Ravindra Babu

C: 732-***-****

M: acxu2a@r.postjobfree.com

Professional Summary:

Network Engineer with 8+ years of professional experience in testing, troubleshooting, implementing, optimizing, maintaining and migrating enterprise data network and service provider systems.

Implementation, Configuration and Support of Checkpoint (NGX R76, R77 and R77.10), Juniper Firewalls (SRX5400, SRX5600, and SRX5800), Cisco Firewalls (ASA 5505, 5506-X, 5585).

Knowledge and Exposure about Palo Alto Networks Firewall models (PA-2k, PA-3k, and PA-5 k).

Provide scalable, supportable military grade TCP/IP security solutions along with expert TCP/IP network designs that enable business functionality.

Administration, Engineering and Support for various technologies including proficiency in LAN/WAN, routing, switching, security, application load balancing and wireless.

Substantial knowledge in configuring and troubleshooting routing protocols: MP-BGP, OSPF, LDP, EIGRP, RIP and BGP.

Knowledge in configuration of Gateway redundant protocols like HSRP, VRRP and GLBP.

Substantial knowledge with expertise in implementing, maintaining and troubleshooting L2 switching tasks such as VLANs, VTP, VLAN Trunking using ISL and 802.1Q, Port Security, STP, RSTP, PVST+, Ether Channel using LACP and Inter-VLAN routing.

Experience with WAN Technologies like HDLC, PPP, PAP, CHAP, Frame Relay & ATM.

Extensive knowledge and troubleshooting experience in different networking protocols including DHCP, DNS, FTP, TFTP, SNMP, Quality of Service (QOS), HTTPS, SSH, Telnet and ICMP.

Implemented IPv4 migration to IPv6 (NAT-PT, Tunnelling, etc.)

Experience working with ticketing tools such as Remedy and ServiceNow.

Proficient in using SolarWinds Network Management tools like Network Performance Monitor (NPM), Netflow Traffic Analyzer, Network Configuration Manager (NCM) and Cisco Prime.

Expert in performing deep packet analysis to troubleshoot network and application issues using Wireshark.

Experience working with Cisco Nexus 2148 Fabric Extender and Nexus 5000 and 7000 series DC Switches and Virtual Port Channel (VPC) configuration to provide a Flexible Access Solution for a Data Center Access.

Implemented VDC, VPC, VRF and OTV on the Nexus 5505 and 7009 switches.

Configured F5 LTM, GTM 8950, 6900, VIPRION 2400 models.

Administration Big IP F5 LTM 8900 for all Local Load balancing and configured profiles, provided and ensured high availability.

Extensive Knowledge in configuring and troubleshooting as well as creating Virtual Servers, Nodes, Pools and iRules on BIG-IP F5 load balancer LTM for load balancing and traffic management in DC environment.

Provides management level reporting of firewall and Intrusion Protection System (IPS) activity on a periodic basis.

Experience with SIP and H.323 protocols.

Secured network access with Cisco Secure (RADIUS/ TACACS+) and Configured network access servers for AAA Security as well as Cisco UCS.

Hands on Experience with Juniper switches and routers.

Administering Linux Red Hat 5.4 & 6, Working with operating systems like Ubuntu.

Experience with installation of Linux servers in a Virtualized environment (VMware)

Experience with Python scripting for Day to day activities.

24 x 7 on call support.

Professional Skills:

Cisco router platforms

2500, 2600, 2800, 3600, 3700, 3800, 7200, 7609.

Cisco Switch platforms

2900XL, 2950, 2960, 3560, 3750, 4500, and 6500.

Firewalls & Load Balancers

C Cisco ASA 5585, 5550, 5540, Juniper SRX5400, 5600, 5800, Juniper Net screen 6500, 6000, 5400. Juniper SSG Firewalls, Checkpoint Gaia R76, R77, R77.10 &R77.20 Palo Alto PA-3060/2050, F-5 BIG-IP LTM (6900, 8900), Blue Coat SG8100, AV 510, Av810., A10

Routers

Cisco routers (1900, 2600, 2800, 2900, 3800, 3900, 7200, 7600), Cisco L2 & L3, Juniper routers (M7i, M10i, M320)

Switches

Cisco switches (3560, 3750, 4500, 4900 & 6500), Nexus (2248, 5548 &7010), Cisco ACI, Juniper Ex

Routing

RIP, EIGRP, OSPF & BGP, Route Filtering, Redistribution, Summarization, Static routing

WAN Technologies & Wireless

FRAME RELAY, ISDN T1/E1, PPP, ATM, MPLS, leased lines, DSL modems, Bluetooth

LAN Technologies

Ethernet, Fast Ethernet, Gigabit Ethernet, NAT/PAT, FDDI. Cisco

Secure Access Control Server

(ACS) for TACACS+/Radius.

