Network Engineer
Resume:
Pareekxit Reddy
************@*****.***
PROFESSIONAL SUMMARY:
Around 9 of experience in design, development, implementation, troubleshooting and maintenance of complex network systems.
Sound knowledge of Routing and Switching concepts and MPLS design.
Proficient in Cisco IOS for configuration & troubleshooting of routing protocols: MP-BGP, OSPF, LDP, EIGRP, RIP, BGP v4, MPLS.
Experience working with Cisco Nexus 2148 Fabric Extender and Nexus 5000 series to provide a Flexible Access Solution for datacenter access architecture.
Familiar with Cisco Security SDM, NAT/ACLs, AAA, Layer 2 Security, Layer 3 Security, IPS/IDS, Cryptography, VPN, IPSec.
Experience with and Viptela SDWAN technologies.
Profound working knowledge of administration and management of Palo Alto Firewalls using centralized Panorama M-100 and M-500 devices.
Knowledge on maintaining Big-IP F5 load balancing solution across multiple data centers.
Extensive experience in Layer 3 routing and Layer 2 switching. Experienced dealing with router configurations like 7200, 3800, & 2800 and switches 6500, 4500, 3750, 2900 and 3500XL series.
Well experienced in configuring protocols HSRP, ICMP, IGMP, PPP, PAP, CHAP, and SNMP.
Implemented IPv4 migration to IPv6 (NAT-PT, Tunneling, etc.) and IPv6 routing protocols (RIP, OSPFv3, EIGRP, BGP, etc.)
Hands-on experience in configuring Viptela devices and creating device and feature templates on vManage required for SD-WAN implementation
Thorough understanding of VPN technologies like IPSEC, GRE tunneling, MPLS for remote access security.
Hands on experience in configuring and supporting site-to-site and remote access server, IPSec, VPN solutions using ASA/PIX firewalls, Cisco and VPN client.
Involved in the IBM cloud connection service between IBM and Datacenter and created the network connection between Datacenter and IBM cloud via Mega port.
Worked on Amazon AWS and Microsoft Azure could network services
Experience with Cisco Meraki wireless managed network infrastructure.
Experience with F5 load balancers and Cisco load balancers (CSM, ACE and GSS).
Basic and advanced F5 load balancer configurations, including migrating configurations from Cisco ACE to F5 and general troubleshooting of the F5 load balancers.
Knowledge and configuration of Cisco ACL, NAT, AAA, TACACS+ & RADIUS Server on Cisco Secure ACS.
Experience in Layer3 routing and Layer2 switching experienced dealing with router configurations like 5060, 4500, 3750, 2900 3850 and 3500XL series and switches 9K, 7k, 5k, 3k, 2k.
Worked on network topologies and configurations, TCP/IP, UDP, Frame Relay, Token Ring, bridges, routers, hubs and switches.
Expertise in Designing, testing & implementation of VIPTELA SDWAN, SDWAN role integration with Multiple Cloud Providers
Knowledge on Microsoft OMS Create the monitoring, Log Analytics, Backup files and folder from windows server and client from Azure Backup Vault
Experience in optimizing volumes, EC2 instances and created multiple VPC instances and creating alarms and notifications for EC2 instances using Cloud Watch.
Excellent interpersonal, communication and organizational skills with the ability to interact effectively with employees at all levels within the organization.
Experienced working with Wireless LAN Controller's, Cisco Meraki, Cisco AP's, Standalone AP's and Mesh AP's.
Expert knowledge and experience with, AAA, Advanced IP Addressing & Routing, Cisco IOS, Cisco StackWise, DHCP, DNS, Dynamic Multipoint VPN, IPv4, IPv6, LAN And WAN, Network Management, QoS, WLAN, SDWAN
Experience on Virtual Private Network (VPN) for operating Network and Data Center.
Traffic monitoring and managing using Palo Alto Panorama.
Access control server configuration for RADIUS & TACAS+.
