Engineer Network
Resume:
Dhrupad
Sr. Network Engineer
******@*********.***
Qualification Summary
CCNP Certified Professional with 7 years of experience in routing, switching, firewall technologies, system design, implementation, troubleshooting of complex network systems, enterprise network security, VPN configuration, wireless design, data network design, capacity management and network growth, troubleshooting network related problems in Enterprise & Data Center Networks..
Implementing IP addressing schemes, LAN/WAN protocols, IP Services, to meet network requirements in different environments.
Extensive knowledge of troubleshooting OSI, TCP/IP, Implementing IPv6, Transition from IPv4 to IPv6.
Experience installing, configuring and troubleshooting Catalyst (2900, 3500, 3700 and 6500 Series), Nexus (7000, 5000, 2000/4000 Series) Switches, and Routers (2800, 3600, 4400, 7200 Series) using CLI and GUI.
Expert in configuration of Virtual Local Area Networks (VLANS) using Cisco routers and multi-layer Switches and supporting STP, RSTP, PVST, RPVST along with trouble shooting of inter VLAN routing and VLAN trunking using 802.1q.
Configuring Nexus 2000 Fabric Extender (FEX) which acts as a remote line card (module) for the Nexus 7000. Configuring VDC & VPC in Nexus 9k, 7k, 5k and 2k.
Configuring BGP/OSPF routing policies and designs, worked on implementation strategies for the expansion of the MPLS VPN networks.
In-depth knowledge and hands-on experience in Tier II ISP Routing Policies, Network Architecture, IP Sub netting, VLSM, TCP/IP, DNS, NAT, DHCP, FT1 / T1 / FT3 / T3 SONET POS OCX / GigE circuits, Firewalls.
Hands on experience in configuring and supporting site-to-site and remote access Cisco, IPSec, VPN solutions using ASA/PIX firewalls, Cisco and VPN client.
Worked on F5 LTM, GTM series like 6400, 6800, 8800 for the corporate applications and their availability.
Strong knowledge of TACACS+, RADIUS implementation in Access Control Network.
Experience in Designing and assisting in deploying enterprise wide Network Security and High Availability Solutions for ASA.
Experience with convert Checkpoint VPN rules over to the Cisco ASA solution. Migration with both Checkpoint and Cisco ASA VPN experience.
Experience with juniper Net screen 520M Firewall and Palo Alto Network firewall.
Design and configuring of OSPF, BGP on Juniper Routers (MX960, MX480) and SRX Firewalls(SRX240, SRX550)
Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500/PIX security appliance, Failover DMZ zoning & configuring VLANs/routing/NAT with the firewalls as per the design.
Design and perform integration of Cisco IP Telephony applications into campus network infrastructure.
Excellent customer management/resolution, problem solving, debugging skills and capable of quickly learning, effectively analyzes results and implement and delivering solutions as an individual and as part of a team.
Expertise in Network Management SNMP, WireShark, Nessus, WhatsupGold, Solar Wind.
Excellent customer management/resolution, problem solving, debugging skills and capable of quickly learning, effectively analyzing results and implement and delivering solutions as an individual and as part of a team.
Familiar managing workload in ticket system such as REMEDY
Excellent in documentation and updating client’s network documentation using VISIO.
Well experienced in configuring protocols HSRP, GLBP, VRRP, ICMP, IGMP, PPP, HDLC, PAP, CHAP, and SNMP.
Understanding the JUNOS platform and worked with IOS upgrade of Juniper devices.
Enterprise Routing experience using protocols RIP v1 & 2, EIGRP,OSPF and BGP
Experience working with Cisco Nexus 2148 Fabric Extender and Nexus 5000 series to provide a Flexible Access Solution for a datacenter access architecture Expertise in installing, configuring and troubleshooting Juniper EX Switches (EX2200, EX2500, EX3200, EX4200, EX4500, EX8200 series
******@*********.***
Core Competencies
Routers:
Cisco 7600, 3800, 3600, 2900, 2800, 2600,1800, 4400, ASR 9K
Routing:
OSPF, EIGRP, BGP, RIP v1/v2, PBR, Route Filtering, Redistribution, Summarization, and Static Routing.
