Neel P

Cell No.: - +1-331-***-**** Email: ac7jk0@r.postjobfree.com

Professional Summary: -

Over 6+ Years experienced Certified Network Engineer in Network design, Security, Tier support of Networks in various environments. Also, Responsible for service request tickets generated by the helpdesk in all phases such as troubleshooting, maintenance, upgrades, patches and fixes with all around technical support.

Worked on Cisco 7200, 3800, 3600, 2900, 2800, 2600, 1800 series Router and Cisco Catalyst 2900,

3500, 4500, 5500, 6500 series switches and Nexus 9K,7K&5K switches.

Experience of routing protocol like (ERGIP, OSPF, RIP, BGP, IGRP,) PPP, PPTP, L2TP, NAT, IPsec in Production Environment.

Experienced on configuring the Nexus 5K Aggregation Switch and Nexus 2k Fabric Extenders.

Developed VDC, VPC, VRF, and OTV on the Nexus 5K and 7k switches.

Expensively worked on Cisco Catalyst C6807XL, WS-C6509, WS-C6506, WS-C4506, and implemented VSS on them.

Good knowledge of CISCO NEXUS data centre infrastructure with 5000 and 7000 series switches includes (5548, 7010) including CISCO NEXUS Fabric Extender (2232, 2248).

Configured RACL (Router ACL), VACL (VLAN ACL), PACL (Port ACL).

Well experienced in configuring gateway redundancy protocols like HSRP, GLBP, and VRRP.

Access control server configuration for RADIUS & TACAS+

Experience in troubleshooting NAT configurations, Access-Lists (ACL), and DNS/DHCP related issues within the LAN network.

Extensively used TCP/IP tool like TELNET for remote login to the routers and SSH for secure login.

In-depth expertise in the implementation of analysis, optimization, troubleshooting and documentation

of LAN/WAN networking systems.

Experience in cisco: Physical cabling, IP addressing, Wide area Network Configuration (Frame-relay & MPLS), routing protocol configuration (RIP, EIGRP, OSPF, BGP).

Design, implement and manage security tools and systems such as IDS, IPS, VPN, WAF, DLP, AV, Cisco AMP, SEIM, Vulnerability.

Expertise in working with Cisco ASA and PIX firewalls with IPsec tunnels, zones, global protect mode, Zone based tunnels, IKE Crypto.

Designed security policies on Palo Alto network firewall for controlling what traffic needs to be allowed or blocked based on customer requirements.

Used Cisco ACI Fabric which is based on Cisco Nexus 9000 series switches and Cisco Application Virtual Switch (AVS).

Proficient Hands on experience vendor platforms such as Cisco, Juniper routers and Switches, F5 load balancer, Checkpoint firewalls and Cisco ASA and PIX firewalls.

Experience on configuring protocols like VLANS, NAT, DHCP, and Routing for Cisco ASA firewalls as per design.

Experience in ASA Clustering for high availability and load sharing to ISP.

Sound knowledge of virtual firewalls like checkpoint VSX, IDS, IPS as well as encryption techniques.

Expensively worked on Cisco Catalyst C6807XL, WS-C6509, WS-C6506, WS-C4506, and implemented VSS on them.

Experience in physical cabling, IP addressing and Sub-netting with VLSM, configuring and supporting

TCP/IP, DNS, installing and configuring proxies.

Expert knowledge of cable connectors and replacement as RJ-11, RJ-45, V.35, RS-449.

Ability to Install, Manage & Troubleshoot Large Networks & Systems Administration on Windows & Linux platforms in Development, Lab & Production Environments.

Level 1 experience in Red hat Linux and Unix (IBM AIX) operating systems.

Experience in Network Management Tools and sniffers like SNMP, HP-Open view, Wireshark and Cisco.

Technical Skills: -

Switching Technologies: - VLANs, STP, MST, ISL, 802.1q, Ether Channel, PAGP, LACP Inter VALN routing and Port channel, VTP, Spanning tree protocol like PVST+, RSTP+, Multi-layer Switching, Port Security, VVS, CEF, DCEF.

Firewalls: - Palo Alto PA-500, PA-2K, PA-3K, PA-5K & PA-7050, Checkpoint R65/R70/R75/R76/R77 Juniper firewalls, Fortinet firewall.

