Engineer Network
Resume:
Raj M
acw1gl@r.postjobfree.com
Summary:
•Cisco certified network engineer with 8+years of experience in Network engineering, performing Analysis, Design, Implementing, and Troubleshooting with focus on performance tuning and support of large Enterprise Networks.
•Hands on experience in configuring Cisco Catalyst 2960, 3750, 4500, 6500 and Nexus 3000, 5000, 6000, 7000 series switches and Cisco 2600, 2800, 3600, 3800, 7200, 7600 series routers.
•Implementing IP addressing schemes, LAN/WAN protocols, IP Services, to meet network requirements in different environments.
•Expertise in Configuration of Virtual Local Area Networks (VLANS) using Cisco routers and multi-layer Switches and supporting STP, RSTP, PVST, RPVST along with trouble shooting of inter-VLAN routing and VLAN Trunking using 802.1Q.
•Implemented redundancy with HSRP, VRRP, GLBP, Ether channel technology (LACP, PAGP).
•Proficiently implemented traffic filters using Standard and Extended access-lists, Distribute-Lists, Route Maps and route manipulation using Offset-list.
•Hands on experience in deployment of GRE tunneling, SSL, Site-Site IPSEC VPN and DM VPN.
•Extensive hands on support of F5 Products including AFM, ASM, LTM,WOM and APM.
•Extensively worked on Cisco catalyst 6509 and implemented VSS along with VDC and VPC on Nexus 5505, 7009 switches.
•Comprehensive expertise in the implementation of optimization, analysis, troubleshooting and documentation of LAN/WAN networking systems.
•Working knowledge on configuring access lists. Troubleshooting DNS/DHCP issues within the LAN network.
•Expertise in creating custom iRules, Health monitors, VIP’s, pools, nodes for F5 LTM/GTM.
•Experience in VPC, VDC, Fabric path and OTV configurations.
•Expertise in IP subnetting and worked on various designing and allocating various classes of IP address to the domain
•Experience working within a Cisco VOIP networking environment and implementing QoS using IP-Precedence and DSCP over WAN links.
•Extensive hands-on experience in working with complex routed LAN and WAN networks, and preparing technical documentation.
•Performed network scripting for operation and implementation of the branch network using Python.
•Knowledge of cryptography concepts, PKI, SSL, Host Security Modules (HSM), Smart cards, Symmetric, Asymmetric (Public/Private-PKI)
•Experience in Linux and Windows systems administration.
•In depth working knowledge of Cisco UCS, VMware, ESXI.
•Involved in troubleshooting network traffic and its diagnosis using tools like ping, traceroute, Wireshark, TCP dump and Linux operating system servers.
•Studied HTTP, telnet and SSL traffic using Wireshark and sniffer tool.
•Sound knowledge of Routing and Switching concepts and MPLS design.
•Managed inventory of all network hardware, Management and Monitoring by use of SSH, Syslog, SNMP, NTP.
•Implement REST API endpoints leveraging ASP.NET Web API and NHibernate.
•Extensive knowledge and experience of routing and switching protocols RIP, OSPF, EIGRP, BGP and VLAN, VTP
•Experience with NM tools, Men & Mice, HPNA.
•Good Knowledge in troubleshooting issues on NAT.
•Information and communications experience with SONET transmission over WAN networks, end user equipment encryption devices: Safe-net and Sylink; familiar with multicast IP routing, work with layer 2 protocols: Data link - Ethernet, PPP, HDLC, MAC addresses, and Frame Relay
•Developed automation scripts using Python and achieved network optimization and improved productivity.
•Supported the development of next generation software based cloud technologies, reduction of legacy technologies and achieved reduction in capital expenditure (CapEx) and Operational expenditure (OpEx).
•Proficient in Cisco IOS for configuration & troubleshooting of routing protocols: MP-BGP, OSPF, LDP, EIGRP, RIP, BGP v4, MPLS
•Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500/PIX security appliance, Failover DMZ zoning & configuring VLANs/routing/NATing with the firewalls as per the design.