Switches:
Nexus 2K/5K/7K,9K, Cisco Catalyst 2900, 3500,3700,6500, 4500, 3850,3560, 3750, 2960,Juniper Netscreen, ASA, PIX
Switching:
LAN, VTP, STP, PVST+, RPVST+, Inter VLAN routing & Multi-Layer Switch, Etherchannels, Transparent Bridging.
Network Security:
Cisco ASA 5540, ACL, IPSEC,F5 Load Balancer, Checkpoint
Load Balancer:
F5 Networks (Big-IP) LTM 8900 and 6400.
LAN:
Ethernet (IEEE 802.3), Fast Ethernet, Gigabit Ethernet, Port- channel, VLANS, VTP, STP, RSTP, 802.1Q
WAN:
PPP, HDLC, Channelized links (T1/T3), Fiber Optic Circuits, Frame Relay, VOIP, ATM, ISDN, leased lines & exposure to PPP
Gateway Redundancy:
HSRP and GLBP
WAN Optimizer
Riverbed Steelhead Appliance
DHCP and DNS
Infoblox
Various Features & Services:
IOS and Features, IRDP, NAT, SNMP, SYSLOG, NTP, DHCP, CDP, TFTP, FTP.
AAA Architecture:
TACACS+, RADIUS, Cisco ACS.
Network Management:
Wireshark, SNMP, Solarwinds
Operating system :
Windows 7/XP, MAC OS X, Windows Server 2008/2003, Linux, Unix
Professional Experience
******@*********.***
GE, Fairfield- CT Feb14 to Till Date Sr. Network Engineer
Key Responsibilities:
Experience with manipulating various BGP attributes such as Local Preference, MED, Extended Communities, Route-Reflector clusters, Route-maps and route policy implementation.
Experience with design and implementation of Data center migration
Deploying and decommission of VLANs on core ASR 9K, Nexus 7K, 5K and its downstream devices.
Performed OSPF, BGP, DHCP Profile, HSRP, IPV6, Bundle Ethernet implementation on ASR 9K redundant pair.
Configured CIDR IP RIP, PPP, BGP, MPLS and OSPF routing.
Assisted in MPLS migrations, implemented a backup for the existing WAN connection using site-to-site IP sec VPN tunnels.
Configuring and installing 6500, 4500 in Campus networks.
Switches Replace branch hardware with new 2851 routers and 2960 switches.
Conversions to BGP WAN routing. Which will be to convert WAN routing from OSPF to BGP (OSPF is used for local routing only) which involves new wan links.
Convert Branch WAN links from TDM circuits to MPLS and to convert encryption from IPSec/GRE to GetVPN.
Lead Engineer for Network refresh project for Multinational insurance company. Providing remote assistance for replacing exiting switches with new Cisco switches.
Configuring routing protocols OSPF, EIGRP,RIP, MPBGP, LDP and BGPV4
Configuring HSRP between VLANs, Configuring Ether-Channels, Port Channel on 6500 catalyst
Build Logical design and Implementation of Wireless Solution
Worked on F5 LTM, GTM series like 6400, 6800, 8800 for the corporate applications and their availability
Involved in the configuration & troubleshooting of routing protocols: MP-BGP, OSPF, LDP, EIGRP, RIP, BGP v4. Configured IP access filter policies.
Deploying and decommissioning Cisco switches and their respective software upgrades.
Performing the ACL requests change for various clients by collecting source and destination information from them.
Maintained complex LAN/WAN networks with several VLANS and provided support for routing protocols and also providing secure sessions over internet using IPSec and SSL encryption.
Worked extensively on Cisco ASA 5500(5510/5540) Series, experience with convert PIX rules over to the Cisco ASA solution.
Supporting EIGRP and BGP based on the network by resolving level 2 & 3 problems of internal teams & external customers of all locations
Performing troubleshooting on slow network connectivity issues, routing issues that involves OSPF, BGP and identifying the root cause of the issues.
