System Engineer
Resume:
Senior Systems Administrator/Engineer
Muhammad Usman
S/O Muhammad
D.O.B: 17-02-1984
Voice Cell: 92-300-******* 92-343-*******
E-Mail: ********@*****.***
Highlights and Objective
Having 5 years experience in ISP Industry. Involving both Networks and Systems management, design and troubleshooting at advance level. My main skill is UNIX like operating systems and network protocols.
Seeking an architect-level senior system administrator UNIX or Network administration position that uses my skills and challenges to learn new technologies.
Protocols/Technologies
IPV4, IPV6, TCP, UDP, ICMP, SMTP, POP3, IMAP4, SNMP, ARP, DHCP, BOOTP, FTP, RADIUS, NFS, RSYNC, ISCSI, SAN
NAT, STP, ISL, 802.1Q, Ethernet 802.3 802.2, Ether channel, PPP, HDLC, Frame Relay, ATM, IMA, BGP v4, Net-Flow, WCCP, E-1, STM-1,
Unix Type Operating Systems
LINUX
RedHat7.x, 8, 9 Slackware 8,9.x Mandrake9 FedoraCore X
UNIX
Sun Solaris 8, 9, 10 (Sparc and Intel) FreeBSD4.x, 5.x, 6.x OpenBSD3.x
Devices
Storage Sun Storage 25xx, 61xx series
SAN Switch Brocade 200-E
Routers Cisco routers 2500/2600/7200/7500 series
Ethernet Switches Catalyst 1900/2950/3550, Nortel’s Alteon 180/184/2424,
Extreme summit
Bandwith Managers Lucent Access Point 1000/450, XEDIA, Packet shaper 6500/4500
WebCaching Devices CacheFLow (BlueCoat Systems), Cisco Content Engine
Boradband Access Servers Redback SMS 500, Cisco 7200 router as BRAS
DSLAMS Nortel’s UE-IMAS, Paradyne 4200, Copper Edge CE200/150, Zyxel, Tailyn
ATM/Frame Relay Switch ASC 1240-E
Sparc Based Hardware
SUN Fire V120, 280R, Enterprise 250, V210, V215, V240, V890
Sun Enterprise T2000, Sun Enterprise M5000
(ALOM and XSCF firmwares)
Intel Based Hardware
SUN v20z, x4150
Compaq DL 380, 580 (With RAID 0, 1, 5)
Dell Power Edge 6450 IBM Intellistation
Virtualization / Thin Clients
VMWare Infrastructure 3 (ESX Server, VMware VCenter)
SUN VDI 2, SUN VDI 3
Citrix XEN and XEN Center
Solaris zones
Web/Scripting/Programming Languages
Java Servlets
Perl CGI, DBI, SNMP
Other Bash shell, PHP, AWK, HTML, CGI, SQL, TSQL
Database Servers
MSSQL 2000, MySQL
Applications
SMTP Qmail, Sendmail
POP/IMAP CourierImap, Fetchmail, Qpopper
Other Mail Vpopmail, Ezmlm, Maildrop, SquirrelMail with many modules
WEB Apache (mod _php, mod_jk2, mod_jserv, mod_auth, Virtual webhosting, chroot)
Tomcat
Squid (refresh patterns, transparent, async, diskd, icp)
DNS Bind (acls, replication, chroot)
NetFlow Flow-Tools, FlowScan
Radius FreeRadius, Radiator (realms, proxy, mysql, oracle and mssql configurations)
Monitoring/Graphing Nagios, MRTG, RRDtools, Smoke Ping, Cacti, SquidGraph
Aniti Spam/Anti Virus Spamasassin, OpenBSD’s spamd (grey listing), ClamAV
PPPoE Roar Penguin PPPoE, BSD PPPoE Server
Software Raid Solaris Volume Manager
SNMP Net-SNMP (customized enterprise OIDs)
Security tools Tripwire, Portsentry, TCPwrappers, NMAP, PAM, Sudo, chkrootkit
DHCP ISC DHCP Server(Linux installation using PXE boot)
FTP Vsftpd, Proftpd
Other Applications POPTop (ppptp server) Quota-tools, PhpMyAdmin, Daemon-tools, IProute2, NFS, Syslogd, Yum, CVS-UP, Portupgrade, samba, ZFS
Firewalls
UNIX/LINUX iptables, ipchains, ipfw, pf, ipf
Devices OSs filtering in ios, aos, webos, extremeware
CBQ, dummy net, ALTQ, iptables(byte limit), SNAT, DNAT, multiple gateways routing,
port forwarding, filtering on criteria of TTL/TOS/MAC, statefull inspection, SYN flood protection.