Routing Protocols: - OSPF, IGRP, EIGRP, BGP, RIP, IS-IS, HSRP, VRRP, GLBP, v1/v2, PBR, Route redistribution, Route filtering, Summarization, Static route.

Network Products: - Cisco routers 1700, 1800, 2500, 2600, 2800. Cisco high end routers 3600, 3800, 7200, 12010. Cisco switches 1990, 2950, 2960. Cisco campus switches 3550XL, 4984 core catalysts 4503, 4507 RE, Catalyst 6500/6503/6507.

Switches deal with: - Nexus 2000, 5000, 7000; Cisco catalyst: 3560, 3650, 3750, 4500, 4900, 6500. Juniper EX4500, EX 4200.

Security & VPN: - PIX 500 firewall, ASA 5505 firewall, AIP SSM, CSC SSM, FWSM, Fortigate, Brocade, Fortinet, Cisco CSM, ACL- Access control list, IPS/IDS, NAT, PAT, Cisco ACS, Checkpoint (3200, 5800, 15400, 15600).

Servers: - Domain servers, DNS servers, WINS servers, Mail servers, Proxy servers, Print servers, Application servers, FTP servers, Avocent console servers.

Load Balancer: - F5 Network (Big-IP) LTM 8900, 6900 and 3900, citrix net scalar.

NEXUS Features: - VDP, VPC, VRF, FEX, F&M Series line cards.

LAN Technologies: - Ethernet, Fast Ethernet, Gigabit Ethernet, LWAPs.

WAN Technologies: - HDLC, PPP, Frame Relay, Channelized links(E1/T1/E2/T2)

VPN Technologies: - GRE Tunnelling, Remote Access VPN, Site to Site VPN.

Network Security Topologies: - ASA 5520/5550 and PIX 525 firewalls, ACL, Palo Alto, Checkpoint, IPsec, IDS.

1)AT&T – Redmond, WA July’17- Present

Role: - Sr. Network Engineer

Responsibilities: -

Worked extensively with Cisco 6500, 4500, Nexus 7000, 5000 series switches, cisco 2960s series switches and cisco 3560/3750s switches. Juniper switches 2200/ EX3300/EX4200/EX4300/EX4500, QFX5100/5200.

Installing, Configuring and troubleshooting Cisco Routers (ASR1002X, 3945, 3845, 2800, 3600) and Switches to perform functions at the Access, Distribution, and Core layers.

Responsible for Date Centre migration and its operation including the change from 6500 switches to nexus series switches, configured VPC/VDC on nexus 2k, 5k, and 7k.

Implemented and Managed Cisco Nexus 7018, 7700 and Nexus 5596UP Switches configured with FEX 2248 extenders.

Involved in switching Technology Administration including creating and managing VLAN’S, port security, Trucking, STP, Inter VLAN routing, LAN security etc.

Installation and troubleshooting of firewalls Cisco ASA, and juniper firewalls.

Experience with Cisco Firepower 9300 and 4120 Fire Sight.

Supported the technologies like IWAN solutions, APIC-EM, prime Infrastructure and Cisco ASA.

Deals with creating VIP pools, nodes and created custom iRules for the virtual server like cookies persistency and redirection of URL on F5 ASM cookies issues and configures ASM polices.

F5 VIRRION hardware products like LTM, GTM series like 6400, 6800, 8800.

Installing and configuring F5 Load balancers and firewalls with LAN/WAN configuration.

Completed basic configurations on the F5 Big-IP LTMs and GTM load balancer on existing network to split traffic on web-servers.

Configured Cisco ISE for Wireless and Wired 802.1x Authentication on Cisco Wireless LAN Controllers, Catalyst Switches, and Cisco ASA Firewalls.

Complete implementation of Firepower Firewall protect threat from External attack. Unified Threat Management, Configuration of Remote VPN connectivity to remote location.

Experience in Design, Implement, migration & troubleshooting of Juniper switches, routers and firewalls and with Juniper: EX-2200, EX-4200, EX-4500, MX-480, M Series, Junos and Screens, SRX210, SRX240.

Configure all Palo Alto Networks Firewall models (PA-2k, PA-3k, PA-5k etc.) as well as a centralized management system (Panorama) to manage large scale firewall deployments.

