SRIKANTH SURASURA
****************@*****.***
SUMMARY
• Strong hands on experience of over 8 Years in installing, configuring, and
troubleshooting Cisco hardware including 7600, 7200, 3800, 3600, 2800 & 2600 series
Routers. Nexus 7010, 7004, Fex 2232 and 7009. Cisco Catalyst switches 6500, 4500,
4900 & 3750.
• Extensive experience in configuring and troubleshooting of routing protocols RIP,
EIGRP, OSPF and BGP.
• Worked on networks with WAN protocols such as MPLS, HDLC, PPP & Frame Relay.
• Switching tasks include VDC, vPC, VTP, ISL/ 802.1q, VLAN, Ether Channel, LACP,
STP and RSTP.
• VPN technologies like IPSec and SSL.
• Experience in configuring Site-to-site and remote access VPN solutions.
• Worked on Gateway Redundancy protocols like HSRP & GLBP.
• Implemented traffic filters using Standard and Extended access-lists, Distribute-Lists, and
Route Maps.
• Experience in installing and configuring DHCP services using Cisco Devices.
• Experience testing Cisco routers and switches in laboratory scenarios and then deploy
them on site for production.
• In depth understanding of IPV4, TCP & UDP.
• Experience with Checkpoint Firewall policy provisioning
• Provides technical leadership for problem escalation and resolution.
• Worked on F5 Load Balancers – Configuring Irules, Profiles, Nats/Snats, Load
Balancing.
• Configuring Load Balancing modes, Logical and relational Operations using Irules .
• Setting up of load balancers – configuring Nodes, Pools, virtual servers
• Assigning Monitors to pool and pool members.
• Worked on ACE load balancers. Experience with F5 load balancers - LTM, GTM series
like 6400, 6800, 8800 for the corporate applications and their availability.
• Highly motivated with the ability to work independently or as an integral part of a team
and Committed to highest levels of professional.
• Experience with tools – Solar winds, Splunk, Info lox, Manage Engine, RSA Security
Console, Kiwi Syslog, WhatsUpGold.
• Experience with convert Checkpoint VPN rules over to the Cisco ASA solution.
Migration with Cisco ASA VPN experience
• Experience in configuring Wireless 5508 Controllers and Wireless WAP’s.
• Cisco ASA/Checkpoint Firewall troubleshooting and policy change requests for new IP
segments that either come on line or that may have been altered during various planned
network changes on the network.
• Experience with Checkpoint Firewall policy provisioning.
Worked extensively on Cisco Firewalls, Cisco PIX (506E/515E/525/) & ASA
•
5500(5510/5540/5580) Series.
• Configuring Load Balancing modes, Logical and relational Operations using Irules .
• Setting up of load balancers – configuring Nodes, Pools, virtual servers
• Assigning Monitors to pool and pool members.
• Highly motivated with the ability to work independently or as an integral part of a team
and Committed to highest levels of professional.
• Configuring RIP, OSPF and Static routing on Juniper Routers
Understanding the JUNOS platform and worked with IOS upgrade of Juniper devices
•
Excellent communication skills, Enthusiastic, motivated and a team player
•
A highly organized individual who adopts a systematic approach to problem solving,
•
effectively analyzes results and implements solutions
Highly motivated with the ability to work independently or as an integral part of a team
•
and Committed to highest levels of professional.