Worked on migration of existing PIX firewall to ASA firewall, PIX OS upgrade from 6.3 to 7.0.
Design and Implement DMZ for FTP, Web and Mail Servers with CISCO PIX 506, PIX515
Building the VPN tunnel and VPN encryption.
Involved in Configuration of Access lists (ACL) on ASA firewall for the proper network routing for the B2Bnetwork connectivity.
To secure configurations of load balancing in F5, SSL/VPN connections, Troubleshooting CISCO ASA firewalls, and related network security measures.
Provided proactive threat defense with ASA that stops attacks before they spread through the network.
Designed and implemented DMZ for Web servers, Mail servers & FTP Servers using Cisco ASA5500 Firewalls.
Troubleshoot the Network Issues onsite and remotely depending on the severity of the issues.
Performed Break Fix support through driving to different buildings, identifying the root cause of the hardware issues with switches, routers.
Design, implementation and operational support of routing/switching protocols in complex environments including BGP, OSPF, EIGRP, Spanning Tree, 802.1q, etc.
Worked with creating VIP (virtual servers), pools, nodes and applying iRules for the virtual servers like cookie persistency, redirection of the URL.
Created Visio Dean / Visio Documentation to give complete picture of network design for each building.
Experience in Configuring, upgrading and verifying the NX-OS operation system.
Environment: Cisco 2948/3560/4500/3560/3750/3550/3500/2960 6500 switches and Cisco 3640/12000 /7200/3845/3600/2800 routers, Cisco Nexus 7K/5K, Cisco ASA 500, Checkpoint, windows server 2003/2008: F5 BIGIP LTM,RIP,OSPF,BGP,EIGRP,LAN,WAN,VPN,HSRP
******@*********.***
Vanguard, Malvern-PA Mar13 to Jan14
Sr. Network Engineer
Key Responsibilities:
Configured RIP, EIGRP, BGP and OSPF routing.
Involved in the configuration & troubleshooting of routing protocols: MP-BGP, OSPF, LDP, EIGRP, RIP, BGP v4. Configured IP access filter policies.
Identify, design and implement flexible, responsive, and secure technology services
Experience with Firewall Administration, Rule Analysis, Rule Modification
Implemented Positive Enforcement Model with the help of Palo Alto Networks.
Innovated with support of Palo Alto for remote and mobile users and for analyzing files for malware in a separate (cloud-based) process that does not impact stream processing.
Creating and provisioning Juniper SRX firewall policies.
Created standard access lists to allow SNMP, NTP and logging servers.
Documented new VPN enrollments in a database and create standard procedures for further improvement.
Troubleshoot traffic passing managed firewalls via logs and packet captures
Managed fast Layer 3 switched/routed LAN/WAN infrastructure as a part of Network team. The LAN consisted of Cisco campus model of Cisco 3550 at access layer, Cisco 6513 at distribution/core layer.
Configure VRRP & GLBP and VLAN Trunking 802.1Q & ISL, STP, Port Security on Catalyst 6500 switches.
Negotiate VPN tunnels using IPSec encryption standards and also configured and implemented site-to-site VPN, Remote VPN.
Provided proactive threat defense with ASA that stops attacks before they spread through the network.
Cisco ASA/Checkpoint Firewall troubleshooting and policy change requests for new IP segments that either come on line or that may have been altered during various planned network changes on the network.
Modified internal infrastructure by adding switches to support server farms and added servers to existing DMZ environments to support new and existing application platforms.
Responsible for Checkpoint and Cisco ASA firewall administration across global networks.
Generating RCA (Root Cause Analysis) for critical issues of layer1/layer2/layer3 problems.
Co-ordinate with the Data Network and Security team and came up with possible solutions.
Work on Physical site Inventory verification, gather information of various Cisco Network devices and Security Devices to develop Run book and Spec Book.
Cisco ASA/Checkpoint Firewall troubleshooting and policy change requests for new IP segments that either come on line or that may have been altered during various planned network changes on the network.
Configuration and troubleshooting of Cisco catalyst 6509, 7613 with supervisor cards.
