Naveen K
acxlgd@r.postjobfree.com
Professional Summary:
Around 6 years extensive experience in Solid understanding of Designing, Implementation, dministration, Operational and troubleshooting of enterprise data networks
Configuring security policies and procedures using Access Control List (ACL), Route Maps, Offset lists, Prefix Lists.
Experience in WAN technologies like T1/T3, DS3,STM1 and STM4 circuit types
Managed inventory of all network hardware, Management and Monitoring by use of SSH, SYSLOG, SNMP, NTP, NAT, PAT and dealt with the DOS attacks and Flooding attacks..
Knowledgeable in Cisco ACL, NAT, VLANs
Experience in configuring DNS, DHCP, NFS, NTP, SSH, HTTP, HTTP/S
Has hands-on experience with configuration and deployment of Routers and Switches Cisco 7600,6500,4500,3700,3500,2900, Nexus 7K/5K and Juniper EX2200, EX2500 switches and ERX310 router.
Firewalls Checkpoint R77/R75, Cisco ASA, And other Network devices such as IPAM (IP Address Manager) remote access and VPNs (IPSEC).
Configured and Installed checkpoint firewalls in the enterprise network. Also Configured F5 Load balancer LTMs to divide traffic from the web servers.
Knowledge of implementing and troubleshooting complex layer 2 technologies such as VLAN Trunks, VTP Ether channel, STP and RSTP.
Extensive experience in deployment and management of Network Monitoring System(NMS) such as Syslog-NG Server, CISCOWORKS, Solar winds, Nagios,Wireshark.
Proficient in MS Windows, MS/Open Office, MS Project 2013
Experience in penetration testing, vulnerability assessment (VA) and security auditing using Wire shark
Extensive experience in LAN&WAN network related protocols, TCP/IP, IPSEC, routing and switching protocols EIGRP, OSPF, BGP, MPLS, HSRP, VRRP, STP.
Implementing & troubleshooting Cisco 2900,3600, 3900, 7200, 7600 series routers CAT OS 2960, 3560,3750,4500,6500 series switches and Nexus 2k,5k,7k series switches
Involved in the software and security design and of Access Router (Base station) of an ISP.
Experience with setting up MPLS Layer 3 VPN cloud in data center and also working with BGP WAN towards customer.
Involved in the nationwide roll-out of Cisco routers for IP Backbone Network, IOS upgrade
Experience in managing, designing and administration of IP Backbone Network and spearheaded the strengthening IP Backbone Network Security.
Provided network monitoring, fault management, optimization and service quality assurance on 24/7 basis in Network Operations Center
Expert level configuration of Layer 2 technology including VLANS, Trunking, STP, RSTP, PVST, MST, VTP in addition to port-security, Uplink fast, Backbone fast, Port fast, BPDU guard & filter and Ether channel including LACP & PAGP negotiations Extensive Knowledge in TCP/IP and OSI models.
Certifications:
Cisco Certified Network Associate (CCNA)
Cisco certified network professional(CCNP)
TECHNICAL SKILLS:
Cisco Routers
2500, 3600, 3700, 7200, ASR routers ASR 1k (1001, 1004, 106, 1013), ASR 9k and ASR 900, ISR 4k
Cisco Switches
Cisco 2900, 3560, 3750, 4500, 6500, Catalyst switch 2960, Nexus switches N5K, N7K (Nexus)
Firewalls
Cisco ASA, Checkpoint
Routing Protocols
RIP v1/v2, OSPF, EIGRP, BGP, MPLS, VTP, FTP, VPN, DNS, IPv4, IPv6, HSRP,VRRP, ACL, NAT/PAT, TCP/IP, VTP, STP, RSTP, MST, VLANs, LACP, 802.1Q, ISL, SNMP, GLBP
Network Security
IPsec, VPN Configuration, ASA 5505, 5510 Firewalls, NAT/PAT, IDS/IPS, Internet Content Filtering, DHCP SNOOPING, IDS/IPS, URL Filtering, SSL, IPSEC, IKE, Static, Dynamic, Reflexive ACL, and AAA
LAN Technologies
Ethernet, Fast Ethernet, and Gigabit Ethernet, SMTP, VLAN, Inter-VLAN Routing, VTP, STP, RSTP, Light weight access point, WLC.
