Leela Mukund

Sr. Network Engineer

Ph No: 908-***-****

Email id: ac99gj@r.postjobfree.com

Professional Summary:

* ***** ** ********** ** Network engineering, designing, integrating, deploying, maintaining and supporting broad range of communication systems.

Expertise with Installation, configuration and troubleshooting of Cisco Routers (ASR 9K,1K, Meraki MX 84, MX 400 CISCO ISR 4K,1K 7600, 7200, 3800, 3600, 2800, 2600, 1800 series). and Juniper Routers (MX, PTX, ACX, CTP, T4000-series)

Expertise with Installation, configuration and maintenance of Cisco Switches (6500, 4500, 4900, 3400ME, 3750, 3560, 2960, 1900 series); Nexus 2000, 5000 and 7000 series switches while implementing advanced features like VDC, VPC, OTV and Fabric Path and Juniper EX Switches (2200, 2300, 3300, 4200,4300, 4550, 9200), QFX Switches (5100,5200,10000), OCX1100 series.

Experience in IWAN (Intelligent WAN - Cisco SD-WAN, update DNS records, and release IP addresses when the VMs are taken down by using Infoblox

Hands on experience in configuration and troubleshooting of Layer 3 protocols (ISIS, OSPF, EIGRP, BGP and RIP) and Layer 2 features (VLAN, PORT SECURITY [802.1X], STP, RSTP, MST, VTP, ARP, Port Security, HSRP, VRRP, GLBP and IGMP).

In-depth knowledge and experience on IP Addressing, Subnetting, VLSM, and ARP, Ping concept. Working knowledge on OSI model, TCP/IP, 802.1q.

Hands on experience with packet sniffer, TCP DUMP and Wire shark for packet monitoring

Experience in monitoring, debugging, and resolving Cisco infrastructure issues like routing, Network Hardware/Software failure, configuration, WAN outages, and performance issues.

Working experience on WAN technologies like MPLS, PPP, T1, IPSEC

Sound knowledge of Multicasting (IGMP, PIM), QOS (Queuing, Marking) and MPLS (LDP, L3VPN) and virtual port channel configuration.

Analyzing traffic behaviors using Wireshark and Solar winds.

Expertise in installing configuring and troubleshooting Juniper Routers (E, J, M and T-series).

Knowledge of JUNOS platform and worked with JUNOS upgrade of Juniper devices.

Advanced knowledge, design, installation, configuration, maintenance and administration of Juniper SRX Firewall, Juniper EX and Juniper MX devices.

Strong troubleshooting skills using Packet capture in Cisco devices and FW monitor and TCP dump in Checkpoint devices and analyzing them in Wire shark.

Created detailed network documentation for LAN, WAN and Wireless environments

Hands on Experience with Cisco Wireless Controllers 5500's and 2500's and coming to access points, worked on 3700's, 3500's and 1142 access points.

Configured High availability, User ID on Palo Alto firewall, rules and Maintaining Palo Alto Firewalls & Analysis of firewall logs using various tools

Demonstrated experience in developing, implementing, auditing Checkpoint firewall (R77.30) configurations and analyzing, optimizing rule sets.

Experience with convert Checkpoint VPN rules over to the Cisco ASA solution. Migration with both Checkpoint and Palo Alto rules.

Installed, Configured and currently maintaining Check Point Firewalls (R76 Gaia, R75.40, R75 and R70) in a Distributed Deployment and High Availability Redundancy Scenario

Experience in risk analysis, security policy, rules creation and modification of Cisco ASA networks.

Experience in configuring, deploying and deployment of Cisco Security Manager (CSM) for management of ASA Firewall series.

Designed, configured, implemented site-site VPN on Cisco ASA 5500 firewall.

Experience in risk analysis, security policy, rules creation and modification of Cisco ASA networks.

Experience in configuring and Troubleshooting BIG-IP F5 load balancer LTM & GTM.

Basic and advance F5 load balancer configurations, including migrating configurations from Cisco ACE to F5 and general troubleshooting of the F5 load balancers

Complete understanding of basic and advance F5 LTMs and GTM load balancer configurations, including migrating configurations from Cisco ACE to F5 load balancer and general troubleshooting of the F5 load balancers

Responsible for general troubleshooting of the F5 load balancers. Extensive knowledge of Load balancing technology including health check options, I Rules implementation and licensing F5 Big-IP load balancer devices.