Experience with implementing and maintaining network monitoring systems (Cisco works and HP Open view) and experience with developing complex network design documentation and presentations using VISIO
Estimated Project costs and created documentation for project funding approvals.
Monitoring and troubleshooting network issues between client site and 85 remote sites with legacy switches and routers
Performed and presented network analysis as a part of network migration. Involved in knowledge transfer to vendors and provided them network support as required
Worked as a single point of contact for the whole migration
Configuration and maintenance of EIGRP and BGP network on router 7200 and 6500 MLS.
Configuration and maintenance of 3750 stack and 6500 VSS for improved efficiency of the data plane.
Configuration and management of NEXUS network in the existing network infrastructure.
Created LAB setup with 7k and 5K NEXUS switches for application testing.
Environment: Cisco 3750/3550/3500/2960 switches and Cisco 3640/12000 /7200/3845/3600/2800 routers, Cisco ASA5510, Checkpoint, Palo Alto, Cisco Nexus7K/5K,2248/3560/5020/6509,ASA,Checkpoint,LAN,OSPF,BGP,RIP,EIGRP
******@*********.***
CareFirst, Baltimore- Maryland Dec 11 to Feb 13
Network Engineer
Key Responsibilities:
Designed and implemented Cisco VoIP infrastructure for a large enterprise and multi-unit office environment. Met aggressive schedule to ensure a Multi-office reconfiguration project which was successfully delivered
Responsible for service request tickets generated by the helpdesk in all phases such as troubleshooting, maintenance, upgrades, patches and fixes with all around technical support
Supporting EIGRP and BGP based PwC network by resolving level 2 &3 problems of internal teams & external customers of all locations.
Upgrade Cisco Routers, Switches and Firewall (PIX) IOS using TFTP
Updated the HP open view map to reflect and changes made to any existing node/object.
Experienced SRST and implemented and configured the Gateways, Voice Gateways.
Configuring HSRP between the 3845 router pairs for Gateway redundancy for the client desktops.
Configuring STP for switching loop prevention and VLANs for data and voice along with Configuring port security for users connecting to the switches.
Ensure Network, system and data availability and integrity through preventive maintenance and upgrade.
Involved in L2/L3 Switching Technology Administration including creating and managing VLANs, Port security, Trunking, STP, Inter-VLAN routing, LAN security.
Worked on the security levels with RADIUS, TACACS+.
Completed service requests (i.e. – IP readdressing, bandwidth upgrades, IOS/platform upgrades, etc.)
Identify, design and implement flexible, responsive, and secure technology services
Modified internal infrastructure by adding switches to support server farms and added servers to existing
DMZ environments to support new and existing application platforms.
Configured switches with port security and 802.1x for enhancing customers security.
Monitored network for optimum traffic distribution and load balancing using Solar winds.
Validate existing infrastructure and recommend new network designs.
Created scripts to monitor CPU/Memory on various low end routers in the network.
Installed and maintained local printer as well as network printers.
Experienced installation of Windows NT Server and Windows NT Workstations.
Experienced Tech Support as it relates to LAN & WAN systems
Environment: Net Flow,TACACS,EIGRP,RIP,OSPF,BGP,VPN,MPLS,CSM,SUP720, Ether Channels, Cisco 7200/3845/3600/2800 routers, Fluke and Sniffer, Cisco 6509/ 3750/3550/3500/2950 switches, Checkpoint firewalls(SPLAT).
******@*********.***
Prohubway PVT LTD, Ahmadabad- India Oct 09 to Sept11
Network and System Engineer
Key Responsibilities:
Provided estimated bandwidth requirements for data replication, to best determine adequate timing for migration service levels
Configuring HSRP between VLANs, Configuring Ether-Channels, Port Channel on 6500 catalyst
Switches Replace branch hardware with new 2851 routers and 2960 switches.
Implemented WLAN Aruba Wireless Access Points and its Controllers at various corporate sites fort 11n Infrastructure and its legacy technologies.
Experience in working with Cisco Nexus 5000 series switches for data center.
Configured OSPF on CISCO devices with multiple routing processes and redistributed them. Tested and hands on experience in multi area OSPF topologies.