Implemented various routing protocols such as BGP, EIGRP and OSPF on Cisco Router & Juniper MX routers also taking care of issues such as discontinues networks.

Worked on Route-Reflectors to troubleshoot BGP issues related to customer route prefixes also route filtering using Route-maps.

Maintain and configure L2 and L3 services in MPLS.

Used Python scripting for network sniffing and managed parameters for pool of servers and updated, automated and migrated different services and software by means of Ansible.

Successfully implemented iWAN technology more than 1000+ site.

Leads the team to consistently accomplish organizational and corporate goals, as measured by consistent adherence Service Level Agreement.

Providing escalated Tier-2 and Tire-3 technical support on data, video network.

Setup and create user accounts in Active Directory.

Installed and configured VMWARE Venter 6.0.

Experience with configuring DMVPN tunnels for the MPLS and ISP clouds, which are responsible for Transport, Independent Design of IWAN.

Experience in configuring Virtual Local Area Network (VLAN), spanning tree protocol (STP), VLAN Trunking Protocol (VTP), Dynamic Trunking Protocol (DTP), Per VLAN spanning Tree (PVST) and 802.1x authentication in access layer switches.

Installing network application on server, maintaining, tests, researches and resolving the problem.

Work in the incident team to solve emergency and high priority Network issues.

Preparing network diagrams and drawing to document and assist in communicating current operational status of networks.

Configured various BGP attributes such as Local Preference, MED, Extended communities, Route-Reflector clusters, Route-maps and route policy implementation.

Configured Cisco ASA 5555-X in HP Pair, migrated all the sites to sites VPN’S from Cisco routers, Palo Alto firewalls and Net Screen firewalls to Cisco ASA. Responsible for configuring site to site VPN’s and Remote access ANYCONNECT services.

Key responsibility of LAN and WAN maintenance and troubleshooting any network related problems.

Tuned according to the requirement of the organization for developing and maintaining the routers and switching.

Responsible for resolving service request tickets from the help desk which involved in providing complete technical support.

Provided high level of security to the network by installing ASA 5520 along with ACLs.

Adhered to weekly and monthly maintenance schedules to service network devices and associated equipment.

Environment: - Cisco routers (7200, 3800, 2800) and Cisco switches (6500, 3700, 4900, 2900), Nexus (7K, 5K & 2K) Routing Protocols (EIGRP, OSPF, BGP), Switching protocols (VTP, STP, GLBP, HSRP), Cisco PIX (525, 535), ASA (5505,5510) firewall. Router 2900, 3900; Cisco Catalyst Switch 3550, 2960. T1 Controllers, Juniper J series, Checkpoint R70 to R75.20, Cisco ASA, DS3 Lines (T3 Lines), Aruba, Fibber and Ethernet cabling.

2)Well-Care, Tampa, FL Dec’16 – June’17

Role: - Network Engineer

Responsibilities: -

Developing relationship with client in optimized network solution using best of practice and emergent technologies.

Designed, Implemented and troubleshooting of Cisco 2960, 3750, 3550, 3560, 6509-V-E, 6500/4500 series switches, GSR, ASR, routers with Cisco and IOS-XR and Nexus 5000/2000 series switches.

Working on installing, configuring and troubleshooting of Cisco routes (7600, 7500, 7200, 3800, 3600, 2800, 2600, 1800, 1700, 800)

Configured various BGP attributes such as Local preference, MED, Extended communities, Route-Reflector cluster, Route-maps and route policy implantation. Worked on Migration between EIGRP/OSPF to BGP between with multiple ISP’s.

Installing, Configuring and Administration of cisco routers and switches (mid and high end), Pix/ASA Firewalls, HP Switches, Juniper SRX/SSG Firewalls.

Cisco ISE installation/configuration, integration of WLAN controllers with Cisco ISE.

Experience with converting WAN routing from EIGRP/OSPF to BGP which also involved converting from point to point circuits to MPLS circuits.

Troubleshoot TCP/IP problems, troubleshoot connectivity issues.

Managed fast Layer 3 switched/routed LAN/WAN infrastructure as a part of Network team. The LAN consisted of Cisco campus model of Cisco 3550 switch at access layer, Cisco 6513/6509E switches at distribution/core.

Routing Protocols, Networking Layer1, 2, 3 Switching concepts, LAN/WAN technologies, Wireless Networking, TCP/IP concepts.

