Network Engineer Security
Resume:
Teja G
acw8ck@r.postjobfree.com
Cisco ID: CSCO13056083
PROFESSIONAL SUMMARY
Network engineer with 7+ years of experience in routing, switching, firewall technologies, system design, implementation and troubleshooting of complex network systems.
Configuring various IP routing protocols such as RIP, EIGRP, OSPF and BGP on Cisco routers.
Experience in system and network administration engineering, hardware evaluation, project management, systems and network security, incident analysis and recovery.
Experience in Planning, Installing, Configuring of various Cisco routers and switches.
Experience in implementation, support and troubleshooting of VLAN's including operational knowledge of VLAN Trunking, Inter VLAN routing and 802.1q.
Detailed understanding of different layer 2 protocols like VTP, STP, RPVST, Port Security, and Ether channel and also on HSRP.
Widespread work proficiency in advanced TCP/IP Management, IP Addressing & Subnetting VLSM, Route Summarization, Route Redistribution and NAT/PAT.
Experience in implementation, configuration & troubleshooting of Access Control Lists (ACL), NAT and upgrading code on Cisco IOS & also on Nexus NX-OS using ISSU.
Experienced with route manipulation by using Offset-list and route filtration by using Access-lists, Distribution-list and Route Maps.
Good experience in throughput performance and WLAN security testing of Wi-Fi Access point.
Good understanding and hands on experience configuring AAA-authentication, authorization, accounting, and configuring IP Access Control Lists.
Exposure to Check point firewall Gaia R77.10& R77.30.
Implementation experience with Firewall and Security Products such as Checkpoint Security.
Experience in working with multiple vendor devices like Cisco, Juniper.
Performed Network analysis with packet capturing tools Sniffers, Wire-shark etc.
Experience on working with F5 load balancers.
Experience in performing LTM and GTM.
Proposed upgrades, installed, and configured Solar winds Log and Event Manager and Solar winds Orion modules for network infrastructure monitoring.
Experienced in troubleshooting both connectivity issues and hardware problems on Cisco based networks.
Extensively worked on Linux environment.
Experience in deploying and maintaining layer 7 appliances like Infoblox.
Extensive hands-on experience with complex routed LAN and WAN networks. Experience of routing protocols like EIGRP, OSPF, RIP, and BGP, MPLS/VPN.
Experience with Project documentation tools & implementing and maintaining network monitoring systems and experience with developing network design documentation and presentations using VISIO.
Installing and Configuring Cisco switches 2960, 3560, 4500, 6500, 4900, 2900, 3750, Nexus 5000, Nexus 7000, 7700 series with F & M series Line cards and also on Sup1,2 & 2E.
Hands-on expertise with routers 2600, 2900, 3600, 3900, 7200, 7600, ASR-901, ASR-903, ASR 5500, ASR 9010.
Proficient with TCP/IP and relative OSI models.
Security policy configuration including NAT, PAT, VPN, SSL-VPN, Route-maps and Access Control Lists.
Strong practical experience in IP addressing, Sub-netting, VLSM and ARP, proxy ARP, and ping concepts.
Used puppet for central management of Linux configuration files and software package management.
Installed Red Hat Enterprise Linux 5/6 Operating System on servers and Blades over the network.
Expertise in troubleshooting and configuring DNS, DHCP, TFTP, TELNET, SSH, FTP, PING and NFS.
Planning, Designing, Implementation of small, medium organizations including LAN, VLAN, WLAN and WAN on wired and wireless networks.
Excellent Verbal, written communication skills and Interpersonal skills with ability to work with large teams as well as independently with minimum supervision & Team Player.
TECHNICAL SKILLS
Routing
RIPV1, RIPV2, IGRP, EGIRP, OSPF, BGP, Route Filtering, Redistribution, Summarization, and Static Routing.
