Post Job Free
Sign in

network engineer

Location:
San Antonio, TX
Posted:
March 03, 2017

Contact this candidate

Resume:

B. Sagar

732-***-****

acy3tr@r.postjobfree.com

Summary:

Over 8+ years of experience in networking, installing, configuring and maintaining network devices.

Implementing IP addressing schemes, LAN/WAN protocols, IP Services, to fulfill network requisites in different environments.

Hands on experience in configuring Cisco Catalyst 2960, 3750, 4500, 6500 series switch and Cisco 2600, 2800, 3600, 3800, 7200, 7600 series routers.

Comprehensive expertise in the implementation of optimization, analysis, troubleshooting and documentation of LAN/WAN networking systems.

Proficient in Configuring Virtual Local Area Networks (VLANS) using Cisco routers and multi-layer Switches and supporting STP, RSTP, PVST, RPVST along with trouble shooting of inter-VLAN routing and VLAN Trunking using 802.1Q.

Worked on Extensively on Cisco Firewalls Cisco PIX (506E/515E/525/) & ASA 5500(5510/5540) Series.

Implemented redundancy with HSRP, VRRP, GLBP, Ether channel technology (LACP, PAgP) etc.

Implemented traffic filters using Standard and Extended access-lists, Distribute-Lists, Route Maps and route manipulation using Offset-list.

Hands on in deployment of GRE tunneling, SSL, Site-Site IPSEC VPN and DMVPN.

Managed inventory of all network hardware, Management and Monitoring by use of SSH, Syslog, SNMP, NTP.

Juniper SRX Firewall Security Engineer with over four year’s experience in WAN/MAN/LAN/WLAN Networks in Multi-Vendor Firewall Technologies (Juniper/Cisco).

Strong experience on Juniper SSG series Firewalls and Checkpoint R75, 76 Firewalls.

Configuring RIP, OSPF and Static routing on Juniper M and MX series Routers

Experience with F5 load balancers - LTM, GTM series like 6400, 6800, 5000 ad 2000 for the corporate applications and their availability.

Expertise in OSI layer model/TCP/IP.

Well versed and experienced in routing and switching protocols RIP, OSPF, EIGRP, BGP and VLAN.

Exposed to handling and troubleshooting issues on NAT.

Working knowledge on configuring access lists. Troubleshooting DNS/DHCP issues within the LAN network.

Expertise in IP subnetting and worked on various designing and allocating various classes of IP address to the domain.

Involved in troubleshooting network traffic and its diagnosis using tools like ping, traceroute, Wireshark, TCPdump and Linux operating system servers.

Sound knowledge of Routing and Switching concepts and MPLS design.

Proficient in Cisco IOS for configuration & troubleshooting of routing protocols: MP-BGP, OSPF, LDP, EIGRP, RIP, BGP v4, MPLS

Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500/PIX security appliance, Failover DMZ zoning & configuring VLANs/routing/NATing with the firewalls as per the design.

In-depth knowledge and hands-on experience in Tier II ISP Routing Policies, Network Architecture, IP Subnetting, VLSM, TCP/IP, NAT, DHCP, DNS, FT1 / T1 / FT3 / T3 Sonet POS OCX / GigE circuits, Firewalls.

Configured and deployed QOS and defined class of service (COS) WRED and WFQ for bandwidth management.

Primary responsibility is to design and deploy various network security & High Availability products lick Cisco ASA other security products

Technical Skills:

Cisco Routers : 2600, 2900, 3600, 3800, 7200 and 7600

Cisco L2 & L3 Switches : 2900, 3560, 3750, 4500, 4900, and 6500

LAN Technologies : Ethernet, Fast Ethernet, and Gigabit Ethernet, SMTP, VLAN, Inter-

VLAN Routing, VTP, STP, RSTP, Light weight access point, WLC.

WAN Technologies : Frame Relay, PPP, HDLC, (E1/T1/E3T3), DS3, OC192.

Network Security : Cisco ASA, ACL, IPSEC.

OS products/Services : DNS, DHCP, Windows (2000/2003/2008, XP), UNIX, LINUX.