•Experience configuring Virtual Device Context in Nexus 7010
•In-depth knowledge and hands-on experience in Tier II ISP Routing Policies, Network Architecture, IP Subnetting, VLSM, TCP/IP, NAT, DHCP, DNS, FT1 / T1 / FT3 / T3 Sonet POS OCX / GigE circuits, Firewalls.
•Primary responsibility is to design and deploy various network security & High Availability products like Cisco ASA other security products
•Responsible for Check Point and Cisco ASA firewall administration across global networks.
•Worked on ASR 1000 series routers.
•Great team player with an ability to work under pressure on a 24x7 duty rotation.
•Willing to relocate: Anywhere
Technical Skills:
Cisco Routers
2600, 2900, 3600, 3800, 7200 and 7600
Cisco L2 & L3 Switches
2900, 3560, 3750, 4500, 4900, 6500, Nexus 5K/7K
LAN Technologies
Ethernet, Fast Ethernet, and Gigabit Ethernet, SMTP, VLAN, Inter-VLAN Routing, VTP, VDC, STP, RSTP, Light weight access point, WLC.
WAN Technologies
Frame Relay, ATM, MPLS, PPP, HDLC, (E1/T1/E3T3), DS3, OC192.
Network Security
Cisco ASA, ACL, IPSEC, Juniper SRX.
OS products/Services
DNS, DHCP, Windows (2000/2003/2008, XP), UNIX, LINUX, Microsoft products(MS office,Windows OS, Server )
Routing Protocols
RIP v1/v2, OSPF, EIGRP, IS-IS, BGP, PBR, Route Filtering, Redistribution, Summarization, and Static Routing.
Gateway Load Balancing
HSRP, VRRP, GLBP
Various Features / Services
IOS and Features, IRDP, NAT, SNMP, SYSLOG, NTP, DHCP, CDP, TFTP and FTP.
Network Management Tools
Wireshark, Netflow Analyzer, Cisco Works, Ethereal, SNMP,HP open view, Ethereal.
Security Server Protocols
TACACS+, RADIUS
Facilities
DS0, DS1, DS3, OCX, T1/T3
Load Balancers
Cisco CSM, F5 Networks (Big-IP) LTM 8900, Cisco ACE 4710.
Operating Systems
Windows (98, ME, 2000, XP, Server 2003/2008, Vista, Windows 7), Linux
Firewall & Security
Checkpoint, Cisco ASA, Palo Alto
QOS
CBWFQ, LLQ, WRED, policing/shaping
VOIP
Cisco IP phone, Cisco 5500, 6500 series controller, Avaya 3000,6000,7200 series controllers.
Cabling
CAT 5, CAT 5e, CAT 6, CAT 6a
Scripting Languages
Perl, BASH, PHP, HTML, Java Script and CSS
Frameworks
ITIL, COBIT
PROFESSIONAL WORK EXPERIENCE:
EMC, Santa Ana, CA Sep’15 – Present
Network Engineer
Responsibilities:
•In-depth expertise in the analysis, implementation, troubleshooting & documentation of LAN/WAN architecture and good experience on IP services.
•Working closely with Data center management to analyze the data center sites for cabling requirements of various network equipment.
•Managed rules on Cisco checkpoint NGX firewall.
•Involved in configuring and implementing of composite Network models consists of Cisco7600, 7200, 3800 series routers and Cisco 2950, 3500, 5000, 6500 Series switches.
•Configured Nexus 7010 including NX-OS Virtual Port Channels, Nexus port profiles, Nexus Version 4.2 and 5.0, Nexus VPC peer links
•Security policy review and configuration in Palo Alto, Cisco ASA firewalls in US offices and data centers.
•Providing training to new resources in team and effectively working towards a process quality improvement in the Team.
•Experience in implementing F5 BIG IP load balancers.
•Worked and automated BigIQ High Availability cluster feature.
•Tested and automated Device licensing feature of BigIQ.
•Expertise in creating custom iRules, Health monitors, VIP’s, pools, nodes for F5 LTM/GTM.
•Supporting OSPF and BGP based on the network by resolving level 2 & 3 problems of internal teams & external customers of all locations
•Performing troubleshooting on VPN connectivity issues, slow network connectivity issues, identifying the root cause of the issues.
•Extensive hands-on experience with VSS technology with Cisco 6500 Switches.