Experience with Change management process and Project documentation tools like Excel
•
and VISIO
PROFESSIONAL CERTIFICATION
CCNP® Certified
•
CCNA® Certified
•
CCNA Security® Certified
•
Preparing For JNCIA Exam
•
PROFESSIONAL DEGREE
Bachelor of Engineering in Electrical & Electronics Engineering
Technical Skills
Network Cisco Routers (18XX, 29XX, 38XX, 72XX and 76XX), Cisco
•
Hardware L2 & L3, Nexus 7000
Switches (2950,2960,3550, 3750, 45XX 65XX)
•
Load balancers (CSS,CSM, F5-LTM)
•
Firewalls (ASA – 5500 series)
•
Content Switching (Cisco CSS & CSM)
•
NMS (Cisco Works, HP Open View)
•
Routing RIP,RIPV2,EIGRP, OSPF & BGP
•
Switching VLANs, Dot1Q, VTP, STP, RSTP, VLAN Maps, HSRP,
•
VRRP, GLBP, CEF, DCEF, Port Security, Private-VLANS,
Ether-Channels, LACP, PAGP
Protocols IP, IPv6, TCP, UDP, ICMP, NAT, CDP,DNS, DHCP, SNMP,
•
SYSLOG
Juniper
E series, J series and M series. MX960, M10i, T1600, T640)
Security
Cisco ACS, UC, PIX/ASA, Cisco VPN Concentrators,
•
TACACS/RADIUS
WAN Frame Relay, X.25, E1/T1/DS1/DS3, SONET, VLAN, HSRP,
•
Technology: STP
LAN Ethernet, Fast Ethernet, Gigabit Ethernet, Frame Relay,
•
Technologies Leased
MPLS, Lines (PPP,HDLC),Channelized Links(E1/T1/
•
E3/T3)
PROFESSIONAL EXPERIENCE
Network Engineer
METRARAIL Chicago, IL May 2013 - Present
RESPONSIBILITIES
• Working on Cisco 3845, 7206, 2621, 2801 Routers.
• Working on 3750, 3560, 3550, 2950, 6509 Switches.
• Worked on Core 6509 Switches with Supervisor Engine 2 in data Centre.
• Worked on PIX Firewalls, ASA 5505 and ASA 5520.
• Working on Designing Data Centre with the Nexus 7004 Switch.
• Worked on Procurement of Modules, Fabric Extenders, ASA’s, Switches and Routers as
per the Requirement.
• Upgraded Nexus OS from version 6.1.4 to 6.2.6 to support mixed F2e and M2 Line cards.
• Worked on IOS and Catalyst Switches(3750, 3650,3550).
• Worked on Attaching Fabric extenders Nexus 2232 to Nexus 7004
• Operating Cisco 7600, Cisco 6500, Cisco 4503, Cisco 3750, Cisco ASA, Juniper NSM,
Juniper ISG1000, Juniper IDP and Bluecoat SG cashing and web filtering
• Worked on configuring Uplogix Terminal Server connecting consoles of all network
devices for out of band management.
• In-depth knowledge and hands-on experience in Tier II ISP Routing Policies, Network
Architecture, IP Subnetting, VLSM, TCP/IP, NAT, DHCP, DNS, FT1 / T1 / FT3 / T3
Sonet POS OCX / GigE circuits, Firewalls.
• Designing, configuring and implementing Cisco UC products (CUCM, UCON, etc)
• Having Data Center Design Experience, installing and Configuring Network Devices in a
Data Center including patching the cables in the Patch Panel.
• Troubleshooting the T1 lines, coordinating with the Service Provider for the connectivity
Issues.
• Worked on Checkpoint Provider -1/Smart Domain Manager (R75).
• Working and Troubleshooting on creating L2 and L3 Vlan’s.
• Converting access-lists to Firewall rule sets on FWSM module with 6509-E Catalyst
switches
• Coordinated with CROS team in troubleshooting the tickets.
• Configuration of Barracuda Load Balancers.
• Configuring and Troubleshooting Anyconnect Vpn on ASA 5520 and ASA 5505.
• Worked on configuring Anyconnect ssl vpn.
• RSA Administrator: Responsible for supporting Tokens for the Users. Created and
removed User ID’s from RSA Security Console. Working on Providing RSA 2 factor
authentication SecureID VPN Key to the end users . Working on RSA Operations.
• Implementing the firewall changes for the migration from Postini to Google.
• Configured Radius Clients and Servers in Network Policy Server
• Configuring Access lists on the Firewalls and routers.
• Troubleshoot and Worked with Security issues related to Cisco ASA/PIX, Checkpoint,
IDS/IPS and Juniper Netscreen firewalls.
• Checkpoint Level3 operations support with hardware operations - fixed all problems &
RMA's, taking any escalations that dealt with the equipment
• Worked on tools like Wireshark, HttpWatch,
• Implemented 3rd Party Call Detail Record solution for TMX Cisco UC Infrastructure.