Worked on Layer 2 protocol such as STP, VTP, RSTP and MST worked on other VLAN troubleshooting issues and configured switches from scratch and deployed them into network.

Firewall technologies including configuration, risk analysis, security policies, rules creation, and modification on Cisco ASA/Juniper SRX command line & GUI.

Dealt with implementation of deployment related to Cisco ASA 5585 devices and Juniper SRX 550 devices to apply security policies on it.

Create and test Cisco router and switching operations using OSPF routing protocol, ASA Firewalls, and MPLS switching for stable VPNs. Cisco CLI, Cisco works, Network Security, Network Analysis Tools.

AAA implementation for network device management with TACACS+ and Radius server.

Team member of Configuration of Cisco 7206 router with VPN and Configuration of Catalyst switches.

Implemented and supported local and remote using Cisco devices (Cisco routers 1601,1721, 1841, 2505, 7507 and 7513; Cisco Switches 2926, 3750, and 6509 series).

Upgrading the IOS on 1900, 2900, 3500 series Cisco Catalyst switches and 2500, 2600, 3600 series Cisco routers using TFTP.

Experience in configuring and troubleshooting WAN technologies like MPLS, T1, T3, DS3, and ISDN.

Designed and replaced aging Cisco ASA Firewall architecture with new next generation Palo Alto appliances serving as Firewalls, URL and application inspection.

Implementation of site- to site VPNs, and DMVPN over the internet. Configured SSL VPN to facilitate various employee’s access internal servers and resources with access restriction.

Firewall design and installation which includes application and URL filtering, Threat prevention, and Data Filtering.

Configure VRRP & GLBP and VLAN Trunking 802.1Q & ISL, STP, Port Security on Catalyst 6500 switches.

Configured OSPF, BGP on ASR 9010 Routers.

Assisted clients with gathering information for managed devices of the Dell Secure Works iSensors, Fortinet Firewalls, Inspector, 3rd Party device (Cisco IDS/IPS, Cisco FW, Palto Alto, etc.).

Clean-up work for F5 Load Balancer like unused pool, unbound VIP and unused Real server.

Having Data Centre Design Experience, installing and Configuring Network Devices in a Data Centre

including patching the cables in the Patch Panel.

Creating and provisioning Juniper SRX firewall policies.

Experience in configuration of Juniper security appliances SRX 220, SRX 240, SRX 550, NS 50, SSG 550M, SSG 520M.

Environment: - Routing and Switching, VMware, Windows platform servers, CISCO routers and switchless, BGP, MPLS, EIGRP routing protocol, WAN Optimization, NEXUS 2K,5K,7K,9k, 1000v, CISCO 6500, 3750, 3550, Arista, VLANS, SNMP, NAT, Sourcefire, Infoblox, HSRP, VLAN trunking 802.1Q, F5 Networks Big IP, CISCO ASA, DELL Sonic wall, Palo Alto and Checkpoint firewall.

3)CBRE, Dallas, TX Oct’15 – Nov’16

Role: - Network Engineer

Responsibilities: -

Experience with configuring Cisco 6500 VSS in distribution layer of the Data Centre Network.

Configuration and Administration of Cisco and Juniper Routers and Switches.

Experience working with Nexus 7010, 5548, 5596, 2148, 2248 devices.

Replace branch hardware with new 3900 routers and 2960 switches.

Experience with setting up MPLS Layer 3 VPN cloud in data centre and also working with BGP WAN towards customer.

Network Redesign for Small Office/Campus location. This include changes to both the voice and data environment.

Installation and Configuration of Cisco Catalyst Switches 6500, 3750 & 3550 series and configured routing protocol OSPF, EIGRP, BGP with Access Control Lists Implemented as per Network Design Document and followed with change process as per IT policy. It also includes the configuration of port channel between core switches and server distribution switches.

Good experience in performing wireless site survey using Air Magnet Software. Working on Cisco 4400, 5500 series wireless controllers, Cisco 1130, 1140, 1200, 3702, 3602 and 2600 Series Access Point.

Experience in installing and configuring DNS, DHCP servers.

Good knowledge with technologies VPN, WLAN and multicast.

Conversions to BGP WAN routing. Which will be to convert WAN routing from OSPF to BGP (OSPF is used for local routing only) which involves new wan links.