Education:

Bachelors in Electronics and Communication Engineering.

Certification:

Cisco Certified Network Associate (CCNA)

Technical Skills:

Cisco Platforms

Nexus 7K, 5K, 2K & 1K, Cisco routers (ASR (9K,1K) ISR (4K,1K),7600,7200, 3900, 3600, 2800, 2600, 2500, 1800 series) & Cisco Catalyst switches (6500, 4900, 3750, 3500, 4500, 2900 series), CSR/ASR, IOS-XR

Juniper Platforms

SRX, MX, EX Series Routers and Switches

Networking Concepts

Access-lists, Routing, Switching, Subnetting, Designing, CSU/DSU, IPSec, VLAN, VPN, WEP, WAP, MPLS, VoIP, Wi-Fi

Firewall

ASA Firewall (5505/5510), Checkpoint, Cisco ASA, Palo alto

Network Tools

Solar Winds, SNMP, Cisco Works, Wireshark

Load Balancers

F5 Networks (Big-IP)

WAN technologies

MPLS, leased lines & exposure to PPP, DS3, OC3, T1 /T3 & SONET

LAN technologies

Ethernet, Fast Ethernet, Gigabit Ethernet, & 10 Gigabit Ethernet, Port- channel, VLANS, VTP, STP, RSTP, 802.1Q

Encryption

IKE, IPSEC, SSL-VPN

Networking Protocols

RIP, OSPF, EIGRP, BGP, STP, RSTP, VLANs, VTP, PAGP, LACP, MPLS, HSRP, VRRP, GLBP, TACACS+, Radius, AAA

Operating System

Windows 7/XP, MAC OS X, Windows Server 2008/2003, Linux, Unix

Professional Experience:

CVS Health, Scottsdale, AZ Aug 2018 – Present

Network Build Engineer

Responsibilities:

Installing and configuration and troubleshooting of various Cisco switches like 3850 series, Nexus 5000, 7000 & 9000 series.

Routing related tasks included providing Cisco router configuration and change management, providing technical support for Cisco Router configurations and installation for Customer.

Configuring EIGRP and BGP. Configuring routing policy for BGP.

Switching related tasks included implementing VLANS and configuring ISL trunk on Fast-Ethernet channel between switches.

Working with MPBGP protocol in MPLS Cloud.

Experience in troubleshooting VLAN, STP (Spanning tree protocol), & Switch Trunk and IP subnet issues

Designed VLAN’s and VTP topology, troubleshooting IP addressing issues and Updating IOS images.

Configuring HSRP between the nexus 7k pairs of Gateway redundancy for the client desktops.

Configuring VLAN TRUNKING 802.1Q, STP, Port security on Nexus switches.

Involved in L2/L3 Switching technology administration including creating and maintaining VLANs, Port security, TRUNKING, STP, Inter VLAN Routing, LAN security.

Experience in configuring and Troubleshooting BIG-IP F5 load balancer LTM & GTM.

Complete basic configurations on the F5 Big-IP (10200, 5250, c2400) LTMs and GTM load balancer on existing network to split traffic on webservers.

Set up F5 Viprion C2400 from scratch including the installation of modules and activating the license’s

Worked on both VCMP and LTM modules in Big IP F5 5250

Setting up 4 Big IP F5 from scratch for Disaster recovery

Complete understanding of basic and advance F5 load balancer configurations, including migrating configurations on F5 load balancer and general troubleshooting of the F5 load balancers

Responsible for general troubleshooting of the F5 load balancers. Extensive knowledge of Load balancing technology including health check options, I Rules implementation and licensing F5 Big-IP load balancer devices.

Working on creation of DNS entries (A record, PTR record, C records) in Infoblox

Improved the Datacenter efficiency by Infoblox IP address management in seconds

Monitoring and managing IP addresses on solar winds monitoring tool

Environment: Router series (ISR 4k, ASR 9k,1k) and switch series (3850, 3550, nexus 5k,7k,9k), ASA firewall, F5 load balancer Routing Protocols (EIGRP, OSPF, BGP), Switching protocols (VTP, STP), MPLS VPN, any connect VPN, Infoblox, Solar winds

American Airlines, Houston, TX Jun 2016 – July 2018

Sr. Network Engineer

Responsibilities:

Installing and configuration and troubleshooting of various Cisco switches like 2900 series, 3850 series, 3550 series, Nexus 5000, 7000 & 9000 series.