WAN Technologies
Frame Relay, PPP, ATM, HDLC, (E1/T1E3/T3), MPLS, MPLS/VPN
Monitoring & Network Tools
Cisco Works, Cisco Prime 3.0, Solar winds, Wireshark, GNS3, VISIO
Platforms
Windows 98/XP/Vista/7/8/8.1/10, Unix, Linux, Cisco IOS
PROFESSIONAL EXPERIENCE:
Client: North Western Mutual, WI Jan 2016 - till date
Role: Network Engineer
Northwestern Mutual Life Insurance Company is an American financial services mutual organization. The financial security company provides consultation on wealth and asset income protection, education planning, retirement planning, investment advisory services, trust and private client services, estate planning and business planning.
Responsibilities:
Strong knowledge of various routing protocols like EIGRP,OSPF, and BGP
Installed, configured and managed Cisco routers such as 7200 series, 3800 series, 3700 series, 2800 series and Cisco Catalyst switch series 6500, 4500, 3500, and 2900
Expert working knowledge including the ability to setup, configure, upgrade, manage and troubleshoot Cisco routers, switches, firewalls and load balancers.
Hands-on experience in handling and supporting complex BGP routed network infrastructure (perimeter) that include Route-maps, AS-Path, local preference, Inter VRF communication across multiple ISP’s and OSPF (IGP) with multiple area types.
Involved in installing Hardware network devices such as Cisco switches, routers and Wireless accespoints at different sites
Racking and stacking Cisco ISRs, Catalyst switches and mounting Cisco Aironet Access Points
Worked on MPLS protocol to speed up the network traffic flow
Maintenance and troubleshooting of connectivity problems
Provided on call supports 24/7 and worked in NOC (Network operations center).
Enable STP attack mitigation (BPDU Guard, Root Guard), Using MD5 authentication for VTP.
Troubleshooting issues and outages on Trunks and Router interfaces extensively
Supporting OSPF and BGP based on the network by resolving level 2 & 3 problems of internal teams & external customers of all locations
Experience in network monitoring tools like Cisco Prime Infrastructure.
Design, implement and operational support of routing/switching protocols in complex environments including BGP, OSPF, EIGRP, STP, 802.1q, etc.
Configuration and maintenance of OSPF protocol which was the enterprise IGP. Configuration included deploying of new branch locations or new network devices in the existing infrastructure creating Stub Areas and virtual areas.
Planning and implementing sub netting, VLSM to conserve IP addresses
Providing BGP routing support for Cisco ASA to F5 migrations
Set up and troubleshoot secured wireless access points (WAP) and wireless LAN controller (WLC) for broadband internet.
Installing and configuring Wireless Bridges for wireless connectivity between remote sites
Work with Group IT to define Integration and Transition Plan, project manage into place.
Working with field engineers to support remote installations
Upgrading the IOS of the devices
Work with existing Group systems and identifying key systems for integration using Solarwinds.
Performing network administrative tasks such as creation and management of VLANs, port security, trunking, RPVST, Inter-VLAN routing and LAN Security.
Implemented link aggregation using LACP and PAGP
Involved in designing and implementing QOS and policy map to 2800 series routers for all the branches.
Configured Port Channel,VPC and VDCs in Nexus 5K and 7K also configured fabric extender.
Created ACLs for access in the internal LAN on ASA 5505, 5510,5520models.
Configured of ACL’s in Cisco 5520 ASA firewall for internet Access requests for servers, Protocol Handling, Object Grouping and NAT.
Upgraded the Enterprise network environment with Cisco ASA 5520. Configured ACL’s on Cisco Switches as well as configured routers as terminal servers.
Designed and implemented security systems including various Cisco IOS ACLs, Context-Based Access Control, Network Intrusion Detection Systems, AAA Cisco Secure Access Control Server (Radius/TACACS+). Planned, configured and operated IPsec VPNs.