VOIP Devices

Cisco IP phones, Avaya.

Routing Protocols

RIP, OSPF, EIGRP, and BGP.

Switching Protocols

VTP, STP, RSTP, MSTP, VLANS, PAgP and LACP.

Network management

SNMP, CiscoWorks LMS, HP Openview, Solar winds, Ethereal.

Layer 3 Switching

CEF, Multi-Layer Switching, Ether Channel.

Carrier Technologies

MPLS, MPLS-VPN.

Redundancy protocols

HSRP, VRRP, GLBP.

Security Protocols

IKE, IPsec, SSL, AAA, Access-lists, prefix-lists.

Software & Other

Microsoft Office Suite, MS Visio, HTML, VMware, AWS, Cisco ISE

Ticketing software

Service-now, Remedy system

Language

Unix, Turbo C/C++, Python, basics in Perl and Shell scripting.

Certifications:

Cisco Certified Network Professional (CCNP)

Cisco Certified Network Associate (CCNA)

Educational Experience:

Bachelors in Computer Science and Technologies.

Professional Experience:

State Farm, Bloomington, IL Apr 2015 - Present

Senior Network Engineer

Responsibilities:

Implementation of System design and troubleshooting of complex network system as well as installing firewall technologies.

Involved in all technical aspects of LAN and WAN projects including, short and long term planning, implementation, project management and operations support as required.

Responsible for CheckPoint and Cisco ASA firewall administration across global networks.

Implementing Checkpoint Firewall policy provisioning.

Converting Checkpoint VPN rules over to the Cisco ASA solution and migrating with both Checkpoint and Cisco ASA VPN.

Checkpoint Level3 operations support with hardware operations fixing all problems & RMA's, taking any escalations that dealt with the equipment and its connection interfaces, VLAN's, routes, etc.

Supporting and troubleshooting Checkpoint (R77.10 Gaia, R77, R76, Provider-1, MDM/MDS, VSX, SPLAT and IPSO) and Cisco firewall (ASA 5550, 5540, 5520, PIX 525, 535, CSM and ASDM) technologies.

Administration and L3 support of our Infoblox DDI deployment and F5 GTM’s and configuring various advanced features (Profiles, monitors, iRules, Redundancy, SSL Termination, Persistence, SNATs, and HA) on F5 BIG IP appliances.

Designing and implementing load balancing solutions for large enterprises working on F5 load balancers and Cisco load balancers(ACE).

Executed various migration/upgrade projects across F5 and hands on with F5 BIGIP LTMs/EM.

Administration Big IP F5 LTM 8900 for all Local Load balancing and configured profiles, provided and ensured high availability.

Configuring GTM Communications between BIG-IP GTM and Other Systems for load balancing across Data Centers deploying many load balancing techniques with multiple components for efficient performance.

Configured Site-to-Site IPsec VPN tunnels to peer with different clients and each of client having different specifications of Phase 1 and Phase 2 policies using Cisco ASA 5500 series firewalls.

Worked with Cisco IOS-XR on the ASR 9000 devices for MPLS deployments in data center.

Working with Cisco Nexus 2148 Fabric Extender and Nexus 9000, 7000, 5000 series to provide a Flexible access Solution for a datacenter access architecture.

Responsible for the secure development lifecycle for Cisco's Nexus line of products, including Application Centric Infrastructure (ACI), Application Policy Infrastructure Controller (APIC) - Cisco's Software Defined Network (SDN) solution, IDS & IPS.

Implemented routing protocols (RIPv1/2, IGRP, EIGRP, OSPF, BGP), switching (VLANS, VTP Domains, STP, and trunking), security on devices hardening (AAA).

Installing, configuring, and troubleshooting of Cisco 7600, 7200, 3800, 3600, 2800, 2600, 2500 and 1800 series Routers & ASR 9000 Series routers, Cisco Catalyst 6500, 4500, 3750, 2950, 3500XL, Nexus 5K, 7K, 9K series switches.