Switching
VLANs, VTP, STP, PVST+, RPVST+, Inter VLAN routing & Multi-Layer Switch, Ether channels, Transparent Bridging, CEF, DECF, Port Security, VSS on 6500 & 4500 catalyst switches. Cisco 2960, 3560, 4500, 6500, 4900, 2900, 3750, Nexus 5000, Nexus 7700, 7000.
Routers
Cisco 7600, 7606, 7609, 7613, 7200, 4400, 3900, 3800, 2900, 1900, ASR-901, ASR-903, ASR 5500, ASR 9010, 7206 VX.
Switches
Cisco Catalyst 6500, 4500, 3560, 3750, 2960, Nexus 7000, Nexus 6000, and Nexus 5000, and Juniper EX, QFX and Alcatel 7705 SAR series.
Network Management
Wire shark, SNMP, Ethereal, Solar Winds, Net cool, Science Logic, Log Logic, EM7, PRTG, Blue Coat, Websense, Cisco NAC, ISE, and Active Directory.
Security
Checkpoint, Access Control Lists,ASA
Virtulization
Vmotion, ESXi hosts,VSphere
Load Balancer
F5
PROFESSIONAL EXPERIENCE
NRG, Princeton, NJ Jan 2015 - Present
Network Engineer
Nexus experience include
Brought up the connections between existing and new environments in both datacenters. Extended all vlans into Fabric path to facilitate connectivity into the new environment with OTV as interconnects. Tested and verified connectivity.
In the process of migrating the entire environment such as ESX hosts, physical servers onto Fabric path. Where they would still be connected via. CE interface but the Border leaf, Spines are connected via the Fabric path interface which eliminates STP between the fabric path interfaces.
Hands on experience configuring the 7710, 7010, 5628, 5596T switches with feature-set like Fabric Path, OTV, VPC+, VPC and also VDC for the Border Leaf, SPN and Leaf design.
Currently Data centers are interconnected with OTV and we are in the process of migrating to Fabric path from OTV, was a part of the team that Architected the plan with every minute details taken into consideration with minimal downtimes.
Configured and deployed VPC+ between Nexus 7710 and Nexus 5628, 5596 switches.
Installed Layer 2 Enhanced license package on the new and old new gear for Fabric path feature.
Successfully installed the Cat6509 with sup720 to Sup2T with Quad-VSS implemented on it.
Configured VSS on Cisco Catalyst 6509 switches and involved in resolving the issues which are raised after the configuration.
Serve as part of a team of network engineers responsible for base wide network upgrade from Cisco Layer 3 Catalyst switches to Juniper Layer 3 EX4200 & EX3200 switches.
Expertise in implementing redundancy gateway protocols like HSRP, VRRP.
Dealt with device/module/fan/line card down issues. Acted promptly in redirecting the traffic and investigating the cause of failure. If necessary raising RMA with Cisco.
Responsible for monitoring the dashboard with NNMI console and look out for any instabilities in network.
Experience in configuring VPC (Virtual Port Channel), VDC (Virtual Device Context) in Nexus 7710.
Solid understanding on Microsoft O365 applications like Exchange 2013, SharePoint2013, Microsoft Lync.
Deep knowledge in installing, configuring Vmware vsphere. Creating and managing virtual servers and clients. Advance knowledge on ESx Vmotion.
Worked closely with Network Operations Center team for international sites on alerts, initial information, engaging various customers.
Configured access rules in Checkpoint firewall with Gaia R77 version.
Configured NAT rules on smart dashboard in Checkpoint firewalls. Used smart log application to check the logs and troubleshoot issues.
Worked on OTV to extend L2 VLANs between data centers over IP on Nexus 7710 switches.
Experience with configuring FCOE using Cisco nexus 5548.
Configured Nexus 2000 Fabric Extender (FEX) which acts as a remote line card (module) for the Nexus 5600 to connect servers and storage devices.
Layer-3 experience include
Configuring EIGRP on different router series and troubleshooting the issues with protocol in case of any misconfiguration like Variance to increase the convergence speed.