•Experience in working with LTM and GTM for scaling and securing DNS infrastructure during high volumes.
•Experience in working with load balancer for converting CSS to ACE.
•Worked with network services like DNS, DHCP, DDNS, IP4, IP6, IPsec, VPN,VRF etc.
•Worked with Infoblox for secure DNS, DHCP and IPAM.
•Worked with Cisco ACE GSS 4400 Series global site selector Appliances.
•Experience with Security- Firewalls, NAT / PAT, IPSEC, S2S.
•Experienced working with Nexus OS, IOS, CATOS and Nexus 7K, 5K & 2K Switches
•Knowledge of with API’s for troubleshooting Network issues using Wireshark and NTOP
•Configured static NAT, dynamic NAT, dynamic NAT overloading.
•Ensure that all system in the domain have McAfee Antivirus Protection Installed.
•Back up a Cisco IOS to a TFTP server and Upgraded and restored a Cisco IOS from TFTP server.
•Configuring ACL on ISE for making policies.
•Responsible in troubleshooting on Cisco ISE added new devices on network based on policies on ISE.
•Performing network monitoring, providing analysis using various tools like Wire Shark, Solar winds etc
•Developed a deep packet inspection (DPI) solution that can work for fro both wire line and wireless subscriber. Solution met scaling requirements if wire line world and subscriber awareness requirement for wireless world.
•Configuring DNS and DHCP configuration in Inflobox.
•Planning and deployment of Cisco Identity Service Engine Solution, HP OpenView, Riverbed Opnet, Siem Qradar, Solarwinds, WFM, Infoblox, Gigamon, SOAP, SourceFire, Cisco UCS, Symantec, ACI, ITSM, ITIL, COBIT, ITAR, SAFE, NIST and RMON.
•Work assigned tickets to determine the point of failure and resolve problems remotely utilizing available tools and other Operation Center resources.
•Documenting network configuration for all new equipment and creating equipment configuration backups and monitoring to work with existing network systems.
•Provide escalation support to L1/L2 members of network team.
•Participating in testing of the internal network infrastructure in the new building, and troubleshooting and remediating any issues.
•Work & escalate problems effectively in order to meet customer SLA's (service level agreements).
•Perform problem management and root cause analysis for P1/P2/P3/P4 incident.
•Efficient at use of Solar BOX (Automated Network Map) as technical documentation and presentation tools.
Environment: Nexus 2k/5k, Cisco 6500/7500/7200 Routers, Cisco 3550/4500/6500 switches, LAN, WAN, OSPF, RIP, BGP, EIGRP, HSRP, PPP, VPN, Checkpoint, Cisco ASA, McAfee EPO, Cisco ISE, EOP, Trend Micro, Kemp, Wire Shark, Solar Winds.
Univar, - Redmond, WA Jan’15-Aug’15
Network Security Engineer:
Responsibilities
•Responsible for fitting the infrastructure surroundings with majority of Cisco & Palo Alto appliances except for varied different instrumentality.
•Installing and configuring new cisco instrumentation as well as Cisco catalyst switches 6500, Nexus 7010, Nexus 5548 and Nexus 2k as per the need of the corporate.
•Efficiently exploitation Service Now tool for generation of tickets, distribution severity to incidents, following up with incident standing and troubleshooting incidents.
•Excellently used Splunk to research and monitor incident management and incident resolution issues.
•Extensively worked on development and configuration of SIEM connectors for unsupported devices by HP ArcSight, RSA Security Analytics and Splunk to support controls monitoring and reporting.
•Researched, designed, and replaced aging stop firewall design with new next generation Palo Alto appliances serving as firewalls and URL and application review.
•Upgraded and updated Cisco IOS from twelve.3T to 12.4. Accustomed DHCP to mechanically
assign reusable information science addresses to DHCP shoppers.
•Configuring and troubleshooting perimeter security devices like stop NGX R77 Gaea, Provider-1/MDM, Secure Platform, Palo Alto and ASA Firewalls.
•Palo Alto style and installation (Application and URL filtering, Threat bar, information Filtering)
•Configuring rules and Maintaining Palo Alto Firewalls & Analysis of firewall logs exploitation varied tools.