Routing Protocols : IP v1/v2, OSPF, EIGRP, BGP, PBR, Route Filtering, Redistribution,

Summarization, and Static Routing.

Gateway Load Balancing : HSRP, VRRP, GLBP

Various Features / Services : IOS and Features, IRDP, NAT, SNMP, SYSLOG, NTP, DHCP, CDP,

TFTP and FTP.

Network Management Tools : Wireshark, Netflow Analyzer, Cisco Works, Ethereal, SNMP, HP open

View.

Security Server Protocols : TACACS+, RADIUS

Facilities : DS0, DS1, DS3, OCX, T1/T3

Load Balancers : Cisco CSM, F5 Networks (Big-IP) LTM 8900, Cisco ACE 4710.

Operating Systems : Windows (98, ME, 2000, XP, Server 2003/2008, Vista,

Windows 7), Linux, UNIX, WINTEL

Firewall & Security : Checkpoint, Cisco ASA, Palo Alto, Juniper SRX

Cloud Technologies : Microsoft Azure, Open Stack

PROFESSIONAL EXPERIENCE

Western Union Jan 2016 to till Date

Washington, DC

Sr. Network Engineer

Responsibilities:

Configuring Static, IGRP, EIGRP, and OSPF Routing Protocols on Cisco 1600, 2600, 2800, 3600, 7300 series Routers.

Configured Site to Site IPsec VPN tunnels to peer with different clients and each of client having different specifications of Phase 1 and Phase 2 policies using Cisco ASA 5500 series firewalls.

Configured Easy VPN server and SSL VPN to facilitate various employees’ access internal servers and resources with access restrictions

Responsible for entire company network infrastructure that includes Cisco Switches, Routers, Firewalls, Access Points, Servers and PBX.

Configured VLAN’s, Private VLAN’s.

Design, and configuring of OSPF, BGP on Juniper Routers and SRX Firewalls

Subject Matter Expert for juniper Routing, Switching, Security, and VPN Systems

Implementation of Site-to-Site VPNs over the internet using 3DES, AES/AES-256 with ASA Firewalls

Configure various LAN switches such as CISCO CAT 2900, 3550, 4500, 6509 switches and Access layer switches such as Cisco 4510, 4948, 4507 switches for VLAN, Fast Ether Channel configuration.

Performed initial setup VDC, VPC Nexus 2000 and 5000 configurations for legacy network migration to NG.

Designed and Implemented Firewalls, F5 Viprion deployments to Front end and DMZ customers

Measure the application performances across the MPLS cloud through various routing and switching methods.

Configured inside ACL, outside ACL, inside, outside interfaces.

Configured NAT and PAT policies.

Configuration and troubleshooting of EIGRP, OSPF, BGP.

Configuration and troubleshooting of CSM, integration with ASA devices.

Experience in migration of VLANS & Configured VLANs with 802.1q tagging, Ether channels, and Spanning tree for creating Access/distribution and core layer switching.

Installed and configured DNS, DHCP. Responsible for creating and configuring FORWARD LOOKUP ZONE AND REVERSE LOOKUP ZONE

Experienced with VSS, VPC, Nexus7000.

Redistributed required routes from OSPF in to BGP. OSPF cloud is present in US and is connected to all our customers over Sprint’s Frame Relay backbone

Managed Plan of Record with PLMs/SE/Sales/Marketing and followed up and monitor product lines of Juniper routing/switching/security portfolio (MX, PTX, EX, SRX)

Proficient with F5 LTM and Cisco CSM load balancer in-between the servers inside the server farm and DMZ.

Proactively defend and investigate threats with tactical intelligence from FireEye.

Implementation of Access Lists for allowing/blocking desired traffic.

Configured EBGP load balancing and ensured stability of BGP peering interfaces

Implemented site to site VPN in Juniper SRX as per customer Worked on Route-Reflectors to troubleshoot BGP issues related to customer route prefixes also route filtering using Route-maps.

Designed and implemented DMZ for Web servers, Mail servers & FTP Servers using Cisco ASA5500 Firewalls.