Network security including NAT/PAT, ACL, VPN Concentrator, IDS/IPS.

Troubleshoot and Worked with Security issues related to Cisco ASR 9K, Checkpoint, IDS/IPS.

Monitor the network traffic through Orion SolarWinds.

Configuring & managing around 500+ Network & Security Devices that includes Firewalls and F5 Big IP Load balancers.

Environment: Cisco Routers (7600, 7200, 3800, 3600, 2800, 2600, 2500 and 1800 series Routers & ASR 9000), Cisco Switches (6500, 4500, 3750, 2950, 3500XL), Nexus (9k, 7k, 5k), Checkpoint (R77.10 Gaia, R77, R76), Cisco ASA (5550, 5540, 5520), Inflobox, IDS/IPS, Solarwind, RIP, EIGRP, OSPF, BGP, VPN, F5 Load Balancers LTM & GTM.

New York Life, Lebanon, NJ Jan 2014 – Mar 2015

Senior Network Engineer

Responsibilities:

Design & implementation of Enterprise Networking configuration of Cisco Routers, Switches and Firewalls, troubleshooting & fine-tuning of Firewalls, VPN configuration, troubleshooting Network related problems in Enterprise& Data Center Network (DCN).

Implementing and configuring protocols such as HSRP, GLBP, VRRP, ICMP, IGMP, PPP, HDLC, PAP, CHAP, and SNMP.

Designing and configuring networking features such as VLAN, ISL, STP, VTP, 802.1X, Port Security, L2PT and SPAN.

Implementation of DNS and DHCP protocols and Configure Protocols MPLS: TDP, LDP, L2VPN, VPLS, AToM, RSVP-TE, and QOS.

Configuring WAN & Wireless Environment like 802.11, WEP, WAP, ATM, Frame Relay.

Administration of ASA firewalls in the DMZ and FWSM in the Server Farm to provide security and controlled/restricted access.

Worked on design and deployment of MPLS Layer 3 VPN cloud, involving VRF, Route Distinguisher (RD), Route Target(RT), Label Distribution Protocol (LDP) & MP-BGP.

EIGRP/OSPF to BGP to WAN routing experience and converting Point to point circuits to MPLS circuits.

Hands-on experience on IP Addressing (IPv4, IPv6), Sub netting, VLSM and ARP, reverse & proxy ARP, Ping Concepts.

OSPF, EIGRP, BGP, Policy-based routing over Cisco Routers, configuring and troubleshooting route redistribution.

Implemented traffic filters using Standard and Extended access-lists(ACL), Distribute-Lists, and Route Maps, Cisco ASA firewall.

Design and configuring of OSPF, BGP on Juniper Routers (MX960) and SRX Firewalls (SRX240, 5400, 5600, 5800)

Worked with High performance data center switch like nexus 7000 series.

Designed, Implemented and Troubleshoot Cisco 3750, 3550, 3560, 2924, 6509-V-E, 6513, 6504, 6503, 6506, 6500 series switches.

Performed IP address planning, designing, installation, configuration, testing, maintenance, and troubleshooting in complete LAN, WAN development.

Configured, installed, & managed DHCP, DNS, & WINS servers.

Worked with Load Balancers for administrating and monitoring global & local traffic.

Configured F5 LTM, GTM 8950, 6900, VIPRION 2400 models.

Basic and advance F5 load balancer configurations, including migrating configurations from Cisco ACE to F5 and general troubleshooting of F5 load balancers.

Installation & configuration of Microsoft Proxy Server 2.0 & Blue Coat Proxy.

Experience with Racking, Stacking, configuring, Nexus 2K,5K and 7K and Installed wireless access points (WAP) at various locations in the company.

Hands on experience with Juniper EX-Series (EX2200, EX2500) Ethernet Switches.

Monitored the Enterprise Network using management tools like Wireshark, TCPdump, Cisco Prime, Net Flow, PRGT, Solar Winds.

Design and configuring Overlay Transport Virtualization (OTV) experience on Cisco NX-OS devices like Nexus 7000.

Configuration experience on Nexus 2000 Fabric Extender (FEX), which acts as a remote line card (module) for the Nexus 5000.

Improved network and system security through setup and ongoing maintenance of and Riverbed IPS and FireEye.