TECHNICAL SKILLS:
Cisco Platforms
Nexus 9K,7K, 5K, 2K, 1K
Cisco Routers
1700, 1800, 2500, 2600, 2800, 3600, 3800, 3900, 7200, 7600
Cisco L2 & L3 Switches
2900, 3500, 3560, 3750, 4500, 4900, 6500
Juniper Platforms
SDN, Juniper Contrail, SRX, MX, EX Series Router and Switches
Networking Concepts
Access-lists, Routing, Switching, Sub netting, Designing, CSU/DSU, IPSec, VLAN, VPN, WEP, WAP, MPLS, VoIP, Bluetooth, Wi-Fi
SDWAN
Fortinet 100 and 200D, Silver Peak EC-XS-SP. Routing Protocols: EIGRP, OSPF, BGP, IP ROUTING, HDLC, PPP, RIP, NAT, HSRP, VRRP Protocols: VLAN, STP, RSTP, VTP, ETHERCHANNEL
Firewall
ASA Firewall (5505/5510), CheckPoint, Cisco ASA, Panorama Palo Alto Networks Firewall management
Network Tools
SolarWinds, SNMP, Cisco Works, Wireshark
Load Balancers
Cisco CSM, F5 Networks (Big-IP)
Wan Technologies
Frame Relay, ISDN, ATM, MPLS, leased lines, PPP, DS1, DS3,0C3, T1 /T3 & SONET
Lan Technologies
Ethernet, Fast Ethernet, Gigabit Ethernet, & 10 Gigabit Ethernet, Port-channel,
VLANS, VTP, STP, RSTP, 802.1Q
Security Protocols
IKE, IPSEC, SSL-VPN
Networking Protocols
RIP, OSPF, EIGRP, BGP, STP, RSTP, VLANs, VTP, PAGP, LACP, MPLS, HSRP, VRRP, GLBP, TACACS+, Radius, AAA, IPv4 and IPv6
Operating System
NOC, MAC OS X, Windows Server 2008/2003, Linux, Unix
AWS
EC2, ELB, EBS, Route 53, IAM, S3, AMI, VPC, AWS Code Deploy Using Terraform and CloudFormation Templates
Education Details:
Bachelors in engineering from Vignan University
Masters in engineering from University of Hartford
Certifications:
AWS Certified Solutions Architect- Associate
Cisco Certified Network Associate
PROFESSIONAL EXPERIENCE:
Western and Southern Financial Cincinnati, OH
Network System Administrator/Engineer March 2023 – Present
Responsibilities:
Worked in Clients’ Global Deployment and operations team to support multiple migrations in switching, routing, firewalls, LB and Proxies.
Administration and Support of all Windows operating systems: 95,98, NT 2000, XP, 7, and Server 2003-2012- Active Dir.
Palo Alto design and installation (Application and URL filtering, SSL decryption, SSL Forward Proxy). Configured and maintained IPSEC and SSL VPNs on Palo Alto Firewalls. Successfully installed PA-5000 series firewalls in Data Center as perimeter Firewalls.
Migration of ASA firewalls to PA next gen Firewalls using migration tool in PA. Migrated all IPSEC tunnels, ACL’s, NAT rules and policies.
Installation, administration, and support of Microsoft Exchange Server 2007, and 2010, including Database Maintenance and Mailbox Recovery
Experience working on Cisco ASR 9K, Nexus 7k and 9K. Configured and designed OSPF, EIGRP and BGP at Distribution and Core layers. Configured OTV layer 2 connection between Data centers on Nexus.
Worked on Juniper devices like M, MX, T routers on advanced technologies like MPLS VPNs, TE and other service provider technologies.
Experience with configuring BGP, OSPF in Juniper M and MX series routers. Worked on several BGP attributes like MED, AS-PATH, and Local Preference for route optimization. Worked on Route-Reflector, Route-Redistribution among routing protocols.
Experience working with Juniper devices like EX-2200, EX-4200, EX-4500, MX-480, M Series, SRX650, SRX240
Managed AD Domain Controller, DNS and DHCP Servers and configurations.