Worked on the Cisco ASR 9010 and Cisco ASR 9912 Routers at CORE level.

Design and implementation engineer for data center with 365 customers and performing tech refresh on all End of Cycle and End of Support devices

Migrated 7609 chassis with ASR 9010 chassis at core level and catalyst 6503 with Nexus 7k,5k and 2k as fix extender in distribution level in data center

Performed Configuration on ASR 9K Pairs includes HSRP, Bundle Ethernet.

Configuring EIGRP, OSPF and BGP. Configuring routing policy for BGP.

Switching related tasks included implementing VLANS and configuring trunk on Fast-Ethernet channel between switches.

Working with BGP, OSPF protocols in DMVPN, MPLS Cloud.

Providing daily network support for national wide area network consisting of DMVPN, MPLS, VPN and point-to-point site.

Establishing VPN Tunnels using IPsec encryption standards and configuring and implementing site-to-site VPN.

Configuring access servers to perform reverse telnet and configuring AAA.

Configuring static NAT, dynamic NAT, inside Global Address Overloading, TCP overload distribution, Overlapping Address Translation.

Experience in troubleshooting VLAN, STP (Spanning tree protocol), & Switch Trunk and IP subnet issues

Configuring HSRP between the nexus switch pairs of Gateway redundancy for the client desktops.

Involved in L2/L3 Switching technology administration including creating and maintaining VLANs, Port security, TRUNKING, STP, Inter VLAN Routing, LAN security.

Created detailed network documentation for LAN, WAN and Wireless environments

Hands on Experience with Cisco Wireless Controllers 5500's and 2500's and coming to access points, worked on 3700's, 3500's and 1142 access points.

Configuration, Troubleshooting and Maintenance of Palo Alto Firewalls (160+ firewalls) - PA200, PA2000 series, PA3000 series, PA4000 series and PA5000 series

Worked on User-ID to collect user-mapping information, App-ID to determine that encryption (SSL or SSH) is in use

Worked on App-ID to match Traffic against policy to check whether it is allowed on the network.

Configured the Firepower chassis in clustered and then after HA mode to meet the clients ever changing design requirements

Review the client's Palo Alto configuration and map it to Cisco Fire power 9300 features

Understand OSPF configuration and authentication settings to migrate routing over to the Firepower platform

Integrate Firepower with unsupported up and down stream switches so deep understanding of network concepts were required to driver project success

Maintaining and Configuring Palo Alto Firewall platform Panorama with Dual Authentication and User Authentication and User

Performed centralized control of next-generation firewalls at internet edge, in the data center, and in the private and public cloud deployments using Panorama 8.1

secured all traffic flow between riverbed Steelheads over private MPLS and performed optimization for demanding security protocols such as SSL/TLS and HTTPS

Environment: Router series (2800, 3800, 7200) and switch series (3750, 3550, 4509E, 6509E), SRX 550firewall, Palo Alto (PA-4000/PA-2000/PA-3020), Juniper EX, Routing Protocols (EIGRP, OSPF, BGP), Switching protocols (VTP, STP), Site to Site VPN, Remote Access VPN

Freddie Mac, VA Oct 2014 – May 2016

Network Engineer

Responsibilities:

Design and implement complete network and device required to connect different networks.

Design, configure, and administer Juniper MX routers, SRX Firewalls, Cisco routers & switches.

Design and configuring of OSPF, BGP on Juniper Router and SRX Firewalls

Configuration and management of network routers (Cisco 6500, 7K; Juniper MX) and switches (Cisco 3850, 3750X, 3750, 3550; Juniper EX).

Assisted in MPLS migrations, implemented a backup for the existing WAN connection using site-to-site IP sec VPN tunnels.

Configuring routing protocols OSPF, EIGRP, MPBGP and BGPV4.

