Vamshi
Sr. Network Engineer
*****************@*****.***
SUMMARY:
* ***** ** ********** *** having multiple Certifications Cisco (CCNA&CCNP), in designing, architecting, deploying and troubleshooting Network & Security infrastructure on routers, switches (L2/L3) & firewalls of various vendor equipment.
Working Knowledge of Cisco IOS, Junos & basic Nexus (7K, 5K&2K).
Efficient designing of IP Addressing Scenario using VLSM and Sub netting.
Good at OSI Layers concepts.
Strong hands on experience on PIX (506, 515, 525, 535), ASA (5505/5510) Firewalls.
Implemented security policies using ACL, Firewall, IPSEC, SSL, VPN, IPS/IDS, AAA(TACACS+ & RADIUS)
Allocation and designing appropriate virtual IP for F5 ADC through IPAM infoblox.
Strong hands on experience in layer-3 Routing and layer-2 Switching. Dealt with Nexus models like 7K, 5K, 2K series, Cisco router models like 7200, 3800, 3600, 2800, 2600, 2500, 1800 series and Cisco catalyst 6500, 4500, 3750, 3500, 2900 series switches
Technology and Infrastructure consultant for Cisco and Juniper design and implementation projects. Specific tasks include installations, configurations, support and maintenance of routers and switches.
Experience in Layer 3 Routing protocol configurations: RIP, EIGRP, OSPF, BGP, & MPLS.
Experience in Layer 2 Routing protocol configurations: ATM/FRAME RELAY, IP services such as QoS and VPN technologies: IPsec & SSL.
Experience in working with Windows power shell scripting to maintain and administrating server environments.
Extensive experience in configuring Layer3 routing and layer2/3 switching of Juniper & Cisco based J2320,MX,EX,2950,2960,3600,3750,4500,6500,1700,1800,2600 and 3700 series routers & Switches.
Troubleshooting & implementation of Vlan, STP, MSTP, RSTP, PVST, 802.1Q, DTP, HSRP, VRRP, GLBP, LACP, PAGP, AAA, TACACS, RADIUS, MD5, VTP & SVI.
Familiar with Cisco firewalls PIX 515, ASA 5500 series, Juniper SRX and Netscreen Firewalls. Knowledge of Palo Alto and Checkpoint Firewalls.
Installed and configured the ACE and CSM for firewall/Server Load balancing for Cisco Catalyst switches.
Worked on PAP, CHAP, Cisco PIX, Checkpoint, ASA, BlueCoat proxy
Provided management and troubleshooting of all network Bluecoat proxy
Knowledge of Microsoft Exchange 2013, 2010, 2007, 2003 administration, Microsoft Visio.
Experience with design and implementation of Virtual Switching System (VSS)
Familiar with bluecoat ProxySG S200, S400.
Worked in the environment of cloud based technologies such as Azure and Vmware
Proficient in setting up IT infrastructure including wide area networks (WAN) local area networks (LAN), security management systems network device administration.
Experience with F5 load balancers and Cisco load balancers (CSM, ACE and GSS)
Experience working with Cisco IOS-XR on the ASR9000 devices for MPLS deployments
Experience working with ARISTA switches like 7100, 7500 for cloud computing, datacenter and low latency networks
Worked with ITIL (Information and technology information library) for managing our services.
Experience with Riverbed for WAN optimization
Strong knowledge of Gateway Redundancy Protocols. HSRP, VRRP, and GLBP
Experience working with Nexus 7010, 5020, 2148, 2248 devices.
IOS/JUNOS upgrade for Cisco & Juniper routers cum switches.
Experience in testing Cisco & Juniper routers cum switches in laboratory scenarios and deploy on site for production.
Knowledge in Password Recovery and trouble shooting of Cisco & Juniper device.
TECHNICAL SKILLS:
Routers: Juniper & Cisco based J2320,MX,EX,2950,2960,3600,3750,4500,6500,1700,1800,2600
Switches: Cisco 3550, 3750, 4500, 4900, 6500 and Cisco Nexus 2000, 5000, 7000 Series.