Experience in manipulating routes in OSPF by configuring route filters, route summarization, static routes and default routes.
Involved in break-fixes in layer 3 issues such as OSPF neighbor down/flapping, LDP neighbor down/flapping.
Configured IP helpers on the VLAN’s as requested by the customers as per their DHCP settings on Infoblox.
Experience in metric tuning and path manipulation based on the requirement.
Experience in working with the stub areas in OSPF and also implemented virtual links if needed.
Experience in preventing routing loops by changing metric value, administrative distances and filtering using tags.
Experience in configuring service level agreements and introducing policy based routing depending on the requirement.
Experience in configuring IBGP and EBGP and had knowledge in understanding neighbor ship requirements and neighbor states.
Experience in analyzing the BGP tables and routes and also had experience in injecting routes into BGP using different methods.
Experience in configuring BGP in Dual-homed, single multi-homed and dual multi-homed designs.
Experience in troubleshooting next hop issues with IBGP switching and analyzing IBGP BGP table entries.
Had in-depth knowledge in BGP path attributes like Weight, Local preference, Origin code, AS path and MED.
Experience in introducing very unique concepts in to the topology like BGP multi paths to allow more than one best route in to the routing table.
Experience in configuring Address family to make BGP reachable to IPV4 and IPV6.
Worked on creating and maintaining new subnets, host with several record entries like PTR, A etc. with DHCP scopes using Graphical User Interface as well as IBCLI (Infoblox command line interface).
Layer-2 / multilayer switch experience includes
Experience in configuring Ether channels and troubleshooting using misconfiguration guard if remote end of ether channel is misconfigured.
Experience in configuring VTP and troubleshooting issues regarding VTP versions, also had experience in understanding and analyzing VTP pruning rules.
Had a profound understanding in how CEF works like FIB’s, Adjacency tables and how forwarding engine utilizes CEF.
Experience in understanding various primary switch components like switching processor and routing processor, ASIC’s, Switch fabric and different memories (DRAM, NVRAM, CAM, TCAM, SRAM). Experience in manipulation and control of TCAM’s using Feature manager and SDM (switching database manager).
Experience in configuring many switches in to single virtual switch using Stack-wise technology and VSS (virtual switching system).
Experience in configuring switch as a DHCP server and managing switch ports such as err-disabled feature.
Experience in configuring and troubleshooting STP, RSTP, MSTP features.
Experience in configuring first hop redundancy protocols such as HSRP, VRRP, and GLBP.
Experience in working with supervisor and route processor redundancy (plus) in modular switches.
Experience in configuring and troubleshooting POE (power over Ethernet) technologies like Cisco inline power, IEEE 802.3af, IEEE 802.3at (POE+) and Cisco universal power over Ethernet.
Experience in securing switch access using AAA, storm control, DHCP snooping and dynamic AARP inspection.
Experience in securing VLAN’s using VLAN access lists and private VLAN’s.
Environment:- Nexus 7710,7010, 56128, 5596& 5548 switches, Cisco Catalyst6500, 4500, 3650 & 2960Switches, Cisco 3600, 3800, 7200 & 7600series Routers, Cisco WLC 5760, 5508.
First Data, GA Feb 2013 – Dec 2014
Network Engineer
Nexus responsibilities include:
Working in high availability Nexus Environment and provide Level 3 Network Support.
Working with Cisco Nexus 2148 Fabric Extender and Nexus 5500 series to provide a Flexible Access Solution for datacenter access architecture.
Ensuring problems are satisfactorily resolved in a timely manner with focus in providing high level of support for all customers.
Working with CISCO Nexus 7700, Nexus 5600 & 5500 series, and Nexus 2000 platforms.
Working in high availability Nexus Environment and provide Level 3 Network Support.
Working with Cisco Nexus 2148 Fabric Extender and Nexus 5500 series to provide a Flexible Access Solution for datacenter access architecture.