Managed VPN, IPsec, Endpoint-Security, status policy, and Application control, IPS, Monitoring, Anti-Spam, Smart Provisioning and DLP using ASA Firewalls.

Experience in Cisco switches and routers: IP addressing, WAN configurations, LAN cabling in compliance with CAT6 standards

Configuration and troubleshooting link state protocols like OSPF in multiple areas.

Configured HSRP and VLAN trunking 802.1Q, VLAN Routing on Catalyst 6500 switches

Experience in trouble shooting STP (Spanning tree protocol), & Switch Trunk and IP subnet issues.

Designed VLAN’s and VTP topology, troubleshooting IP addressing issues and Updating IOS images.

Implementing, configuring, and troubleshooting various routing protocols like EIGRP, OSPF, and BGP.

Involved incomplete LAN, WAN, Extranet redesign (including IP address planning, designing, installation, pre-configuration of network equipment, testing, and maintenance) in both Campus and Branch networks.

Responsible for Cisco ASA firewall administration, rule analysis & modification

Configured VPN, ACL, and NAT in the Cisco ASA 5550 firewall to allow only authorized users to access the servers of the internal network

Implementation of Site-to-Site VPNs and DMVPN over the internet using IKE Phase 1 and IKE Phase 2 based on traffic with ASA 5500 series Firewalls

Implemented Access Control List (ACL) on inside and outside interfaces of Firewall

Environment: Cisco switches - 2948/3560/4500/3560/3750/3550/3500/2960 6500 and Cisco routers - 1200/3640/7200/3845/3600/2800, Cisco ASA 500, F5 BIGIP LTM, RIP, OSPF, BGP, EIGRP, LAN, WAN, VPN, HSRP, VMware.

Akshara Enterprises, India Nov 2011 – Aug 2014

Network Engineer

Responsibilities:

Configuring/Troubleshoot issues with the following types of routers Cisco (7200, 6500, 4500, 1700, 2600 and 3500 series), to include: bridging, switching, routing, Ethernet, NAT, and DHCP, as well as assisting with customer LAN /MAN, router/firewalls.

Wrote IOS and CAT OS upgrade procedures and Pre/Post checks for customer production upgrades.

Excellent Troubleshooting Skills and Customer Centric approach.

Implemented Cisco Wireless Access Points and WLC’s at various corporate sites fort 11n Infrastructure and its legacy technologies.

Provided estimated bandwidth requirements for data replication, to best determine adequate timing for migration service levels

Configuring HSRP between VLANs, Configuring Ether-Channels, Port Channel on 6500 catalyst

Configuring, managing and troubleshooting networks using routing protocols like RIP, EIGRP and OSPF (Single Area and Multi Area).

Configured OSPF on CISCO devices with multiple routing processes and redistributed them. Tested and hands on experience in multi area OSPF topologies.

Configured VLANs with 802.1q tagging. Configured Trunk groups, ether channels, and Spanning tree for creating Access/distribution and core layer switching architecture.

Assisted in network engineering efforts consistent with the infrastructure of an Internet Service Provider and support of such network services. Helped in designing and implementation of VLAN for the new users.

Installation and Configuration of various types of Personal Computers and Printers. Installation of different operating systems on Intel based PC's.

Installed Hard disks, Floppy drives, CD Drives, Sound Blaster cards, CPU, Memory, Power supply unit, Network card, Video graphics card, Hard disk controller card on PC systems.

Troubleshooting of personal computers. Online Support to customers concerning their computer problems.

Assisted with troubleshooting all network issues with routers and switches when necessary and consulted with on call tech as needed for client.

Monitor, troubleshoot, test and resolve Frame Relay, ATM, PPP, and Dial-up.

Actively participated in upgrading fast Ethernet, Layer 3 switched/routed LAN infrastructure from Cisco 3640 to Cisco 2811 routers and switches at access level to 2950, 3550.

Configuring Vlan’s, VTP’s, enabling trunks between switches.

Environment: Cisco 3640/12000 /7200/3845/3600/2800 Routers & 3750/3550/3500/2960 Switches, Checkpoint firewall, BGP, OSPF, EIGRP, VLAN, VTP, STP, MS Visio, Wireshark, VLSM and Access-lists.

Contact this candidate