Firewalls: Juniper SRX -100,SRX-110,SRX-210 & SRX-220, Cisco ASA
Routing: OSPF, EIGRP,BGP,RIP, PBR, Route Filtering, Redistribution, Summarization, Static routing
Switching: VLANs, Dot1Q, VTP, STP, RSTP, VLAN Maps, HSRP, GLBP, CEF, DCEF, Port Security
LAN/WAN Technologies: Ethernet, Frame relay, MPLS, HDLC, PPP, T1, T3,OC Standard, ISDN
Protocols: IP, TCP, UDP, ICMP, NAT, DleadNS, DHCP, SNMP, IPSEC, SSL, HTTP, SSH.
VPN Technologies: IPSEC, SSL
CERTIFICATIONS
Cisco Certified Network Professional(CCNP)
Cisco Certified Network Associate(CCNA)
PROFESSIONAL EXPERIENCE
Liberty Mutual, Portsmouth NH Mar 2014 - Present
Network Engineer /F5 Expert
Responsibilities:
Implementation, configuration & troubleshooting the issues related to Virtual Servers, pools, nodes & certificates on F5 Load Balancer.
Experience with converting Cisco ACE load balancer to F5 LTM load Balancer in data center environment.
Experience with convert PIX rules over to the Cisco ASA solution
Experience working with Cisco Nexus 2148 Fabric Extender and Nexus 7010 5000 series to provide a Flexible Access Solution for datacenter access architecture.
IPSO Versions and Checkpoint SW are currently being remediated to current target version of IPSO 6.1 Build 38 running Checkpoint R65 Build 63, Currently remediating Running in Active/Active Cluster mode into VRRP High Availability setups
Perform extensive testing around the upgrade, migration and configuration functionality of our software
Strong knowledge on networking concepts like TCP/IP, Routing and Switching
Dealt with monitoring tools like (Solar Winds, Cisco Works), network packet capture tools like Wireshark.
Configured Frame-Relay, ISDN, ATM, Protocols, & load balancing switches.
Configured IPX/SPX, HDLC, PPP, BGP, EIGRP, OSPF, & HSRP.
Possess a good experience working with the Trouble Tickets on F5 Load balancers, including Cisco CSS, Brocade ADX and both F5 LTM and GTM products.
Implementing for new irule creation as per the client request.
Implemented configuration scripts and necessary changes on switches & routers as per IBM.
Extended support on access layer, distribution layer and core layer device of IBM as per assigned.
Experience with moving data center from one location to another location, from Cisco 6500 based data center to both Cisco 6500 & Nexus based data center.
Experience with using F5 Load balancer in providing worldwide data and file sharing, continuous internet connectivity, optimized web performance
Switching tasks include VTP, ISL/ 802.1q, IPSec and GRE Tunneling, VLANs, Ether Channel, Trunking, Port Security, STP and RSTP.
Experienced with Windows 2008/2012 active directory design installation and migration.
Worked on migration of Citrix NetScaler load balancer to F5 load balancer.
Network security including NAT/PAT, ACL, and ASA/PIX Firewalls.
Good knowledge with the technologies VPN, WLAN and Multicast.
Worked on ACE load balancers. Experience with F5 load balancers - LTM, GTM series like 6400, 6800, 8800 for the corporate applications and their availability.
Involved in design and deploying various network security & High availability products like Cisco ASA and other security products.
Maintenance of citrix-Netscalar 9800 load balancer to monitor the traffic at the severs end
Configured and maintained IPSEC and SSL VPN's on Palo Alto Firewalls.
Successfully installed Palo Alto PA-3060 firewalls to protects Data Center and provided L3 support for routers/switches/firewalls
Implemented Site-to-Site VPNs over the internet utilizing 3DES, AES/AES-256 with PIX Firewalls
Experience with MP-BGP and MPLS LDP protocols.
Configuration and Administration of Palo Alto Networks Firewall to manage large scale Firewall deployments.
Migration of existing IPSEC VPN tunnels from Pre-Shared key to Certificate Authority for purpose of scaling.
Experience in working and designing configurations for vPC, vPC domian, vpc peer-gateway, vPC
switch, auto-discovery, and vPC single sided, vPC double sided, NX-OS, VFR, Otv, fabric path
Health check and automated IOS and script updates applied via voyance application.
oBest practice implemented on Cisco & Juniper routers and switches.
Configure Deploy, and Troubleshoot Greenville Health System's Wireless Network utilizing Cisco WCS, wireless.
Managing health check of Network devices this is involves upgrading IOS on every quarter after checking the vulnerability of IOS and reviewing the configuration.