Certifications
Cisco Certified Network Associate (640-801) 98% marks
Employment Record
(October 2008 – Current)
Synergy Computers (pvt) Ltd. http://www.synergy.net.pk
SUN Microsystems Partner
Designation: Senior Systems Engineer
KASHF Micro Finance Bank
Deployed Enterprise class SUN machines M5000 with SUN Storage 6140 and Brocade SAN Switches 200E.
Partitioned hardware resources of M5000 machines (domains) and installed solaris, used Solaris volume manager for RAID 1.
Configured zones within Solaris, applied CPU core level restrictions within zone so they can install Sybase as per their CPU licenses.
Configured multiple RAID level 1 volumes in storage and exported storage volumes within Solaris zones so can be used for Sybase database.
Documented all project.
Signed Sun Spectrum Gold and Silver SLA for all equipment, and prepared documents for that.
Telenor Pakistan - SS7 Project
Installed SUN Fire V215, V210 machines with Solaris and RAID at their multiple cites in Lahore.
Installed SUN Storage 2530.
Telenor Pakistan – Thin Client Solution for Call Center with VMWare
Did technical presentation on Open Storage and its comparison with SAN. Open storage features like ZFS, SSD. Different models of open storage 7210, 7410. Proposed and presented Open storage to clients as a cost effective and better option than SAN for their solution.
Prepared technical proposal documents for 300 thin clients with SUN VDI, VMware Infrastructure 3, 6540 Storage, Brocade 300E switches with all kind of failover scenarios.
Prepared project deployment document for Thin Client solution.
Faysal Bank (Faysal Bank has 24x7 SLA with synergy for its SUN equipment)
Solved many issues of SUN v120 and V210 machines of Faysal Bank. Including Data backups and restores hardware upgrades etc.
Installed patches to solve many issues for Solaris 8,9,10.
SUN Warranty Cases
Solved SUN warranty cases for many machines including T2000, V890, v880.
(November 2005 – October 2008)
Habib Rafiq International Lahore (ISP) . http://www.hri.net.pk
Designation: Systems Engineer and Incharge Network Operations Center Lahore
Job Description
Company provides xDSL, Wireless services in many cities of Pakistan with Lahore as central Network Operations Centre. My role was to lead a team of 5 network/system engineers.
Tasks completed
Networks
Enabled NetFlow on border router and used customized “flow-tools” as flow collector to create every five minutes traffic reports to detect bottlenecks in network.
Implemented 802.1Q VLAN trunking among Catalyst 3550, 2950, alteon and Cisco routers to distinguish VLANS.
Installation of 720X series VXR routers in different cities.
Installation of Cisco Content Engine 5xx series with WCCP v2.
Configured new leased lines on PPP, HDLC, Inter country VPNs on Cisco routers in many cities.
Broadband expansion on Paradyne DSLAMS connecting with ATM Switches, E-1 IMA cards. Created ATM IMA groups and subtended DSLAMS.
Shifted Mail servers from MS Exchange to Fedora and FreeBSD using combination of Qmail+Vpopmail+Mysql+Spamassassin+Clamav+CourierIMAP+SquirrelMail+Maildrop for many virtual domains. Used RAID Level 5 on Compaq machine.
To remove Spam, created many levels to either delete or dump in separate spam folder by using Maildrop customized scripts.
To reduce spam filtering load on mailservers implemented grey listing using openbsd’s spamd on FreeBSD.
For E-mail relaying and secondary MX of corporate clients installed a separate mailserver running sendmail, used perl scripts to implement relaying quota to avoid over-queuing.
To release IP pools of ISP from different RBLs created proper reverse lookups of all zones to declare the status of ip pools either dynamic or static. Also created proper PTR/SPF records for mailservers of corporate clients.