Worked on Cisco ISE for user Authentication, Security Group Tags, MAC based authentication for Wireless and Wired users, 802.1X, EAP, PEAP etc.
Experienced in configuring Guest access using Aruba ClearPass and Web Authentication.
Responsible for the IPAM (IP Address management) system for a very large WAN/LAN network (QIP) using SolarWinds IPAM and Infoblox DNS and DHCP servers. Experience with DHCP scopes, IP reservations, DNS host entries, pointers, delegations, Zones, DNSSec etc.
Experience working with Avaya and Cisco VOIP environments with assigning VOICE Vlans, troubleshooting call quality and basic level proficiency in QoS. Worked on DSCP code markings for VOIP traffic.
Provides expert level security and networking knowledge in the planning, researching, designing, and testing of new networking technologies for perimeter firewall security, Intrusion Prevention/Protection System (IPS), DNS and DMZ security, and Internet Security in support of established Info Security program initiatives for the next 3 years.
Regular upgrade and maintenance of Infrastructure, Installing, configuring, and maintaining Cisco Switches (2960, 3500,7600, 3750, 3850 series, 6500 series) Cisco Routers (4800, ASR 9K, 800), Juniper Routers and Firewalls, Nexus 7k,5k & 2k, f5 BIG IP, Palo Alto Firewalls, Zscaler Proxy and Versa SD-WAN appliances.
Conducted a POC on Versa and Viptella SD-WAN solution as a team and worked on evaluating the solutions.
Installing and Managing ESX and ESXi servers on Cisco servers.
American Water Camden, NJ
Network Engineer April 2020 – Feb 2023
Responsibilities:
Configuration and Administration of Cisco and Juniper Routers and Switches.
Administration and diagnostics of LAN and WAN with in-depth knowledge of TCP/IP, NAT, PPP, ISDN and associates network protocols and service.
Involved in configuring and troubleshooting Cisco ASA firewalls.
Worked on Juniper J series j230, M 320 and MX960 routers and EX 3200 series switch.
Troubleshooting hardware and network related problems.
Configure the layer 2 and layer 3 on Cisco Nexus 7K, 5K, 6509, 9710, 5596 UP, 4500, 3850, 3950, ASR and 2960
Worked with Checkpoint, Cisco ASA, and Palo Alto Networks solutions.
Experience in HSRP standby troubleshooting & Experience in configuring & upgrading of Cisco IOS.
Implementing & troubleshooting of T1, MUXES, CSU/DSU and data circuits.
Experience on designing and troubleshooting of complex BGP and OSPF routing problems,
Have sound knowledge of Firewall architecture, routing, and VPN.
Have experience working as an HP Open view Network Node Manager.
Upgrade firewalls in accordance with change management & Document changes to firewalls.
Monitor traffic and access logs to troubleshoot network access issues.
Have experience with Cisco Works LAN Management Solution.
Implemented Positive Enforcement Model with the help of Palo Alto Networks
Experience in migration of Frame-relay based branches to MPLS based technology using multi-layer stackable switch like 6500 series and 2800 series router.
Testing VPC, BGP, OSPF, EIGTP, RIP, SPAN, VLAN Trunking, SVI and power supplies on Nexus and ASR devices
Involved in design and implementation of Data Center Migration, worked on implementation strategies for the expansion of the MPLS VPN networks.
Hands on experience with Cisco 3500, 3750, 4500, 6500 series equipment and configuring and deploying and fixing them with various modules like Gig card, VPN SPA card, WIC card.
Cisco IOS experience on 3600/7200 class hardware in complex WAN environment and experience on Cisco OS and IOS on CAT6500 in a complex data center environment.
Involved in configuring IP Quality of service (QoS).
Involved in designing L2VPN services and VPN-IPSEC authentication & encryption system.
Experience in designing, installing & configuring Cisco ASA & FWSM (Firewall service module). Worked on Checkpoint firewalls R70, R75, R77.20 Gaia and Provider-1/MDM
Evaluate, Analyze & Implement firewall policies to meet business requirements.
Experience in creating and maintaining Checkpoint and ASA firewall configurations, updating documentation and log analysis.
