Engineer Network
Resume:
Kuntal
SR. Network Engineer
acv7xc@r.postjobfree.com
Summary:
A Results-driven IT professional with the extensive experience of over 8+ years in the field of engineering, administration and support of Computer information systems.
In depth expertise in Implementation, analysis, Troubleshooting and documentation of WAN/LAN network systems.
Capabilities include an extremely broad knowledge base and familiarity with the latest cutting-edge technologies including Firewalls, VPN, IDS, and IPS.
Knowledge of Intrusion Detection, DMZ, encryption, IPsec, proxy services, Site to Site VPN tunnels, MPLS/VPN, SSL/VPN.
Sound knowledge of Routing and switching concepts and MPLS design.
Good sound technical Knowledge of JUNOS Platform with Juniper upgrade planning and implementation, Consulting and Management Expertise, Troubleshooting & debugging on standard protocols.
Proficient in Cisco IOS for configuration & troubleshooting of Routing protocols: MP-BGP, OSPF, LDP, EIGRP, RIP, BGP v4, MPLS.
Worked on Juniper Net Screen Firewalls like, NS50, SSG550M, SSG520M, ISG 1000, ISG 200 and Cisco PIX 535, 520,515, ASA -5585, 5550, 5540.
Responsible for Check Point and Cisco firewall administration across global networks.
Experience with Bluecoat Proxy servers, LAN & WAN management.
Experience working with Cisco Nexus 2148 Fabric Extender and Nexus 5000 series to provide a Flexible Access Solution for data center access architecture.
Familiar with Cisco Security SDM, NAT/ACLs, AAA, Layer 2 Security, Layer 3 Security, IPS/IDS, Cryptography, VPN, IPsec.
Worked on F5 LTM, GTM series like 6400, 6800, 8800 for the corporate applications and their availability.
Implemented and maintained Big-IP F5 load balancing solution across multiple datacenters.
Set-up, Configuration & troubleshooting in mid-level and intermediate level of Palo Alto Firewalls.
Trunks, VTP, ISL/ 802.1q, Ether channel, Port Security, STP, RSTP and MST.
Extensive experience in Layer 3 routing and Layer 2 switching.
In depth understanding of IPV4 and implementation of Subnetting.
Well Experienced in Configuring Protocols HSRP, ICMP, IGMP, PPP, PAP, CHAP, and SNMP.
Experienced in DNS, DHCP, SMTP, FTP, HTTPS and web security architecture
Implemented IPv4 migration to IPv6 (NAT-PT, Tunneling, etc.) and IPv6 routing protocols (RIP, OSPFv3, EIGRP, BGP etc.).
Moderate knowledge in configuring and troubleshooting Cisco Wireless Networks: LWAPP, WLC,
WCS, Standalone APs, Roaming, Wireless Security Basics, IEEE 802.11 a/b/g, RF spectrum characteristics.
Experience in testing Cisco routers and switches in laboratory scenarios and then deploy them on site for production.
Excellent interpersonal, communication and organizational skills with the ability to interact effectively with employees at all levels within the organization.
Involved in troubleshooting network traffic and its diagnosis using tools like wire shark, TCP dump and Linux operating system servers.
High aptitude knowledge to design and implement network solutions based on business requirements.
Consistence track record for diagnosing complex problem with delivering effective solutions
Proven ability to lead and motivate project team to ensure success.
Specialized Skills:
Routers: Cisco routers (1900, 2600, 2800, 2900, 3600, 3800, 3900, 7200, 7600), Cisco L2 & L3.
Switches: Cisco switches (3560, 3750, 4500, 4900 & 6500), Nexus Switches (2248, 5548 & 7010).
Routing Protocol: RIP, EIGRP, OSPF & BGP, Route Filtering, Redistribution, Summarization, Static routing.
Switching Protocols: VTP, STP, RSTP, MSTP, VLANs, PAgP, and LACP.
Cisco router platforms: 2500, 2600, 2800, 3600, 3700, 3800, 7200, 7609.
Cisco Switch platforms: 2900XL, 2950, 2960, 3560, 3750, 4500, and 6500.
Firewalls & Load Balancers: Cisco ASA 5585, 5550, 5540, Juniper Net Screen 6500, 6000 & 5400, Juniper SSG, Cisco PIX 535, 520,515, Palo Alto PA-3060/2050, F5-BIG-IP LTM, Checkpoint Gaia R76 & R77, Blue Coat SG8100, AV 510 & AV 810.
Juniper: M10i, M120, J series, Juniper SRX, Juniper ERX-1440.
WAN Technologies: E3, E1, T1, T3, ISDN, HDLC, PPP, ATM, FRAME RELAY, PPP, ATM, MPLS, leased lines, DSL modems.