Environment: Cisco routers (7200, 3800, 2800) and Cisco switches (6500, 3700, 4900, 2900), Nexus (7K, 5K & 2K) Routing Protocols (EIGRP, OSPF, BGP), Switching protocols (VTP, STP, GLBP, HSRP), Cisco PIX (525, 535), ASA (5505, 5510) firewall, Juniper EX, Juniper MX960, Juniper SRX series, F5 Load Balancers LTM, GTM, Troubleshooting, DHCP, DNS, MPLS, HDLC, PPP, CHAP, WAN, VLSM, Riverbed, FireEye.

Citizens Bank, Providence, RI Jul 2012 – Dec 2013

Network Engineer

Responsibilities:

Planning, installation, configuration and ongoing maintenance of wired networking infrastructure including routers, switches, and configuring all necessary LAN / WAN protocols in support of wireless infrastructure.

Layer 2 switching technology architecture, implementation and operations including L2 and L3 switching and related functionality. This includes the use of VLANs, STP, VTP and their functions as they relate to networking infrastructure requirements including internal and external treatment, configuration and security.

Configured policy statements, routing instances, route manipulation on OSPF and BGP.

Planning and implementation of IP addressing scheme using Subnetting, VLSM.

Assisted in backup, restoring and upgrading the Router and switch IOS.

Cisco Secure Access Control Server (ACS) for Windows to authenticate users that connects to a VPN 3000 Concentrator.

Involved in design and implementation of Data Center Migration, worked on implementation strategies for the expansion of the MPLS VPN networks.

Implementing and managing traffic engineering on top of an existing MPLS network using Frame Relay and OSPF

Configured Remote User VPN, Site to Site VPN, and Remote Access VPN, Easy VPN, SSL VPN for Client based and Clientless applications.

Configured TACACS+ server authentication on Cisco catalyst switches.

Secured network access with Cisco Secure (RADIUS/ TACACS+) and Configured network access servers for AAA Security as well as Cisco UCS.

Worked on bluecoat web application firewall to improve application performance and to perform health checks on HTTP, HTTPS, TCP, ICAP and ICMP to monitor web content servers.

Worked with Cisco Layer 3 switches 3750, 4500, 6500; Cisco Nexus 5000 and 7000 in multi VLAN environment with the use of inter-VLAN routing, 802.1Q trunk, ether channel.

Involved in Network Access Management, operational management and engineering Support of Cisco 5500-5585 series ASAs, All PIX and FWSM models.

Configuring failover for redundancy purposes for the security devices. Implemented the stateful & serial failover for PIX/ASA firewalls.

Configuring, Administering and troubleshooting the Checkpoint Firewalls R61, R65, R70, R75, R77.

Monitoring Traffic and Connections, creating Hosts, Nodes, Networks, Static & Hide NAT's using smart dashboard and application/URL filtering in Checkpoint Firewall.

Troubleshooting connectivity issues on the Checkpoint Firewall using smart view tracker, monitor health of the appliance using smart view monitor, Solarwind etc.

Configured and troubleshoot Juniper Ex 4500 and series switches and Juniper ACX series routers.

Conducted online meetings with remote site with Cisco WebEx. Also, administered and provided support for data storage system and Storage Area Network (SAN).

Experienced in working with Session Initiation Protocol (SIP) Trunking for voice over IP (VoIP) to facilitate the connection of a Private Branch Exchange (PBX) to the Internet.

Setup and administer SIP infrastructure that includes Session Border Controllers, SIP Proxy Servers and IP PBXs.

Configure and manage enterprise dial plans to integrate resolve SIP infrastructure with client SIP domains, Manage QoS of the SIP infrastructure ensuring minimal jitter and packet loss

Environment: Qos, SIP, Solarwind, SAN, VoIP, Juniper Ex 4500, Checkpoint Firewalls R61, R65, R70, R75, R77, Juniper ACX, Cisco Switches (3750, 4500, 6500), Nexus 5k, 7k, VLAN, Cisco ASA 5500-5585, RADIUS, MPLS, VPN, AAA, ACS, VLSM, OSPF, EIGRP

Hiperio Systems, Madhapur, India Dec 2010 – Jun 2012

Network Engineer

Responsibilities:

Administering Bare Metal Virtualization with VMware using ESX 4.0, VCS and VSphere Client.

Storage Administration with Netapp and MSA

Administering Cisco Unified Call Manager (UCM), Cisco Iron Port for Web, mail content filtering.