Worked on documentation to create Visio diagrams using MS Visio
Environment: Cisco routers, Cisco switches, firewalls,load balancers, HSRP, VRRP, IPSEC VPN, VPN, QOS, ASA Radius, TACACS, ASA, MPLS, VLANS, VLSM, BGP, OSPF,Wireless Bridges, Solarwinds,,trunking, RPVST, Inter-VLAN, Security. Visio diagrams, Nexus,Wireless bridges
Client: American Airlines, TX Jan 2015– Nov 2015
Role: Network Engineer
American Airlines, Inc. (AA), commonly referred to as American, is a major American airline headquartered in Fort Worth, Tx. It is the world's largest airline when measured by fleet size, revenue, and scheduled passenger-kilometers flown, and the second largest by number of destinations served
Responsibilities:
Created new rules as per the Branch requirement and installed the policy on respective firewalls to allow respective access through specific ports.
Configured of ACL’s in Cisco 5510 ASA firewall for internet Access requests for servers, Protocol Handling, Object Grouping and NAT.
Identify firewall rules that are potential security risks.
Configured ASA 5510 appliance and VPN.
Have created lot of site to site IPSEC VPN tunnel with Checkpoint and Cisco ASA firewalls.
Configured and monitored Firewall logging, DMZ’s and related security policies.
Remediation of firewall rules from checkpoint firewalls to Cisco ASA firewalls and their implementation.
Planning, Designing and assisting in deploying enterprise wide Network Security and High Availability Solutions for ASA.
Monitored and maintained networking equipment, ensuring availability and performance of the backbone network infrastructure and all related internetworking devices like routers and switches (Cisco).
Managed internal regional IP pools, registrations of public IP and communicate with Internet transport providers.
Very good Experience in using and maintaining various network monitoring tools like Solarwinds,Wireshark.
Working Knowledge of Unix and CLI based command to implement networking tools
Configuring, Maintaining the Routers and Switches and Implementation of RIP, EIGRP, OSPF, BGP routing protocols and trouble shooting.
Ownership of all device configurations of network and security devices such as Cisco 7600/3500, ASA 5510 and checkpoint R77
Involved in meetings with external engineering teams to design and build the network connections According to the business requirement.
Provided network monitoring and service quality assurance on 24x7 basis in Core Network Operations Center.
Provided highest level of IP Security support.
Performed variety of core network enhancements, remote/on-site troubleshooting, migrations and upgrades, operation and maintenance IP/MPLS backbone network.
Configuration of Network and Security devices such as Cisco routers and switches (Cisco 3500) Firewall ASA.
Used protocol analyzes software such as Wire Shark, Analyzed HTTP, TCP, UDP, ARP protocols.
Experience utilizing Cisco 5505 firewall such as configuring and maintaining access list
Monitored and planned activities, outage control and performance of all network elements.
Secured network from attacks by monitoring of network traffic, managing and implementing of Firewall and DDoS Mitigation System (Cisco MDM) and risk and Vulnerability Assessment (VA).
Provided network consultancy in methodologies and design considerations for optimized security of IP Backbone Network setup and configuration, maintenance, operations and support.
Involved in VPN (IPSEC and GRE) migrations and new designs for the clients.
Working knowledge in networking and security technologies suite, IPSEC, SSL client and site-to-site VPNs.
Troubleshooting the Network Routing protocols (BGP, EIGRP and RIP) during the Migrations and new client connections.
Having good experience in troubleshooting various WAN technologies like Frame-Relay, MPLS.
Confgiured VRF to maintain seperate routing tables for two different customers.
Performed IP address planning, designing, installation, configuration, testing, maintenance and troubleshooting in complete LAN, WAN development.
Identify firewall rules that are potential security risks.
Installed,configured and maintained Cisco switches, Cisco routers, ASA firewalls, Checkpoint Firewalls (on Sun Solaris hardware), f5 Big IP Load balancers, and Dell Windows 2000/2003 Servers.