• Syslog Admin: Worked on Implementing a new syslog Server in the environment.
Setting Up of Rules and Filters and collecting the logs of various devices and sending
Alerts as per Priority.
• Worked on implementing tools like Switchport Mapper, IPAM, Bandwidth Monitoring
and Network Monitoring in ManageEngine OPUtils.
• Creating Rules, Filter and Actions on Kiwi Syslog tool and setting up of logging on
Network Devices.
• Configuring 5508 wireless controllers.
ACI Worldwide, Atlanta, GA September 2012 – April 2013
Responsibilities
• Configuring DMVPN’s on HUB routers to the customer Routers.
• Configured VRF’s on the routers to create a separate environment.
• Configuration of Fabric path and connectivity between Nexus 5K and Nexus 7k
• Configuration and installation of Nexus 5k
• Studying the present architecture and help in migration of servers from present
environment.
• Configured contexts on ASA 5540, 5520, 5510.
• Configured ACL’s and opening Ports on ASA Firewalls.
• Configured Palo Alto Firewalls.
• Troubleshoot and Worked with Security issues related to Cisco ASA/PIX, Checkpoint,
IDS/IPS and Juniper Netscreen firewalls.
• Configuring RIP, OSPF and Static routing on Juniper Routers
• Implemented Positive Enforcement Model with the help of Palo Alto Networks
• Worked on troubleshooting the connectivity to servers on Fabric path.
• Implemented L3 SVI’s and L2 vlans, Inter Vlan Routing and HSRP configuration in
Nexus on F series module.
• Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500/
PIX security appliance, Failover DMZ zoning & configuring VLANs/routing/NATing
with the firewalls per design
• Upgraded Nexus OS on Nexus5k.
• Responsible for CheckPoint and Cisco ASA firewall administration across global
networks
• Worked on Migration on Network environment from cisco 3750 stack to the cisco 4500
and helped in tracing the cables and setting up the the new architecture Racking and
cabling the devices.
• Configuration of CSS Load Balancer –Content, Service,
• Configuration of Cisco Waas – Policy Engine, Classifier, Inline with the network.
• Worked on Network tools – Solarwinds, Splunk, BMC, Infloblox.
• Opened tickets with Cisco to troubleshoot various issues.
• Configured Private Vlans on the catalyst switches.
HCL America, Atlanta, GA March 2012 – September 2012
Responsibilities:
Designed new Network Implementation with the core switch and Aggregation Switch as
•
Nexus 7010.
Has Performed Due diligence and prepared network documentation to implement
•
Network Migration.
Worked on various Nexus Products Nexus 7010, Nexus 7009, Nexus 2248.
•
Created VDC’s and vPC’s and ensure that those vPC’s are formed between VDC’s.
•
Created vPC’s between downstream devices between core and Aggregation Switches and
•
between Aggregation and Fabric Interconnect.
Responsible for CheckPoint and Cisco ASA firewall administration across global
•
networks
Worked on Port Groups on M Series Module and F Series Module for Nexus 7010 and
•
Nexus 7009.
Worked on troubleshooting the connectivity to servers with fabric extenders.
•
Implemented L3 SVI’s and L2 vlans, Inter Vlan Routing and HSRP configuration in
•
Nexus on M series module.
Upgraded Nexus OS 5.3 to 6.0(3).
•
Coordinating with service providers for WAN link termination on the DC.
•
Worked on presenting HLD and LLD documents to the customer.
•
Has knowledge on configuring Service Class Policies on Branch Repeater in the design.
•
Implemented EIGRP internally between VDC’s and externally Between Nexus and
•
Service Provider Routers.
Working in Establishing a Layer3 Connectivity between DC’s by changing the IP
•
Schema.
Worked in due diligence to help migrate servers from pune to Atlanta.
•
Created HSRP between Switches with various priorities.
•
Replaced aging Checkpoint firewall architecture with new next generation Palo Alto
•
appliances serving as firewalls and URL and application inspection.
Worked on Nortel switches while performing due diligence and Enabled span ports to
•
verify the port level communication between various devices for ADM Tool.
Performed Port channeling and LACP between downstream devices for vPC
•
configuration.