Liberty Mutual Dover, NH
Network Engineer/Administrator Feb 2019 - Mar 2020
Responsibilities:
Assisted in network engineering efforts consistent with the infrastructure of an Internet Service Provider and support of such network services. Helped in designing and implementation of VLAN for the new users.
Installation and Configuration of various types of Personal Computers and Printers. Installation of different operating systems on Intel based PC's.
Troubleshooting of personal computers. Online Support to customers concerning their computer problems.
Replace branch hardware with new 2851 routers and 2960 switches.
Implemented WLAN Aruba Wireless Access Points and its Controllers at various corporate sites fort 11n.
infrastructure and its legacy technologies.
Experience in working with Cisco Nexus 5000 series switches for data Centre.
Diagnose, troubleshoot, and resolve service issues related to VoIP telephony platforms and applications.
Configured OSPF on CISCO devices with multiple routing processes and redistributed them. Tested and hands on experience in multi area OSPF topologies.
Configured VLANs with 802.1q tagging. Configured Trunk groups, ether channels, and Spanning tree for creating Access/distribution and core layer switching architecture.
Dell Technologies Round Rock, TX
Network Engineer Sep 2017 – Jan 2019
Responsibilities:
Involved in complete LAN, WAN development (including IP address planning, designing, installation, configuration, testing, maintenance etc.). Design of DMZ in primary and redundant data centers with Next Gen Firewalls, IPS/IDS sensors, Switching and routing.
Experience in deployment of Nexus 7010, 5548, 2148T, 2248 devices
Experience working with Cisco Nexus 2148 Fabric Extender and Nexus 5000 series to provide a Flexible Access Solution for datacenter access architecture.
Experience configuring Virtual Device Context in Nexus 7010
Installation and maintenance of Cisco Layer 3 switches 3750, 4500X, 6500 in multi VLAN environment.
Maintenance and configuration of Cisco ASR1000 series and 7200VXR routers at data center and deployment of 3900, 3800, 2951 and 2821 for branch connectivity.
Involved in migration from Site-to-sire GRE tunnels network to MPLS-based VPN for customer’s WAN infrastructure.
Implementing security Solutions using Palo Alto PA-5000/3000, Cisco 5580/5540/5520.
Migration experience from Cisco ASA 5500 to PA. Experience with migration tool in PA for Policies from ASA to PA. Experience with SSL forward proxy and URL filtering.
Configuration and administration of firewalls, which includes Checkpoint, Juniper, and Cisco ASA firewalls.
Experience with RIVERBED Steelhead appliance for WAN optimization.
Configuring High Availability using Cluster XL on Checkpoint as well as VRRP and monitor the Sync status for tasteful replication of traffic between active and standby member.
Researched, designed, and replaced Checkpoint firewall architecture with new next generation Palo Alto PA3000 and PA5000 appliances serving as firewalls and URL and application inspection.
Configuring rules and Maintaining Palo Alto Firewalls & Analysis of firewall logs using Panorama.
Successfully installed Palo Alto PA-3000/PA-5000 firewalls to protect Data Center and provided L3 support for routers/switches/firewalls.
Configured and maintained IPSEC and SSL VPNs on Palo Alto Firewalls and implemented Zone Based Firewall and Security Rules on the Palo Alto Firewall. Exposure to Palo Alto Wildfire.
Involved in Switching Technology Administration including creating and managing VLANS’s, Port security, Trunking, STP, Inter VLAN routing, LAN security etc.
Experience in administrating Viptela SDWAN enterprise deployment and implementations of Network and Devices for SDWAN environment.
Configured BGP, EIGRP and OSPF and Policy based Routing.
Configuring OSPF and Static routing on Juniper M and MX series Routers
Configuring VLAN, Spanning tree, VSTP, SNMP on EX series switches
Configured Cisco 7200 routers which were also connected to Cisco ASA 5508 security appliances providing perimeter-based firewall security.
Update customer networks by configuring routers, switches, and incorporate the SDWAN into the network design.