Billing/Databases
Installation of Billing System on linux with oracle 9i+Radiator+ApacheJserv+Java based billing system. Used RAID Level 1 on Compaq machines.
Mysql Replication
Graphing/Monitoring
Shifted MRTG+PHP+MySQL based software from windows to FreeBSD. Which is in use to graph bandwidth usage of all broadband clients from different cities on different machines. Used RAID Level 1 on Compaq servers.
Installation of Nagios on FreeBSD for monitoring all services of servers and Cisco routers, ATM switches E-1s and to generate e-mail/cellular alerts.
Installed smoke Ping to graph latency on different Internet Circuits.
Installation of Alacatel NMS for managing Alcatel DSLAMs on Solaris.
DNS
Multi-threaded Name Servers on FreeBSD and Solaris using Bind9. To prevent DOS attack used perl scripts and implemented ACLs in bind.
Implemented Master/Slave relationship between DNS servers.
Backups
Backup Server to take all necessary backups of databases (oracle and mysql), configuration files automatically using NFS and rsync.
Used Expect (language) scripts to take automatic backups of devices configuration files on ftp/tftp.
Web Caching
Multi-threaded Squid on Linux using aufs and on FreeBSd using diskd storage scheme for heavy load. Tuning of various kernel TCP attributes for optimal performance.
ICP between Squid web-caches for bandwidth savings in some congested cities.
Different type of Refresh patterns in squid and Cisco content Engine for CIR or shared clients.
Other
Filters on all linux, BSD, Solaris machines using iptables, ipfw, ipf, pf.
Schedule updates of base systsem and ports collection on all FreeBSD machines using CVS-UP.
Compiled kernels of Linux and FreeBSD for SMP and large RAM support and for many other options.
(December 2004 - June 2005)
Network and System Engineer in Nexlinx (ISP) Lahore. http://www.nexlinx.net.pk
Description
Company provides Dialup, ISDN, xDSL, Wireless services in Lahore and Faislabad cities.
Services For Company
Deployment of UE-Imas DSLAMs for ADSL using OC-3, E-3, E1 cards.
RFC1483 Bridged/PPPOE/IPOA network services in Redback SMS using OC-3, E-3 modules.
IMA Groups between ASC ATM switch and UE-IMAS for load balancing among multiple E-1s.
Discovered bugs in IMAS OS then Downgraded/Upgraded many UE-Imas DSLAMs OS for ADSL bandwidth limiting support and other problems.
Bandwidth limitation on Redback SMS for DSL clients using vendor specific
radius attributes.
Web interface for technical support team to check status of dsl modem
and synchronized upstream/downstream by entering just login ID based on
apache+snmp+mysql+perl(CGI.pm).
Replacement of CopperEdge CE200 DSLAMs with UE-IMAS DSLAMs (end to end ATM) without disturbing existing bridge mode clients and still providing pppoe.
Tuning Squid, Bind services for optimal performance on Linux and Solaris.
Syn Flood protection for CacheFLow webcaches using alteon switch.
PPPOE services for wireless clients.
Unix based virtual web hosting services using Apache+mysql+php+phpmyadmin+proftpd
Filters on Cisco routers, Redback, Alteon, Extreme switches and individual linux/unix
machines to implement security from access side and WAN. Also blocked all spoofing
from access side
Graphing of ATM devices including ATM switch, DSLAMs and other devices like
CacheFlow webcaches by using snmp+rrdtool/mrtg.
Routine shell and Perl scripting for Linux machines.
Routine troubleshooting of BGP, ADSL, Dialup clients and bandwidth management for all kind of services.
Systems Administrator in Fusion Communications pvt Ltd Lahore
(November 2003 – June 2005) http://www.fuscom.net
Description
Company provides Internet services on Ethernet Cards to home users in model town area.
Services For Company
Configuration of Squid, Bind, MRTG, Ntop on Linux and FreeBSD.
Utilization of low bandwidth efficiently by using refresh patterns in squid, CBQ, Filtering Flooding Ports.
Installation of PPPoE server on FreeBSD.
Small billing system using FreeRadius radius server and MySQL.
Filtering and NAT using iptables/ipfw/PF.
Contact this candidate