Designed the uplinks and downlinks to maintain the stability in the Network Architect.
•
Configured 2911 Terminal Server for out of band management with MENU commands.
•
Performed SNMP Configuration, Port mirroring, in Nortel Switches.
•
Environment: Cisco 3750/3550/3500/2960 switches and Cisco 3640/12000 /
7200/3845/3600/2800 routersCiscoNexus 7K/5K, 2248/3560/5020/6509, Cisco
ASA5510, Checkpoint, Aruba Controllers 6000, 3600, 3400,650
Citi Group,
New York, NY November 2009 – March 2012
Responsibilities:
Designed and installed new Branch network systems. Resolved network issues, ran test
•
scripts and prepared network documentation.
Ensure problems are satisfactorily resolved in a timely manner with focus on providing a
•
high level of support for all customers.
Once trouble ticket has been created keep customer informed of status of ticket and
•
estimated time to repair.
Experience with convert Checkpoint VPN rules over to the Cisco ASA solution.
•
Migration with Cisco ASA VPN experience
Coordinating with service providers for WAN link outages.
•
Checking and configuring Cisco 7613 routers at data center for remote sites’ issues.
•
Working on Cisco 6509 and 4507 series switches for LAN requirements, that includes
•
managing VLANs, Port Security and troubleshooting LAN issues.
Configured OSPF as IGP in the network and eBGP between Service Providers and
•
Internal edge Routers.
iBGP between our Edge Routers to maintain redundancy.
•
Involved in troubleshooting of DHCP and other IP conflict problems.
•
Performed switching technology administration including VLANs, inter-VLAN routing,
•
Trunking, STP, RSTP, port aggregation & link negotiation.
Configuration of Access List ACL (Std, Ext, Named) to allow users all over the company
•
to access different applications and blocking others.
Configured Load Balancer viz. F5 LTM
•
Configured Firewall cisco ASA 5510.
•
Responsibilities also include technical documentation of all upgrades done
•
Attending meetings and technical discussions related to current project.
•
IBM Bangalore India October 2007 – October 2009
Responsibilities:
Migration of RIP V2 to OSPF, BGP routing protocols.
•
Configured EIGRP for Lab Environment.
•
Implemented ISL and 802.1Q for communicating through VTP.
•
Working with Client teams to find out requirements for their Network Requirements.
•
Designing solutions for frozen requirements using Cisco Routers and Switches.
•
Deploying the network infrastructure to meet the requirements
•
Created VLAN and Inter-Vlan routing with Multilayer Switching.
•
Providing technical consultancy for better application response using QoS
•
Monitor performance of network and servers to identify potential problems and
•
bottleneck.
Performed RIP, OSPF, BGP EIGRP routing protocol administration.
•
Installed wireless access points (WAP) at various locations in the company.
•
Maintained redundancy on Cisco 2600, 2800 and 3600 router with HSRP.
•
Wipro Technologies, Hyderabad India November 2006 – September 2007
Responsibilities:
Maintenance, Optimization, and Support of Hines Global Network which comprises over 120
•
Sites globally. The WAN Core includes Cisco 7204, Cisco 3662, and Cisco 3640 routers. Regional
field locations have Cisco 3640s, and sites in those regions use Cisco 2611s. The entire Global WAN
is comprised of Site-to-Site VPN with core data centers in Houston, Dallas, and London. All data
connections are ISP connections at 128k ISDN, 384k DSL, and Frac-T1/Full-T1.
Planned, Implemented, and optimized network operations monitoring, optimization, and
•
management tools such as Cisco Works, Cisco Secure ACS, What's Up Gold, and Solar Winds
Internetwork Performance monitor.
Performed IOS and Hardware upgrades on Core routers and field routers.
•
Provided interim solution to emergency connectivity needs at sites that are scheduled to
•
encounter a circuit cut due to provider filing bankruptcy.
Designed and implemented Router and switch fail-over redundancy in Dallas Collocation
•
facility. Assisted in migration of exchange environment to Dallas collocation facility.
Created, coordinated, and implemented project plans for network changes.
•
Assisted in a consultative capacity in all change control meetings, and selecting new Global
•
Internet Access Provider.