Exposure to Nexus, Hardware Architecture of the Sups, chassis, I/O Modules, Fabrics, Licensing, VDC, VPC, ISSU, Using NXOS CLI.
Worked with Cisco advance services to implement data center Nexus environment for new Upgraded the NX-OS in nexus 7018, 7010 and nexus 5548 and 5596.Consolidated multi-tiered environment into a pair of Nexus 7000 switches using VPC and VRF.
Layer-3 responsibilities include
Worked as a part of data center deployment where we converted from Cisco 6500 to Nexus 7700 switches.
Configuring routing protocols like EIGRP, OSPF & BGP and troubleshooting layer3 issues on 2600, 2900 and 3600 series Cisco routers.
Testing authentication in OSPF and EIGRP.
Experience in configuring EIGRP over Frame relay and different WAN technologies.
Experience in managing the topology tables, routing tables and table updating process.
Monitoring different types of packets like hello packets, update packets and acknowledge packets and digging deep in to the IP header to find the issues with the protocol behavior.
Experience in configuring and managing metric manipulation, path manipulation, route summarization, route filters based on the requirement.
Configuring OSPF on different network types and troubleshooting various issues in case of any misconfiguration.
Experience in monitoring and understanding different types of LSA’s in OSPF and had a profound understanding about OSPF message types and neighbor states.
Worked on OSPF features like Totally Stubby Area, Stubby Area, Not So Stubby Area and route summarization.
Expertise in creating Access control lists for layer-3 security and providing first hop redundancy using protocols like HSRP.
Layer-2 responsibilities include
Implemented VTP and Trunking protocols (802.1q and ISL) on 3560, 3750 and 4500 series Cisco Catalyst switches.
Troubleshooting day-to-day switching issues with VTP and Trunking protocols (like 802.1q and ISL) on catalyst 3560, 3750 and 4500 switches.
Performed VSS on cisco catalyst 6500series switches.
Experience in configuring network monitoring features SPAN and RSPAN to spot network breaches.
Configured BPDU Guard, port-fast, uplink fast and other spanning tree features.
Implemented port aggregation & link negotiation using LACP and PAGP.
Firewall experience include
Experience in working with Checkpoint Gaia R77.10 & R77.30.
Performed security operations by adding rules in firewalls and pushing firewall policy as per the incidents and rules requests from users.
Experience troubleshooting A-sync packets.
Implemented Firewall policy management and support on Cisco ASA 5585X, 5580, 5550 and Checkpoint Firewalls.
Providing input on day-to-day security architecture policies and procedures.
Worked in configuring, Monitoring and Troubleshooting Cisco's ASA 5500 security appliance, Failover DMZ zoning & configuring VLANs/routing/NAT with the firewalls as per the design.
Other experience includes
Performed IOS upgrades/Password recovery on Catalyst 1900, 2900 series switches and 2500, 2600 series routers.
Analyzing packet capture in Wireshark to drill down and to find the root cause of latency related and other strange application behaviors.
Participated in on call support in troubleshooting the configuration and installation issues.
Responsible for Data Backup, System Update, Recovery and Restore, and Spyware removal.
Performed routine network maintenance checks as well as configure and manage printers, copiers, and other miscellaneous network equipment.
Performed scheduled Virus checks and updates on all servers and desktops.
Environment: Nexus 7710, 7010, 56128, 5596& 5548 switches, Cisco Catalyst6500, 4500, 3650 & 2960Switches, Cisco 3600, 3800, 7200 & 7600series Routers, Cisco WLC 5760, 5508.
LabCorp, NC Oct 2011 – Jan 2013
Network Engineer
Responsibilities:
Responsible for Installation, configuration and maintenance of Cisco 7200, 3900, 2800, 2600, 2500 and 1800 series Router / Cisco Catalyst Cisco 6500, 4500 (SUP 6), 3750,2950seriesSwitches.