Administering Linux Red Hat 5.4 & 6, Working with operating systems like Ubuntu.

Install and Maintain Linux Based server in virtualized Environment (VMware).

Inventoried and Administered Red Hat Enterprise Linux (RHEL) and VMware ESXi Servers writing several utilities to manage them simultaneously.

Wrote Python shell scripts for Day -to-Day administration activities.

Configuring and Administering Cisco LAN’s i.e. Routers and Switches, VLANS, Cisco Unified Call Manager (UCM) and Dynamic routing with RIPV2, OSPF, EIGRP and BGP.

Implementing Security with CISSP approach and Administering SIP, H.323 protocols.

Responsible for Firewall migration from PIX 7.x/8.x to ASA 5510, 5520 and hardware upgrades

Troubleshooting, IOS Security Configurations and implementing IPSec, VPN and DMZ.

Configured Static and Dynamic NAT & PAT, Extended ACL’s, as a part of security and network operations provided support for Level 3 and LAN/WAN.

Implemented VLAN, STP and provided support with PVST, R-PVST to avoid loops in network, also created Trunking and port channels.

Performed IOS upgrade as well as Backup and recovery.

Work in an enterprise network environment with dynamic routing using OSPF and BGP for external connectivity.

Configured Cisco VPN gateways 3002 and 3005 and PIX VPN gateway on 515E with VPN Accelerator card (VAC).

Implemented global Wi-Fi networks with Cisco 4404, 5508 WLC’s, Implemented Cisco WCS Wi-Fi management server and Performed Wi-Fi Site surveys and designed Wi-Fi Access Point layout.

Perform after hour’s support duties on a rotating 24x7 basis to sustain networking systems and end user support.

Environment: LAN/WAN, Cisco Routers & Switches, EIGRP, OSPF, RIPV2, BGP, VLAN, STP, PVST, R-PVST, Python, Cisco ASA Firewalls, PIX, Linux, Virtualization, VMware, Cisco Unified Call Manager (UCM), Wi-Fi, SIP, RHEL, VMware ESXi, Netapp, MSA, WLC, WCS, ACL

Grapesoft, Hyderabad, India Mar 2008 – Nov 2010

Network Technical Support

Responsibilities:

Design, Implement, Support and Maintenance of LAN, WAN and related technologies.

Configured, installed software applications, anti-viruses, drivers and security software on user devices, maintained and troubleshoot desktop, laptop and peripheral equipment.

Perform hardware and software diagnostics, fault isolation and coordinate repairs, replacement of faulty equipment.

Design and create network physical and logical network layout diagrams.

Configuration and installation of Cisco Routers (3600, 7200) Series.

Configuration and installation of Cisco Layer 2/3 Switches like 2350, 3550, 3750, 4500, 6509.

Configuration of RIPV2, EIGRP, IGRP and OSPF routing protocols on cisco routers.

Configure the redundancy protocol like HSRP, GLBP on switches and routers.

Point to Point, ATM, Frame Relay and BGP implementation for WAN Environment.

Implemented and Configured LAN protocols like Ethernet, VLAN, STP, RSTP, and VTP.

Plan and Configure Port Security for VLAN on all the Switches.

Configured and Maintained Windows 2003, 2008 sever, DNS, DHCP, FTP, TFTP and Microsoft Exchange.

Troubleshooting of EIGRP, OSPF, BGP and Design of OSPF areas for reliable access communication and for core IP routing.

Configured and implemented Extended ACL’s on the respective interfaces (Inbound and Outbound).

Applied NAT and PAT policies on the interfaces going for ISP.

Configure and Manage Cisco Firewall ASA 5505, 5510, 5520.

Debugging abilities at L1, L2, L3, and L4 protocols in an Internet-centric environment. Troubleshooting Active Directory, DNS, and DHCP related issues.

Used python scripts to update content in database.

Worked on Python Open stack API’s and used Python based GUI components and GIT for version control.

Wrote Python Scripts to parse XML Documents and load the data in database.

Environment: LAN/WAN, Cisco Routers (2800, 3600, 3845, 7200), Cisco Switches (2350, 3550, 3750, 4500, 6509), DNS, DHCP, FTP, TFTP, EIGRP, OSPF, RIPV2, BGP, HSRP, GLBP, VLAN, STP, RSTP, VTP, Python, Cisco ASA Firewalls.

Contact this candidate