Worked on NNMI, Infoblox, e-health monitoring tools.
Successfully implemented EOL project alias 'End of life equipment' assigned as per IBM guidelines in live environment.
Create econnect rules for the internal network using bluecoat proxy.
Manage Bluecoat proxy SG devices devices.
Worked with web security gateway like bluecoat proxySG for content filtering, authentication and ICAP relay.
Work with Load Balancing team to build connectivity to production and disaster recovery servers through F5 Big IP LTM load balancers
Configuring various advanced features (Profiles, monitors, iRules, Redundancy, SSL Termination, Persistence, SNATs, HA on F5 BIGIP appliances SSL termination and initiation, Persistence, Digital Certificates, Executed various migration/upgrade projects across F5 and hands on with F5 BIGIP LTMs/EM.
Worked on upgrading Cisco ASA 5520 series FW to 5515-X series FW.
Administered Windows server 2003 active directory and like creation and deletion of user accounts, managing access controls and domain structure configurations.
Installation & decommission of new/old sites as per IBM.
Extending end to end network support on L2 and L3 switches.
Configured and resolved various OSPF issues in an OSPF multi area environment.
Installation and Configuration of Cisco Catalyst switches 6500, 3750 & 3550 series and configured routing protocol OSPF, EIGRP, BGP with Access Control lists implemented as per Network Design Document and followed the change process as per IT policy It also includes the configuration of port channel between core switches and server distribution switches.
Network Redesign for Small Office/Campus Locations. This includes changes to both the voice and data environment
Hands on experience in Cisco ASA 5505, 5510, 5520, 5540, 5545-x with firepower, 5550 series firewalls,
Cisco Source fire Amp IPS and Cisco ACS.
Extensive Knowledge on the implementation of Cisco ASA 5500 series and checkpoint R 75 firewalls.
Worked on Installation and monitored extreme networks S-series, 7100 stackable switches and E4G-400, 1800 router to support VMware machines in NCFAST
Installation and trouble-shooting of LAN, WAN & Multi-Layer Switching using WAP.
Act as first point of contact to diagnose an issue and drive it to closure.
Troubleshooting of complex LAN/WAN infrastructure that include routing protocols EIGRP, OSPF & BGP.
Experience with convert Checkpoint VPN rules over to the Cisco ASA solution. Migration with both Checkpoint and Cisco ASA VPN experience.
Experience in working with LTM and GTM for scaling and securing DNS infrastructure during high volumes
Ensure all devices are running with latest IOS as per IBM along with latest passwords.
Trace ports of user via trace route and ping to process change in vlan assignment as requested by user via TMAC process and notify them once done.
Expertise in IP addresses allocation for all the networking devices including switches, routers, Firewalls and f5 Load balancers through DNS entry into infoblox.
Ultimate Software, Weston, FL Oct 2012 – Feb 2014
Network Engineer
Responsibilities:
Involved in design and implementation of Data Center Migration, worked on implementation strategies for the expansion of the MPLS VPN networks.
Work on different networking concepts and routing protocols like BGP, EIGRP, OSPF and other LAN/WAN technologies. Implementing, Monitoring, Troubleshooting and Convergence in Frame-Mode MPLS inside the core.
Monitoring the network traffic with the help of Qradar and Cisco IPS event viewer.
Update changes done in device and notify respective portals of IBM to document changes done.
Implemented new device of Cisco & Juniper as per policy reviewed by network architect.
Worked on different Cisco & Juniper devices of access, distribution and core.
Implemented conversion of wireless access points to light weight access points & associate to respective wireless controllers.
Extensive experience taking copy of Cisco IOS on TFTP server and loading back on routers and switches.
Working with MPLS Designs from the PE to CE.
Experience with designing and deployment of MPLS Traffic Engineering.
Design and deployment of MPLS QOS, MPLS Multicasting per company standards.
Proactively involved in upgrade, maintenance, monitoring and support for the PA500 Palo Alto devices.
Install, Configure, and Deploy Cisco Call Manager enterprise wide.
Performed OSPF, BGP, DHCP Profile, HSRP, IPV6, Bundle Ethernet implementation on ASR 9Kredundant pair.
Worked as a part of data center deployment where we upgraded from Cisco 6500 to Nexus.