Managing Port security, Trunking, Inter VLAN routing, LAN security.
Key contributions include troubleshooting of complex LAN/WAN infrastructure.
Worked on Cisco routers 2950, 2600 and Cisco switches 4500, 2900.
Provide and update detailed documentation of network using MS Visio.
Configuring and troubleshooting DNS and DHCP servers.
Setting up VLANS and configuring ISL trunk on Fast-Ethernet channel between switches.
Experience in Cisco 2600, 3640 routers and catalyst 2950 series.
Implement, build, Support and Maintain Cisco partners training labs based on various Routing/Switching/Datacenter architectures using Cisco and VMware Virtualized Infrastructure.
Worked extensively on implementation and configuration of F5 LTM 6400 Load Balancers.
Created pools for the nodes and assigned Virtual IP’s to those pools on F5.
Implemented least connections algorithm for the LTM, GTM and also defined the persistence.
Experience in implementing Client SSL and Server SSL for the authentication while working on F5.
Performed TCP Dump for checking the ping operation from F5 to Pools.
Worked in conjunction with Business Units, Proctors, Subject Matter Experts in implementing structured labs intended to train Cisco SEs and Partners.
Configure Cisco Routers/L3 Switches for EIGRP using route redistribution, filtering and securing the network routes using encryption and authentication.
Configured VLANs, Private VLANs, VTP, dot1Q Trunking, and VTP-pruning on switches. Implementing Security features like BPDU guards/Filters, loop guard, port security.
Configured IPsec VPN access for client to site remote access.
Maintenance and Troubleshooting of connectivity problems using Ping, Trace route.
Configuring and monitoring Routers and Switches.
Lanco, India May 2009 - Aug 2011
Network Engineer
Responhttp://en.wikipedia.org/wiki/Herbalifesibilities:
Involved in configuration and management of different Layer 2 switching tasks which includes address learning, efficient switching etc.
Involved in HSRP standby troubleshooting and load balancing protocol GLBP, Port channel management of the network.
Dealt with the escalation problems from Level1, Level 2 & Level 3 for routing, switching and WAN connectivity issues using ticketing system Remedy.
Experience in troubleshooting VLAN, STP (Spanning tree protocol), & Switch Trunk and IP subnet issues.
Dealt with NAT configuration and its troubleshooting issues related access lists and DNS/DHCP issues within the LAN network.
Experience in routing protocols like OSPF, BGP, and standby protocols like HSRP and VRRP application in the routers.
Establishing VPN Tunnels using IPsec encryption standards and also configuring and implementing site-to-site VPN, Remote VPN.
Configuring HSRP between the 3845 router pairs of Gateway redundancy for the client desktops.
Responsible for service request tickets generated by the helpdesk in all phases such as troubleshooting, maintenance, upgrades, patches and fixes with all around technical support.
Used and maintained routing protocols like EIGRP on the Routers in the network.
Managed the LAN Switching Environment including creating and maintaining VLANs, STP, Trunking, Port Security, VLAN Security etc.
Designed network connectivity and network security, between various offices and data center.
Installed and configured routers including 1800, 2600 along with Cisco switches including 3750 and 6500.
Involved in configuration of WAN connection using a 3600 series Router and Frame relay method.
Implementation of NAT with a pool of 2 public IP addresses.
Involved in installing and configuring ASA firewall.
Responsible for Internal and external accounts and, managing LAN/WAN and checking for Security Settings of the networking devices (Cisco Router, switches) co-coordinating with the system/Network administrator during any major changes and implementation.
Designed and implemented an IP addressing scheme with subnets for different departments.
Involved in the design & configured a LAN using 2691 series Routers and 2950 series switches.
Used various Network sniffers like Ethereal, TCP dump etc.
Excellent Troubleshooting skills and configuration skills.
EDUCATION
Bachelors in Computer Science, JNTU, India, 2008.
Contact this candidate