LAN Technologies: Ethernet, Fast Ethernet, Gigabit Ethernet, NAT/PAT, FDDI. Cisco
VOIP Devices: Cisco IP phones, Avaya.
Secure Access Control Server: ACS for TACACS+/Radius
Network Management Tools: PUTTY, Tera term, SNMP, Cisco Works LMS, HP Open View, Solar winds, Ethereal.
Layer 3 Switching: CEF, Multi-Layer Switching, Ether Channel.
Carrier Technologies: MPLS, MPLS-VPN.
Redundancy protocols: HSRP, VRRP, GLBP.
Security Protocols: IKE, IPsec, SSL, AAA, Access-lists, prefix-lists.
PROFESSIONAL EXPERIENCE
Univar, Redmond, WA April 2015 – Present
Sr. Network Engineer
Responsibilities:
Involved in complete LAN & WAN development (including IP address planning, designing, installation, configuration, testing, and maintenance).
Deployed and implemented corporate infrastructure using IP protocols RIP, OSPF, EIGRP and BGP.
Configuring RADIUS or TACACS+ authentication on Cisco ASA firewalls also Configured ASA NAT with for outbound PAT or static NAT
Responsible for configuring Cisco ASA secured routing templates allowing IBMs client to encrypt routing protocol updates on the firewall, if enabled, spent hours troubleshooting Cisco VPNs both Site-to-Site and Remote Access
Performed installation and configuration of Cisco Switches, Routers, Telnet, Network Management & Analysis Tools
Configured & Maintained the Local Network using 2900, 3500 & 6500 series Switches and Cisco 2800, 3600, 3800 & 7200 Routers.
Configured and installed the 3800 series Routers in place of older 1800 series Routers.
Upgrading IOS versions on Cisco Switches & Routers through Cisco Network Assistance MPLS configuration throughout the company with BGP protocols.
Configured switches with RSTP protocols for switching in the organization.
Involved in L2/L3 Switching Technology Administration including creating and managing VLANs, Port security, Trunking, STP, Inter VLAN routing, LAN security.
Configure Virtual Servers, Nodes, and load balancing Pools in F5 BIG-IP LTM.
Configured and deployed BIG-IP LTM 6900 for providing application redundancy and load balancing.
Configured Client VPN technologies including Cisco's VPN client via IPSEC.
Configured FTP server for inside/outside users and vendors.
Involved with a Team to configure voice VLANs and implemented QoS for VOIP.
Created access control lists that would serve as the primary security on their core and failover Firewalls.
Managed applications and network performance with different monitoring tools such as Riverbed, Genius, Net Scout and Net flow.
Managed the network performance using Cisco works LMS 3.1 and HP Open View.
Install and maintain various server technologies including, TCP/IP, Active Directory, Routing and remote access, terminal services, Microsoft Exchange 2003.
Participated in on call support in troubleshooting the configuration and installation issues.
Develop documentation set for each site using Microsoft Office Suite and Visio.
Environment: Cisco ASA Firewalls, Cisco 2990/3550/6550 switches, Cisco 7200/3845/3600/2800/3800 routers, Routing Protocol-RIP, EIGRP, RIP, OSPF, BGP, BIG-IP LTM 6900, Cisco works LMS 3.1 and HP Open View, VPN.
State Farm, Bloomington, IL Dec 2013 – Mar 2015
Sr. Network Engineer
Responsibilities:
Tuned BGP internal and external peers with manipulation of attributes such as metric, origin and local Preference.
Good knowledge on Intrusion Detection and Intrusion Prevention System.
Configuring, upgrading and deployment of Nexus 7010, 5596 and 2248
Working with Cisco Nexus 2248 Fabric Extender and Nexus 5500 series to provide a Flexible Access Solution for datacenter access architecture.
Experience with configuring Nexus 2000 Fabric Extender (FEX), which acts as a remote line card (module) for the Nexus 5000.
Worked extensively on Cisco ASA 55xx series
Worked on FTP, HTTP, DNS, DHCP servers in windows server-client environment with resource allocation to desired Virtual LANs of network.
Responsible for day to day management of Cisco Devices, Traffic management and monitoring. Knowledge on multiplex techniques such as DWDM.
Configured OSPF over frame relay networks for NBMA and point to multipoint strategies.
Support for Configuration of Juniper M10i, M120, J series, Juniper SRX, Juniper ERX-1440.
Migrating firewall configurations into Cisco Security Manager (CSM) along with that also has Experience in managing Bluecoat proxy servers
Implementing traffic engineering on top of an existing Multiprotocol Label Switching (MPLS) network using Frame Relay and Open Shortest Path First (OSPF).