•Successfully put in Palo Alto PA 3060 firewalls to protects information Center and provided L3 support for routers/switches/firewalls
•Implemented Zone primarily based Firewalling and Security Rules on the Palo Alto Firewall
•Exposure to wild hearth feature of Palo Alto.
•Maintained and managed networks running EIGRP and BGP routing protocols.
Regularly performed firewall audits around stop Firewall-1 solutions for purchasers.
•Provided tier three support for stop Firewall-1 software system to support customers.
•Work on stop Platform together with supplier sensible Domain Manager. Worked on configuring, managing and supporting stop Gateways.
•Configuration of routing protocols EIGRP and BGP for little to medium sized branches supported company branch standards, together with distribution and route maps.
•Access purpose refresh and implementation at varied sized branches and locations.
•Used network observation tools like Spectrum to confirm network property and protocol analysis tools to assess and pinpoint networking problems inflicting service disruption.
•Worked with management and varied departments to develop procedures and troubleshoot issues as they arose.
•Performed Proof of concept with Splunk, Tripwire, Qualys and RSA Envision tools
•Monitored application servers using different APM's such as NetScalar, NewRelic, AppDynamics and ExtraHop. We used different kinds of APM's as part of POC on different hosts to identify best APM tool
•Build IT security infrastructure together with stop, Juniper and Palo Alto firewalls
•Configuring F5 Load Balancers: Adding virtual IPs, nodes, pools and health observation.
•Configuring Juniper Net Screen Firewall Policies between secure zones exploitation NSM (Network Security Manager)
•Backup and restore of stop and Cisco ASA Firewall policies
•Handling Break/Fix things, monitor, configure, policy creation on Checkpoint's sensible Center Server running on Secure Platform
•Monitoring Traffic and Connections in stop and ASA Firewall
•Manage project task to migrate from Cisco ASA firewalls to examine purpose firewalls
•Worked extensively in Configuring, observation and Troubleshooting Cisco's ASA 5500/PIX security appliance, Failover demilitarized zone sectionalisation & configuring VLANs/routing/NAT with the firewalls as per the planning
Environment: Cisco 2948/3560/4500/3560/3750/3550/3500/2960/6500 switches and Cisco 3640/12000/7010/7200/3845/3600/2800 routers, Cisco Nexus 2K/7K/5K, Cisco ASA five hundred, F5 BIGIP remembering, RIP, OSPF, BGP, EIGRP, LAN, WAN, VPN, HSRP.
Guardian Life Insurance –Tempe, AZ Nov’12 – Dec’14
Network Engineer
Responsibilities:
•Configured Routing protocols such as RIP, OSPF, EIGRP, MPLS, static routing and policy based routing.
•Configured VLANs with 802.1q tagging. Configured Trunk groups, ether channels, and Spanning tree for creating Access/distribution and core layer switching architecture.
•Upgraded Cisco ASA 5510 firewalls using 6500/7600 catalyst modules for enhanced performance, security and reliability. Security policy review and configuration in Palo Alto and Juniper SRX Firewall in Datacenter. Troubleshooting of Cisco routers like ping, trace route and basic issues.
•Configuring, testing, troubleshooting multiple vendor device platforms like Cisco routing and switching: Cisco ASR9010, ASR901, ASR903, Catalyst Cisco 7609, 2960, and Juniper routing and switching devices: MX960, MX 480 and SRX5200, ACX2200, ALU service aggregation router: 7705 SAR 8 and 7750 service router.
•Experienced in working with BIG-IP Edge Portal and BIG-IP Edge Client
•Create and test Cisco router and switching operations using OSPF routing protocol, ASA Firewalls for stable VPNs& trouble-shooting of routing protocols like static, dynamic
•Provided on-call support for installation and troubleshooting of the configuration issues.
•Migration of existing IPSEC VPN tunnels from Pre-Shared key to Certificate Authority for purpose of scaling.
•Operate test equipment such as optical power meters, OTDR, Optical Spectrum Analyzers, and SONET, T1 and DS3.
•Implemented site to site VPN in Juniper SRX as per customer.