Hands of experience on tools like Ethereal, Tcp dump, Iperf.
Handled installation of Windows NT Server and Windows NT Workstations.
WAN optimization POC utilizing Riverbed steelhead, Cisco WASS and silverpeak appliances. Configured and installed devices into pilot sites and production data center.
Worked with VMWare and Flex team for Configuring and installing Dell Power Connect switch 5548 and increasing their Bandwidth Usage
Worked on Network monitoring tools like Orion and Net scout.
vBlock up gradation such as vCenter server upgradation, ESXi, UCS blades.
Deployed the Fabric interconnect, blade servers, mezzanine card on the UCS chasis.
Work with Load Balancing team to build connectivity to production and disaster recovery servers through F5 Big IP LTM load balancer.
Experience with configuring Nexus 2000 Fabric Extender (FEX) which acts as a remote line card (module) for the Nexus 5000.
Knowledge with CDP, FDP, LLTD and LLDP.
Monitoring the egress and ingress filtering for the LAN and WAN traffic at the ingress and egress points.
Monitor the exception policies at the ingress and egress points
Familiar with the working environment of Palo Alto networks.
Installing and configuring new Cisco equipment including Cisco catalyst switches 6500, Nexus 7010, Nexus 5548 and Nexus 2k as per the requirement of the Organization.
Analyzed and tested network protocols (Ethernet, TCP/IP) using Wire shark tool
Basic and advance F5 load balancer configurations, including migrating configurations from Cisco ACE to F5 and general troubleshooting of the F5 load balancers.
Working on Cisco ASA 5580, Cisco PIX 535, Juniper NS5400, Juniper SRX550.
Configured Routing protocols such as OSPF, static routing and policy based routing.
Configuration 7609, 7606 with OSPF and 6505, 4500, 3550 switches with various VLAN.
Implemented cluster and configuration of SRX-100 Juniper firewall.
Installation & Maintenance of Juniper switches, routers & firewalls for Tata Consultancy Services onsite as per contract.
Technical Support of Cisco Nexus Switch and Cisco router using different Troubleshooting protocol. Manage Cisco routers and switches, including performing installations, upgrades, configurations and management.
Experience configuring VPC(Virtual Port Channel), VDC(Virtual Device Context) in Nexus 7010/7018
Implemented various EX, SRX & J series Juniper devices.
Implementing and configuring F5 LTM's for VIP's and Virtual servers as per business needs.
Did some Troubleshooting for LAN/WAN virtualization using different routing protocols like IGRP, EIGRP, BGP, OSPF, ISIS, MPLS, VLAN, and port security.
Provided Cisco Routers support in a Wireless LAN/LAN/WAN environment by Installing/configuring Trip Wire and trouble-shooting Network connectivity issues in a multitasking Ethernet environment
Worked on FTP, HTTP, DNS, DHCP servers in windows server-client environment with resource allocation to desired Virtual LANs of network.
Involved in Configuring and implementing of Composite Network models consists of Cisco7600, 7200, 3800 series and ASR 9k, GSR 12K, CSR-1 routers and Cisco 2950, 3500, 5000, 6500 Series switches.
Configured Multiprotocol Label Switching (MPLS) VPN with Routing Information Protocol (RIP) on the customer’s Site.
Installed controller and light weight access point coordination with JTAC.
Maintenance and trouble-shooting of LAN, WAN, IP Routing, Multilayers Switching.
Performing onsite data center support including monitoring electrical power, switch alarms, network alerts and access logs.
Worked on Cisco ASA firewall administration across the network.
Installed simplified and traditional VPN communities, and Cisco Any connect
Supported customer with the configuration and maintenance of ASA and IDS/IPS firewalls firewall systems.
Involved in Configuration of Access lists (ACL) on ASA firewall for the proper network routing for the B2Bnetwork connectivity and TCP/IP.
Designed and implemented DMZ for Web servers, Mail servers & FTP Servers using Cisco ASA5500 Firewalls.
Maintained redundancy on Cisco 2600, 2800 and 3600 router with HSRP.
Configuring VLAN, Spanning tree, VSTP, SNMP on EX series switches.
Worked extensively on Checkpoint firewalls for analyzing firewall change requests and implementing changes into existing firewall policies, maintaining security standards.