Environment: Cisco routers, Cisco switches, firewalls, IPSEC VPN, VPN, QOS, ASA, Radius,TACACS, ASA, MPLS, VLANS, VLSM RIP, EIGRP, OSPF, BGP, trunking, RPVST, Inter-VLAN, DDoS, VPN, WAN, VOIP, Checkpoint, ASA, QOS
Client: D.E. Shaw, NY Mar 2012 – July 2014
Role: Network Engineer
D.E. Shaw & Co., L.P. is a global investment management firm founded in 1988 by David E. Shaw and based in New York City. The firm has offices in Hong Kong, India, Shanghai and Tokyo. The company invests in technology, wind power, real estate and financial services firms.
Responsibilities:
Implemented VTP and Trunking protocols (802.1q and ISL) on 3560, 3750 and 4500 series Cisco Catalyst switches.
Performed IOS upgrades on 2900, 3500 series Cisco Catalyst switches and 1800, 2600, 3600 series Cisco routers using TFTP. Provided network connections for new workstations.
Configured STP for loop prevention and VTP for Inter-VLAN Routing.
Informing and updating clients about new products and services of the organization.
Implementation of TCP/IP & related Services-DHCP/DNS
Developed scripts for automation, monitoring and security purposes.
Plan layout & installation of Local Area Network. Configuration of DNS, DHCP
Optimization and security hardening of Network Monitoring System (NMS) servers
Configured and installed the Wireless access points
Migration of RIP V2 to OSPF, BGP routing protocols.
Design multi-router peer Cisco BGP network, in process of Cisco MPLS L2/L3VPN transport network design.
Providing networking services, coordinate tasks and ensure their execution and documentation in accordance with established corporate standards.
Experience in design, implementation and use of F5load balancers, BIG-IP optimize and control network traffic.
In-depth knowledge and hands-on experience in Tier II ISP Routing Policies, Network Architecture, IP Subnetting, VLSM, TCP/IP, NAT, DHCP, DNS, FT1 / T1 / FT3 / T3 SONET POS OCX / GigE circuits.
Assisted in MPLS migrations, implemented a backup for the existing WAN connection using site-to-site IP sec VPN tunnels
Hands on experience with Juniper EX-Series Ethernet Switches.
Configuring and deployment of Juniper ERX310 router
Experience with working on juniper switches like EX2200, EX2500, QFX switch with Spanning tree.
Experience on QOS technologies (L2 QOS, L3 QOS Policing and Traffic Shaping).
Hands on experience working with Cisco Nexus 7K, Nexus 5K and Nexus 2K Switches
Planned and installed Frame Relay WAN links to the branch offices
Environment: Cisco routers, Cisco switches, Nexus, firewalls,F5, BIG-IP,load balancers, TCP/IP, DHCP/DNS, NMS,LAN, RIP V2, OSPF, BGP, Trunking, IOS, STP, VTP, Inter-VLAN, QOS.
Client: Karvy Stock brokerage, India July 2010 – Feb 2012
Role: Jr. Network Engineer
Responsibilities:
Inventory & Stock Maintain for Spares (Switches, cables, Fiber optic cable)
Quarterly & Half yearly perform Network health check-up
Monitoring Public connectivity, Traffic & Bandwidth
Cisco IOS Installation & Up gradation on L2 Switches with Latest IOS
Provided users and network operations personnel with LAN and WAN technical support
Installed and configured DHCP Client/Server
Maintain, Configuration, Trouble-shoot Wi-Fi Devices
Installation, configuration & Trouble shoot L2 Switches
Configure two locations through wireless access point
Experience on Corporate Data Network (CDN)/LAN management.
Had a good hands-on experience with cisco 6509 Series Cisco Switch with VLAN’s for different departments
Implemented VTP and trunking protocol 802.1q on cat 2900, 4500 and 6500 switches.
Supporting wide range of products from Cisco Systems, Troubleshooting of Routers, Switches, Leased line
Environment: Cisco routers, Cisco switches, Nexus, cat 3560, 3750, 4500 firewalls,F5, BIG-IP,load balancers, TCP/IP, DHCP/DNS, LAN, WAN, NMS, CDN,LAN, RIP V2, OSPF, BGP, Trunking, IOS, STP, VTP, Inter-VLAN, QOS, Wi-Fi.
EDUCATION:
Bachelor of Engineering