Managing and configuring 4 juniper SSL VPN appliances (SA-4500 & 4000) for TSNA and ATS customers

Responsible for Cisco ASA and PaloAlto configuration and administration across global networks

Design Data Center, layer 2 and 3 configuration & administration of firewall (Cisco ASA, Palo Alto, Dell Sonicwall, WatchGuard).

Configured EBGP load balancing and ensured stability of BGP peering interfaces

Good knowledge of CISCO NEXUS data center infrastructure with 5000 and 7000 series switches includes (5548, 7010) including CISCO NEXUS Fabric Extender (223, 2248)

Hands-on Experience with CISCO Nexus 9000, Nexus 7000, Nexus 5000, and Nexus 2000 platforms.

Experience with configuring Nexus 2000 Fabric Extender (FEX), which acts as a remote line card (module) for the Nexus 5000.

Implemented site to site VPN in Juniper SRX as per customer Worked on Route-Reflectors to troubleshoot BGP issues related to customer route prefixes also route filtering using Route-maps.

Designed and implemented DMZ for Web servers, Mail servers & FTP Servers using Cisco ASA5500 Firewalls.

Managing and configuring 4 juniper SSL VPN appliances (SA-4500 & 4000) for TSNA and ATS customers

Deployed BIG IP Enterprise manager to cluster all the F5 LTM, GTM, ASA, Netscreen devices for easier management and common configurations.

Involved in migration of F5 Local traffic managers of LTM 5100 series to LTM 6800 series for higher.

Deployed BIG IP Enterprise manager to cluster all the F5 LTM, GTM, ASA, Netscreen devices for easier management and common configurations.

Involved in migration of F5 Local traffic managers of LTM 5100 series to LTM 6800 series for higher.

Provides deployment flexibility with an all-in-one hardware appliance or FireEye-hosted Cloud MVX option.

Extensive use of NSM (Network and Security Manager) and CSM (Cisco Security Manager) for adding or modifying firewall policies for the firewalls in use.

Worked extensively on Cisco ASA 5500(5510/5540) Series, experience with convert PIX rules over to the Cisco ASA solution.

Worked on migration of existing PIX firewall to ASA firewall, PIX OS upgrade from 6.3 to 7.0.

Implemented F5 hardware refresh of older 3600 hardware to Viprion.

Design and Implement DMZ for FTP, Web and Mail Servers with CISCO PIX 506, PIX515

Worked extensively on Cisco ASA 5500(5510/5540) Series, experience with convert PIX rules over to the Cisco ASA solution.

Building the VPN tunnel and VPN encryption.

Mapped, Network Diagrams and physical identification in MS Visio.

Preformed IOS upgrades on cisco routers and switches

Worked with engineering team to resolve tickets and troubleshoot L3/L2 problems efficiently.

Configured Cisco 2800, 3800 routers and 3750, 4500, 6500 switches as part of the implementation plan.

Environment: Cisco2948/3560/4500/3560/3750/3550/3500/2960 6500 switches and Cisco 3640/1200/7200/3845/3600/2800 routers, Cisco ASA 500, Checkpoint, windows server 2003/2008: F5 BIGIP LTM, RIP, OSPF, BGP, EIGRP, LAN, WAN, VPN, HSRP

Gap Oct 2014 to Dec 2015

Pleasanton, CA

Network Engineer

Responsibilities:

Troubleshooting the TCP/IP networks for connectivity, outages and slow network issues and recommended appropriate and cost-effective solutions for the congestion.

Cisco 356*-****-**** switches, Cisco 650*-****-**** series Layer 3 switches, Cisco 382*-****-**** series routers, Cisco Pix firewall 500 series and Wireless Access points Cisco 1230.

Worked on F5 BIG-IP LTM 8900, configured profiles, provided and ensured high availability.

Worked on F5 and CSM load balancers deploying many load balancing techniques with multiple components for efficient performance.

Provided 47 F5 maintenances for Viprion Blade replacements and Code upgrades.