Optimized performance of the WAN network consisting of Cisco 3550/4500/6500 switches by configuring VLANs.
Configuring ASA 5510 Firewall and accept/reject rules for network traffic.
Extensive knowledge and troubleshooting in data communication protocols and standards including TCP/IP, UDP, IEEE 802.3, Token Ring, Cable Modem, PPPOE, ADSL, Multilayer Switching, DoD standards.
Managed the F5 Big IP GTM/LTM appliances to include writing iRule, SSL offload and everyday task of creating WIP and VIPs.
Convergys Plano, TX
Network Engineer May 2016 to Aug 2017
Responsibilities:
Configuration, Troubleshooting and Maintenance of Palo Alto Firewalls (36+ firewalls) - PA200, PA2000 series, PA3000 series, PA4000 series and PA5000 series.
Successfully installed Palo Alto PA-5000, PA-3000 firewalls to protect Data Center and provided L3 support for routers/switches/firewalls and also configured and maintained IPSEC and SSL VPN's on Palo Alto firewalls.
Involved in redesign of traffic anomaly system to increase the detection method and algorithm efficiency.
Capturing data in the kernel stack and analyze the packets in various locations on the network stack
Experienced in WAN environments, installing and troubleshooting data circuits (OC, T1, E1, T3, MUXES)
Understanding current vulnerabilities attacks and counter measures, assessing the impact of traffic on customer networks, conducting research on emerging security threats.
Mentoring and training security analysts, creating and maintaining documentation for Traffic anomaly Sys.
Experience testing of a prototype Traffic Anomaly system that monitors TCP/IP network traffic. Each network packet is characterized by the (source host, Source port, destination host, Destination port, Flag). The system monitors the network for the occurrence of mismatch, which represent unusual traffic patterns within the network.
Assist internal project teams by determining rules that need to be added to the firewalls and identifying the proper routing and addressing for new devices in managed DMZ*s.
Experience in troubleshooting of complex BGP and OSPF routing problems
Experienced in SYSLOG analysis & Proxy servers
Worked on FRB's QoS Remediation process. In association with Cisco, I worked on capturing the current QoS, analyzing it and came up with new classes and configurations according to the new applications that's been added to FRBs network such as O365. Worked on building and finalizing the new configurations and applied them throughout the FRB's network including all the PBOs, Corp sites and Data Centers.
Bloomberg New York, NY
Jr. Network Engineer Feb 2015 to Feb 2016
Responsibilities:
Involved in complete local area network (LAN) and wide area network (WAN) development including designing, installation, configuration, and maintenance.
Designed the network infrastructure for 25 remote sites and central office considering the user requirements at each location.
Installed Cisco Catalyst 2960 Switches and Cisco ASA 5505 Firewalls at remote locations.
Performed the switching technology administration by configuring Cisco switches (Cisco catalyst 2960, CISCO SF300-24P and Cisco SG200-26P switches).
Maintained stable STP topology using Port fast, BPDU guard, root guard and UDLD.
Configured Virtual LANs (VLANs), VLAN Trunking, Inter VLAN routing, Port security, and LAN security on Cisco Switches.
Performed troubleshooting for VLAN misconfiguration and port security issues.
Deployed and maintained the network security infrastructure by Configuring Cisco ASA 5510 security appliance.
Configured Cisco 2960 routers as DHCP servers to distribute dynamic IP addresses.
Established Remote Access Virtual Private Network (VPN) between 25 remote site offices and the central office.
Created IKE Phase1 tunnel and IPsec tunnel between remote offices and central office for the encryption of data traffic.
Applied Access Control List (ACL) as a part of VPN cryptography policy on Cisco ASA 5505 and 5510 Firewalls.
Installed secure and scalable Cisco WAP150 Wireless access points and documented all network set-ups.
Installed Yealink and Cisco 7941 VoIP phones and implemented the telephony infrastructure on Elastix servers.
Documented the network designs and data flow representations using tool Microsoft Visio.
Maintained LAN user documentation including hardware and software applications and support logs.
Contact this candidate