Experience with deploying Fabric Path using Nexus 7000 Devices
Experience with configuring OTV between the data centers as a layer 2 extension.
Experience with configuring FCOE using Cisco Nexus 5548.
Implemented site to site VPN in Juniper SRX as per customer.
Implemented Juniper firewall & switches for various clients like AT&T, Qualcomm and SunTrust Bank as assigned.
T-Mobile, Parsippany NJ Jul 2010 – Sep 2012
Network Engineer
Responsibilities:
In-depth expertise in the implementation of analysis, optimization, troubleshooting and documentation of LAN/WAN networking systems.
Configured and troubleshoot OSPF and EIGRP.
Support for tier 2, tier 3 issues and troubleshooting on DNS entry through infoblox.
Planning and configuring the routing protocols such as OSPF, RIP, and Static Routing on the routers.
WAN Infrastructure running OSPF & BGP as core routing protocol.
Tested authentication in OSPF and BGP.
Configure the Cisco CRS-1 Routing System, back out of configuration changes, and restore older versions of a configuration.
Route configuration and point code checks for System Technician and Network Technician.
Knowledge and experience of 802.11 a/b/g/n Ethernet standard for wireless Technology.
Troubleshooting of Cisco 2800, 2900, 3900, 7200, 7600, Series routers.
Configured various Routing protocols such as RIP, OSPF, EIGRP, static routing.
Performed and technically documented various test results on the lab tests conducted.
Hands on Experience working with security issue like applying ACL’s, configuring NAT and VPN
Responsible for Internal and external accounts and, managing LAN/WAN and checking for Security
Work on different connection medium like Fiber and Copper Connectivity.
Installed and configured Cisco ASA 5500 series firewall and configured remote access IPSEC VPN on Cisco ASA 5500 series
Responsible for Configuring SITE_TO_SITE VPN on VPN Concentrators series between Head office and Branch office
Worked with Enterprise Intrusion Detection / IPS (Snort, Source fire, Juniper IDP, IBM ISS, McAfee Intrushield.
Experienced with Windows 2008/2012 active directory design installation and migration.
Installation & configuration of Cisco VPN concentrator 3060 for VPN tunnel with Cisco VPN hardware & software client and PIX firewall
Configured Firewall logging, DMZs& related security policies & monitoring
Worked on Cisco Layer 2 switches (spanning tree, VLAN).
Planning and configuring the entire IP addressing plan for the clients' network.
Assist the certification team and perform configuration of LAN\WAN technologies such as Ethernet, Fast Ethernet, and Gigabit Ethernet.
Polaris, India Apr 2008 – Jun 2010
Network Engineer
Responsibilities:
Troubleshooting of CISCO routers like ping, trace route and basic issues.
Ensure connectivity and communication among networks, servers and clients inside and outside department.
Experience on Data/Voice cabling services (Cat5,Cat5e, Cat6, Fiber).
Virtualization of network using Vmware
IOS upgrade for Cisco routers & switches.
Configured and troubleshoot OSPF and EIGRP.
Ensure reliability, stability and recoverable of specific server environments.
WAN Infrastructure running OSPF & BGP as core routing protocol.
Tested authentication in OSPF and BGP.
Troubleshooting Riverbed Issues and settings.
Worked on Riverbed ARX netflow module.
Configured and optimization settings of Riverbed
Normally primary focus involves server hardware associated operating systems and general responsibilities, backup strategies. Install and upgrade operating system software configuration and optimize storage systems.
Installed and configured Cisco ASA 5500 series firewall and configured remote access IPSEC VPN on Cisco ASA 5500 series.
Planning and configuring the routing protocols such as OSPF, RIP, and Static Routing on the routers.
Installation & configuration of Cisco VPN concentrator 3060 for VPN tunnel with Cisco VPN hardware & software client and PIX firewall.
Developing and implementing policy to ensure the integrity, protection and availability to authorized persons of department data and hardware, software and other components which are required for processing data.
Responsible for evaluating impact and performance on the network server.
Managing Layer 2 switches of Cisco, VLAN configuration and assigning ports to specific VLAN as per requirement.
Monitor and tune network to ensure acceptable levels of performance.
Responsible for Internal and external accounts and, managing LAN/WAN and checking for Security
Evaluate applications connectivity requirements.
Configuring various clients like Outlook Express, MS-Outlook 2003 & 2007