
Responsible for troubleshooting complex networking issues in service provider MPLS & internet
Aggregately) IP addresses and AS numbers for COLT and customers.
Set up DNS Reverse Delegation according to RIPE rules in RIPE Database.
iGATE, India Aug 2010 – Nov 2012
Network Engineer
Responsibilities:
Configured Cisco Routers for OSPF, RIP, IGRP RIPv2, EIGRP, Static and default route.
Performed troubleshooting, while maintaining trouble ticket tracking, following internal/external escalation procedures and customer notifications.
Supporting Development team for the access to corporate network and outside world. Providing access to specific IP, Port filter and port access.
Configured the Cisco router as IP Firewall and for NATting.Switching (Ethernet) related tasks included implementing VLANS and configuring ISL trunk on Fast-Ethernet channel between switches.
Installing new equipment to RADIUS and worked with MPLS-VPN and TACACS configurations.
Installing and maintaining local as well as network printers.
Working on creating new load balancing policies by employing BGP attributes including Local Preference, AS-Path, and Community, MED.
Providing technical support to LAN & WAN systems.
Configuring all the required devices and equipment for remote vendors at various sites and plants.
Installation and maintenance of new network connections for the customers.
Installing and maintaining Windows NT Workstations and Windows NT Server.
Monitor performance of network and servers to identify potential problems and bottleneck.
Configuring routers and send it to Technical Consultants for new site activations and gives online support at the time of activation.
Provided technical support on hardware and software related issues to remote production sites.
Performed administrative support for RIP, OSPF routing protocol.
Contact this candidate