Configuring, managing and troubleshooting networks using routing protocols like RIP, EIGRP and OSPF (Single Area and Multi Area).
Assisted with troubleshooting all network issues with routers and switches when necessary and consulted with on call tech as needed for client.
Monitor, troubleshoot, test and resolve Frame Relay, ATM, MLPPP, PPP, and Dial-up.
Configuring/Troubleshoot issues with the following types of routers Cisco (7200, 6500, 4500, 1700, 2600 and 3500 series), to include: bridging, switching, routing, Ethernet, NAT, and DHCP, as well as assisting with customer LAN /MAN, router/firewalls.
Wrote IOS and CAT OS upgrade procedures and Pre/Post checks for customer production upgrades.
Excellent Troubleshooting Skills and Customer Centric approach.
Actively participated in upgrading fast Ethernet, Layer 3 switched/routed LAN infrastructure from Cisco 3640 to Cisco 2811 ISR routers and switches at access level to 2950, 3550.
Configuring Vlan’s, VTP’s, enabling trunks between switches.
Configured VLANs with 802.1q tagging. Configured Trunk groups, ether channels, and Spanning tree for creating Access/distribution and core layer switching architecture.
Assisted in network engineering efforts consistent with the infrastructure of an Internet Service Provider and support of such network services. Helped in designing and implementation of VLAN for the new users.
Installation and Configuration of various types of Personal Computers and Printers. Installation of different operating systems on Intel based PC's.
Troubleshooting of personal computers. On line Support to customers concerning their computer problems.
Environment: Cisco 7200/3845/3600/2800 routers, TACACS, EIGRP, RIP, OSPF, BGP, VPN, Ether Channels, Fluke and Sniffer.
******@*********.***
Rigel Networks, Vadodara- India June08 – Sept 09
Network Engineer.
Responsibilities:
Configured network access servers and routers for AAA Security (RADIUS/ TACACS+)
Other responsibilities included documentation and change control
Responsible for Configuring SITE_TO_SITE VPN on Cisco Routers between Head Quarters and Branch locations
Implemented the security architecture for highly complex transport and application architectures addressing well known vulnerabilities and using access control lists that would serve as their primary security on their core & failover firewalls
Installation & configuration of Cisco VPN concentrator 3060 for VPN tunnel with Cisco VPN hardware & software client and PIX firewall
Involved in troubleshooting of DNS, DHCP and other IP conflict problems
Used various scanning and sniffing tools like Wire-shark.
Experience with Infoblox technologies.
Hands on Experience working with security issue like applying ACL’s, configuring NAT and VPN
Documenting and Log analyzing the Cisco PIX series firewall
Configured BGP for CE to PE route advertisement inside the lab environment
Spearheaded meetings & discussions with team members regarding network optimization and regarding BGP issues.
Plans, coordinates, implements and supports the LAN / WAN hardware, software and Internet /Intranet integration network connectivity, diagnose network failures and resolve any problems.
Responsible for implementation and day to day operations of all associated hubs, routers, bridges, gateways and related equipment
Monitoring the network, troubleshooting network problems, implementing changes, communicating and working closely with vendors, customers, system administrators
Troubleshoot Frame Relay; T1, T3, IP and OSPF related router and circuit issues.
Responsible for LAN and internet connection file and print server.
Maintained and installed new internet connections for customers.
Created load balancing policies using BGP attributes such as Local Preference, AS-Path, MED, Community etc.
Validate existing infrastructure and recommend new network designs.
Created scripts to monitor CPU/Memory on various low end routers in the network.
Installed and maintained local printer as well as network printers.
Experienced installation of Windows NT Server and Windows NT Workstations.
Experienced Tech Support as it relates to LAN & WAN systems
Education
Bachelors in Electronics and Communication, DDU, Nadiad – Gujarat.
Diploma in Electronics and Communication (Gold-medalist), Surat – Gujarat.
Certification
Cisco Certified Network Associate (CCNA)
Cisco Certified Network Professional (CCNP)
References: Available upon request
Willing to relocate
Contact this candidate