Implemented Hot Standby Router Protocol (HSRP) by tuning parameters like preemption.
Implemented various OSPF scenarios on networks consisting of 7600 routers.
Configured policy based routing for BGP for complex network systems.
Experience with Synchronous Optical Networking (SONET) over optical fiber.
Involved in Configuring and implementing of Composite Network models consists of
Configuration of Cisco7600, 7200, 3800 series and ASR 9k, GSR 12K routers and Cisco 2950, 3500, 5000, 6500-Series.
Configured networks using routing protocols such as RIP, OSPF, BGP and manipulated routing updates using route-map, distribute list and administrative distance for on-demand.
Environment: Cisco Nexus 2K/5K/7K, ACS, FTP, HTTP, DNS, DHCP, Cisco ASA/PIX, Checkpoint, IDS/IPS Net-screen firewalls, Routing Protocols (OSPF, BGP, RIP), Juniper M SERIES (M 10i & M120i), SRX and ERX, Cisco Routers (Cisco7600, 7200, 3800 series and ASR 9k, GSR 12K), Cisco Switches (Cisco 2950, 3500, 5000, 6500).
Access Agility LLC, Vienna, VA Aug 2012 – Nov 2013
Network Support Engineer
Responsibilities:
Troubleshooting all phases of installation & support.
Experience with convert PIX rules over to the Cisco ASA solution.
Intermediate-level configuration and setup of Palo Alto firewalls.
Configuring Virtual Chassis for Juniper switches EX-4200, Firewalls SRX-210.
Experience with Checkpoint Firewall policy provisioning.
Expertise in maintenance of layer2 switching tasks which advocate VLAN, VTP, STP, RSTP, PVST & RPVST along with Configuring of ether channel with LACP and PAGP along with troubleshooting of inter-VLAN routing.
Configured PVSTP+ for loop prevention and VTP for Inter-VLAN Routing.
Configured various Router interfaces like ATM interface, T3 interface, and Channelized T1 interfaces.
Involved in IOS and CAT OS upgrade procedures and Pre/Post checks for customer production upgrades.
Experience working with NCM and Infoblox.
Experience designing and implementing load balancing solutions for large enterprises.
F5 Load Balancer - BIG IP iRule creation and support for pool targeting/traffic directing.
Configured, installed, & managed DHCP, DNS, & WINS servers.
Carried out performance monitoring & documentation of relevant network segments to ensure data integrity & environmental safety.
Implemented Site-to-Site VPNs over the internet utilizing 3DES, AES/AES-256 with PIX Firewalls.
Configured network access servers for AAA Security.
Enabled continuous Layer 2 monitoring with Solar Winds, so that each site can run independently until connectivity is restored.
IPv4, IPv6subnetting /super netting for Host or Network requirements.
Implement and configured GLBP (on core switching and also for VPN redundancy), HSRP on different location of office on the switched network and managing the entire multilayer switched network.
Used Kiwi-Cat tools to manage configurations from desktop for network devices, including routers, switches and firewalls. Generate network device configuration reports, such as port, MAC, APR and version details.
Responsible for the Global engineering and support of existing network technologies / services and the integration of new network technologies / services.
Responsible for managing activities, Upgrading IOS - Upgrading hardware and installing new devices, tuning (Configuration), make standardization for the topology.
Installation & configuration of Microsoft Proxy Server 2.0.
Network Redesign for branches/Campus Locations. This includes changes to both the voice and data environment.
Migration of existing IPSEC VPN tunnels from Pre-Shared key to Certificate Authority for purpose of scaling.
Replace branch hardware with new 2851 routers and 2960 switches.
Conversions to BGP WAN routing. Which will be to convert WAN routing from OSPF to BGP (OSPF is used for local routing only) which involves new wan links.
Convert Branch WAN links from TDM circuits to MPLS and to convert encryption from IPsec/GRE to GetVPN.
Performed basic security audit of perimeter routers, identifying missing ACL's, writing and applying ACL's.
Responsible for layer 2 securities which was implemented using a dedicated VLAN ID for all trunk ports, setting the user ports to non-trunking, deployed port security when possible for user ports.
Provide front end on-call network support 24x7x365 for all network infrastructures in the co-operation.
Environment: Cisco routers (7200, 3800, 2800) and Cisco switches (6500, 3700, 4900, 2900),IPV4, IPV6, Routing Protocols (EIGRP, OSPF, BGP), Switching protocols (VTP, STP, GLBP, HSRP), Cisco PIX(525, 535), ASA(5505, 5510), Palo Alto Firewalls.