•Regular upgrade and maintenance of Juniper Routers and Firewalls, Nexus 7k,5k & 2k, f5 BIG IP, Palo Alto Firewalls, Bluecoat Proxy and Riverbed Steelhead appliances.
•Monitoring and troubleshooting network issues between client site and 85 remote sites with legacy switches and routers
•Design and Implement DMZ for FTP, Web and Mail Servers with CISCO PIX 506, PIX515.
•Done troubleshooting of TCP/IP problems and connectivity issues in multi-protocol Ethernet environment.
•IOS upgrade 1900, 2900, 3500 series Cisco Catalyst switches and 2500, 2600, 3600 series Cisco routers using TFTP.
•Migrated IPv4 addresses to IPv6 addresses using mechanisms like Tunnel Broker, Transport Relay Translation (TRT), NAT64, DS-Lite and DNS64.
•Involved in troubleshooting of DHCP and other IP conflict problems.
•Configured ACLs (Standard, Extended and Named) to allow users all over the company to access different applications and blocking others.
•Participated in on call support to troubleshoot the configuration and installation issues.
•Configured switches with port security and 802.1x for enhancing customer’s security.
Environment: Cisco Catalyst switches and 2500, 2600, 3600 Cisco ASR9010, ASR901, ASR903, switching devices: MX960, MX 480 and SRX5200, ACX2200, ALU, Juniper Routers and Firewalls, Nexus 7k,5k & 2k, f5 BIG IP, Palo Alto Firewalls, Bluecoat Proxy
I Brand Solutions- Hyd, India Jan’11– Oct’12
Network Engineer
Responsibilities:
•Migration of RIP V2 to OSPF, BGP routing protocols.
•Configured and installed Cisco routers 2500, 2600, 3601 and 4000 series.
•Configured EIGRP for Lab Environment.
•Implemented ISL and 802.1Q for communicating through VTP.
•Working with Client teams to find out requirements for their Network Requirements.
•Designing solutions for frozen requirements using Cisco Routers and Switches.
•Deploying the network infrastructure to meet the requirements.
•Created VLAN and Inter-Vlan routing with Multilayer Switching.
•Documenting and Log analyzing the Cisco ASA 5500 series firewall.
•Worked along with the team in ticketing issues.
•Performed administrative support for RIP, OSPF routing protocol.
•Maintained redundancy on Cisco 2600, 2800 and 3600 routers with HSRP.
•Real time monitoring and network management using Cisco Works LMS.
•Involved in troubleshooting IP addressing issues and Updating IOS images using TFTP.
•Monitoring network performance to improve the backup strategy using Net rep, Solar winds.
•Configured and deploying Cisco catalyst 6506, 4948E, 4510 switches and Cisco 3660, 3845, and 7609 series Routers.
• Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500.
• Experience in migration of VLANS.
• Involved in the troubleshooting aspects of complex network infrastructure using the routing protocols like EIGRP, OSPF & BGP.
Environment: Cisco 2600, 2800,3600,4000,6506, 4948E, 4510 switches and Cisco 3660, 3845, and 7609 series Routers.
Shell Network and Solutions –India July’08– Dec ‘10
Network Engineer
Responsibilities:
•Worked in Network building and Network infrastructure management team.
•Worked with upgradation, replacement of NICs, display cards, RAM, peripheral devices.
•Handled installation, configuration and troubleshooting of operating systems NT/2000, XP, and Solaris.
•Experience with Remedy ticketing system in resolving tickets related to routing and Switching
•Configured and installed Cisco routers 2500, 2600, 3601 and 4000 series.
•Remotely testing links up to 1.5 Mbps using tools like REACTS.
•Recovered lost passwords and created standard access-lists and extended access list for new users.
•Monitoring network performance to improve the backup strategy using Netrep, Solar wind
•Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500.
•Implementation of Access Lists for allowing/blocking desired traffic.
Environment: Cisco 2500, 2600, 3601,4000 and 5500 series routers.
Certifications:
Cisco Certified Network Associate (CCNA)
Cisco Certified Network Professional (CCNP)
EDUCATIONAL QUALIFICATION:
Bachelor of Technology in Electrical and Communication Engineering from Jawaharlal Nehru Technological University (India).
Contact this candidate