Create tickets for cloud database servers using Maxima Cloud and MS. Leigh tools

Responsible for deploying various network security & High Availability in Checkpoint Firewall

Configuring routing protocols OSPF, EIGRP, RIP, MPBGP, LDP and BGP V4

Managing security with 2 Juniper Netscreen Security Managers (NSM)

Installation & Maintenance of Juniper switches routers &firewalls Configuring HSRP between VLANs, Configuring Ether-Channels, Port Channel on 6500 catalyst

Implemented cluster and configuration of SRX-100 Juniper firewall.

Implemented cluster and configuration of SRX-110 Juniper firewall.

FireEye Network Security Essentials automates validation of IPS alerts, minimizing the manual evaluation needed to filter false positives.

Experience in Layer 3 routing - Cisco Routers: 2500, 2600, 3600, 3800, 3900, 7200 series, ASR 9000, 9001, 9006 series

In-depth knowledge of Cisco ASA and Juniper Netscreen Firewall security, spanning-tree, vlans, TCP/IP, RIP, OSPF, QOS, VRRP and VPN technologies.

5K, Cisco Nexus 7K, Cisco VPC, Cisco LACP, Nexus 1000v, Cisco Fabric Path, VLANs & Trunking, F5 LTM: SNAT/

Worked on F5 BIG-IP LTM 8900, configured profiles, provided and ensured high availability.

Provides Level-3 incident response and problem management support for IP Telephony platforms, interfacing with other key Corporate IT teams, such as LAN, WAN, Security and/or IT Service Center

Vendors Network connectivity investigation, Creating Firewall Rule Change Requests mostly in

Cisco ASA to PaloAlto firewalls

Responsible for performing predictive wireless designs/site surveys with Airmagnet Planner (Cisco 3500/3600/3700/Aruba 105 access points) and conducting physical Wireless site surveys with Airmagnet Survey.

Worked on F5 and CSM load balancers deploying many load balancing techniques with multiple components for efficient performance.

Configuration and maintenance of routers, firewalls, and load-balancers. Included configuration of Juniper ISG 2000, Juniper EX4200, F5 BIG-IP 3600, and Cisco 6500. Includes protocols such as MPLS, BGP, OSPF, and VRRP.

Also worked with Cisco ASA's 5505 and 5520, 5512X, 5515X.

Developed and implemented core network consolidation plan. Included redundant configuration of Juniper EX8200.

Racking, Stacking, configuring, Nexus 5K, 7K and 9K, Static pinning fabric interface connection, PortChannel fabric interface connection, configuring a Fabric PortChannel Created Build-Outs of New Safe Zone in Palo Alto Panorama VLANS, VIP, IP, VRF, BGP.

Worked on F5 BIG-IP LTM 8900, configured profiles, provided and ensured high availability.

Worked on F5 and CSM load balancers deploying many load balancing techniques with multiple components for efficient performance.

Build Logical design and Implementation of Wireless Solution

Worked on F5 LTM, GTM series like 6400, 6800, 8800 and Radware for the corporate applications and their availability

Involved in Migration of SSG firewalls to Juniper SRX firewalls, as well as experience working directly with customer in a service/support environment.

Experience with convert Checkpoint VPN rules over to the Cisco ASA solution. Migration with Checkpoint and Cisco ASA VPN experience

Responsible for Cisco ASA firewall administration across our global networks

Experience with migration Hybrid based Cisco CatOS and Native Cisco IOS on 6500 switches.

Configured various BGP attributes such as Local Preference, MED, Extended Communities, Route-Reflector clusters, Route-maps and route policy implementation.

Actively participated in upgrading fast Ethernet, Layer 3 switched/routed LAN infrastructure from Cisco 3640 to Cisco 2811 ISR routers and switches at access level to 2950, 3550.

Converting CatOS to Cisco IOS Config Conversion on distribution layer switches

Configured various Router interfaces like ATM interface, T3 & Channelized T1 interfaces

Configuring and troubleshooting CISCO catalyst 6509, 7609, 7613 with Supervisor cards, Cisco 3640, Cisco GSR 12416, 21418(with PRP and RPR processors)

Configuring and implementing F5 BIG-IP, LTM, GTM load balancers to maintain global and local traffic.