Gateway Techno labs, Ahmedabad, India Nov 2010 – July 2012
Jr. Network Engineer
Responsibilities:
Have ability to install and maintain Microsoft Exchange and worked extensively on different applications.
Sound Knowledge about Juniper platform with ability to capitalized technical requirements, Test, integration and operations support.
Preparing Client Machines for users with Operating Systems, Software, antivirus and required utilities and mailing clients etc.
Primarily responsible in designing and maintaining the budget for the whole network.
Perform daily maintenance, troubleshooting, configuration, and installation of all network components.
Configuration of CISCO Routers (3600, 4000 Series) and 3550, 4500 series switches.
Configuration Support to the Juniper M SERIES (M 10i & M120i), Juniper BRAS Router (juniper ERX 1440), JUNIPER SRX (SRX 5600).
Palo Alto Firewall training (CNSE path) and Mid-level configuration and setup of Palo Alto firewalls.
Troubleshoot MLPP, T1, T3, OC3, OC12, and OC48 circuits with LEC to define trouble on circuit.
Responsible for handling Proactive alarm tickets generated on T3 and above Circuits.
Troubleshoot all latency issues with customers using available utilities such as pings and trace routes.
Provide 24x7 support and monitoring all WAN connections.
Configured catalyst 2900/1900 switches for LAN connections.
Configure Troubleshoot and Manage Cisco 4500/2500 routers.
Responsible for all Government’s market circuits and MPLS circuits.
Interface with all team members and leaders to resolve Network issues.
Work with vendors on dispatch out new routers or WICs to the customer’s site.
Monitor customer’s bandwidth usage through a network tools and routers.
Troubleshoot OSPF and BGP routing protocol issues.
Troubleshoot Frame Relay, PPP, HDLC and other WAN protocol issues.
TCP/IP network planning, Implementation and Management with subnets.
Implementation of Virtual LANs across Routers and Switches.
Implemented and Configured IP Routing Protocols: OSPF, EIGRP, and RIPv2.
Implemented and configured LAN Protocols: Ethernet, VLANs, VTP and STP.
Worked with Remedy Ticketing tool in maintaining and keep a track of logs/monitor.
Designed and implemented IP Addressing, Subnetting, Route Summarization and Route Distributions.
Monitoring the Servers and Networks.
Environment: Router series (3600, 4000) and switch series (3550, 4500, 2900/1900), MLPP, T1, T3, OC3, OC12, and OC48, Routing Protocols (EIGRP, OSPF, BGP), Juniper M SERIES (M 10i & M120i), SRX and ERX, Palo Alto Firewall, Switching protocols (VTP, STP), Site to Site VPN, Remote Access VPN, Cisco VPN.
Techfreak Developers, Ahmedabad, India Sep 2008 to Oct 2010
Network Support Engineer
Responsibilities:
Configured, tested, implemented and maintained telecommunication and LAN operational support activities of Radio Access Network.
Worked on installation, maintenance, and troubleshooting of LAN/WAN (ISDN, Frame relay, NAT, DHCP, TCP/IP).
Configured Access List (Standard, Extended, and Named) to allow users all over the company to access different applications and blocking others.
Responsible for design, configuration and maintenance of numerous telecom systems, hardware systems.
Capable of providing technical and telecommunications engineering support.
Worked with telecom vendors in regards to network fault isolation.
Configuring and installing client and server network software for upgrading and maintaining network and telecommunication systems.
Maintained company Telecom office which coordinates and develops voice and data drops for customers.
Performed scheduled Virus checks and updates on all servers and desktops.
Got Hands-on experience in maintaining and troubleshooting RIP, OSPF and EIGRP routing protocols.
Configured RIP and EIGRP on 2600, 2900 and 3600 series Cisco routers.
Implemented VTP and Trunking protocols (802.1q and ISL) on 3560, 3750 and 4500 series Cisco Catalyst switches.
Performed IOS upgrades on 2900, 3500 series Cisco Catalyst switches and 1800, 2600, 3600 series Cisco routers using TFTP. Provided network connections for new workstations.
Done troubleshooting of TCP/IP problems and connectivity issues in multi-protocol Ethernet environment.
Worked on network-based IT systems such as Racking, Stacking and Cabling.
Environment: CISCO Routers (2600, 2900, 3600.) and Switches (2900, 2950, 3500) Cisco Catalyst switches (3560, 3750, 4500.), Access Control Server, VLAN, Trunk Protocols, CISCO ASA, DHCP, DNS, Spanning tree.
Certifications
Cisco Certified Network Professional (CCNP)
Cisco Certified Network Associate (CCNA)
Education: Bachelor’s--Information Technology from Gujarat University
Contact this candidate