Convert Branch WAN links from TDM circuits to MPLS and to convert encryption from IPsec/GRE to GetVPN.

Involved in L2/L3 Switching Technology Administration including creating and managing VLANs, Port security, Trunking, STP, Inter-VLAN routing, LAN security.

Strong hands-on experience on Cisco Catalyst (series 3850, 3560, 4500, 6500), Cisco Nexus (series 2K, 5K, 7K), Cisco Routers (series 7300, 4000, 3800, ASR 9000).

Improve network optimization by successfully implementing network performance management products for company’s infrastructure.

Evaluate current practices and create future IT recommendations for all IT assets for annual budget.

Enabled STP attack mitigation (BPDU Guard, Root Guard), using MD5 authentication for VTP, disabling all unused ports and putting them in unused VLAN and ensuring DHCP attack prevention where needed.

Intensive applications of Network automation tools and testing for network automation and configuration management using Python scripting.

Configuring rules and Maintaining Palo Alto Firewalls & Analysis of firewall logs using various tools.

Experience with setting up MPLS Layer 3 VPN cloud in data centre and also working with BGP WAN towards customer.

Environment: - Routing and Switching, Cisco 2500, 2600, 3000, 6500, 7500, 7200, Site to Site VPN’s, OSPF, BGP, MPLS, EIGRP routing protocol, python, WAN Optimization, NEXUS 2K,5K,7K, 1000v, Juniper SRX, SNMP, NAT, TCP/IP and Checkpoint ESX/GSX firewall, ASA, Palo Alto, F5 ADC/SLB and EMC SAN–VNX, VMAX.

4)Robek Software Systems, India Aug’12 – Sep’15

Role: - Jr. Network Engineer

Responsibilities: -

Managed office network with Cisco devices with network devices including 2500 and 3600 series routers and 3500, 2900, 1900 series switches.

Responsible for the configuration of Cisco Routers (7000, 5300, 4000, 2500, 3000, 2600) using RIP, IGRP, OSPF, EIGRP, BGP

Analysed and resolved a high percentage of initial customer contact in the areas of PC/LAN.

Configured EIGRP and OSPF as interior gateway protocol with route filtering and route redistribution, installed and maintained Cisco 3600, 2600 and 7200 backbone routes with HSRP.

Engaged in office moves, helped in identifying network requirements of new building, installed new networking hardware, and coordinated with vendors for cabling/wiring.

Configured, maintained and troubleshot routing protocols such as OSPF, EIGRP and BGP.

Design, test, and implement global Next Generation MPLS network (150 sites) using Cisco 3800, 2800, 2600, and 1721 routers using BGP and EIGRP protocols.

Implementing traffic policy changes with Cisco PIX Firewall appliance switch WAP configuration and installations.

Expert in dealing with Networking Protocols and Standards such as TCP/IP, OSI, UDP, Layer 2 (VLANs, STP, VTP).

Implementations of Network and Devices for Network SD-WAN environment.

Configured Security policies including NAT, PAT, VPN, Route-maps and Access Control Lists.

Implementation of TCP/IP and related Services-DHCP/ DNS/ WINS.

Configured switches with port security and 802.1x for enhancing customers security.

Upgraded Cisco Routers, Switches and Firewall (PIX) IOS using TFTP.

Dealt with customer problems to management and support groups utilizing standard escalation model.

Assisted with escalation procedures and customer notifications.

Handled Network Migration from RIP to OSPF.

Supported core network consisting of Cisco 7200 series routers running multi area OSPF.

Hands-on experience with WAN technologies like T1/T3, DS3, STM1 and STM4 circuit types.

Environment: - Cisco Routers, Cisco Switches, switch WAP, Nexus 7k/5k/2k Routing protocols, Cisco IOS VLAN' s (F5, Load Balancer HSRP, VRRP, IPSEC VPN, VPN, QOS, Cisco PIX, Load balancer, MPLS, VLANS, VTP, RSTP, ACL, NAT, IDS/IPS, SIP, RTP, RADIUS, TACACS+, ASR 9000, Catalyst 6500.

Certification: -

1)CCNA (Routing and Switching – Cisco)

2)CCNP (Routing and Switching – Cisco)

3)ACE (Accredited Configuration Engineer – Palo Alto)

Contact this candidate