Environment: Cisco 3560/2950/2924/6509/6513/5500 switches, Cisco 3825/3640/7200 routers, VPN, BGP, OSPF, RIP, EIGRP, F5 BIG-IP, LTM, GTM, VLAN, VTP, and Checkpoint.

Barclays, Nov 2013 to Sep 2014

Wilmington, DE

Network Engineer

Responsibilities:

Involved in the configuration & troubleshooting of routing protocols: MP-BGP, OSPF, LDP, EIGRP, RIP, BGP v4. Configured IP access filter policies. Cisco CLI, Cisco works, Network Security, Network Analysis Tools

Experience with Checkpoint Firewall policy provisioning.

Identify, design and implement flexible, responsive, and secure technology services.

Troubleshoot traffic passing managed firewalls via logs and packet captures.

Configured and resolved various OSPF issues in an OSPF multi area environment.

Hands-on experience with WAN (ATM/Frame Relay), Routers, Switches, TCP/IP, Routing Protocols (BGP/OSPF), and IP addressing.

Layer 2 switching technology architecture, implementation and operations including L2 and L3 switching and related functionality. This includes the use of VLANS, STP, VTP and their functions as they relate to networking infrastructure requirements including internal and external treatment, configuration and security.

Integration and implementation of Cisco ISE with Trustsec and Cisco ASA/Sourcefire/fireSIGHT for endpoints and networks.

Configure VDC and VPC on Nexus 7010 and Nexus 5596.

Along with other Network Engineers participated in the management and configuration of Cisco ASA, Juniper and Palo Alto Firewalls, ACL’s, and Packet Shaping devices and rules

Improve perimeter security by configuring Palo Alto firewall devices application level security.

Measure the application performances across the MPLS cloud through various routing and switching methods.

Upgrading Cisco ISE appliances company wide. Recently rolled out OpenDNS including onsite VM appliances.

Implemented Netscaler VPX to replace Citrix Secure Gateway.

Configured inside ACL, outside ACL, inside, outside interfaces.

Configured NAT and PAT policies.

Configuration and troubleshooting of EIGRP, OSPF, BGP.

Configuration and troubleshooting of CSM, integration with ASA devices.

Configuration and troubleshooting of Cisco catalyst 6509, 7613 with supervisor cards.

Estimated Project costs and created documentation for project funding approvals.

Managed various teams involved in site surveys, cabling specifications, Network equipment installation and configuration.

Planned resources and presented project status to higher management.

Deployed 7613 as PE and CE router and configured and troubleshooted the Edge Routers.

Excellent troubleshooting knowledge on T1, T3, OC-3 and OC-12.

Created and delivered internal trainings for BGP.

Configured egress and ingress queues for ISP facing routers using CBWFQ.

Generating RCA (Root Cause Analysis) for critical issues of layer1/layer2/layer3 problems.

Ability to analyze, configure and troubleshoot networks.

Responsible for service request tickets generated by the helpdesk in all phases such as troubleshooting, maintenance, upgrades, patches and fixes with all around technical support

Supporting EIGRP and BGP based PwC network by resolving level 2 &3 problems of internal teams & external customers of all locations.

Environment: Net Flow, TACACS, EIGRP, RIP, OSPF, BGP, VPN, MPLS, CSM, SUP720, Ether Channels, Cisco 7200/3845/3600/2800 routers, Fluke and Sniffer, Cisco 6509/ 3750/3550/3500/2950 switches, Checkpoint firewalls(SPLAT).

Savari Networks, Bangalore-India Jul 2010 to Sep 2013

Network Engineer

Responsibilities:

Connected switches using trunk links and Ether Channel.

Converted networks with multiple routing protocols RIP, IGRP, EIGRP into a single OSPF domain, thus providing for future network scalability.

Design and implementation of the LAN IP infrastructure using Layer 2 / Layer 3 switching, STP, Gigabit Ethernet and Trunking / channeling technologies.

Responsible for maintenance and utilization of VLANs, Spanning-tree, HSRP, VTP of the switched multi-layer backbone with catalyst switches.

Implemented redundant Load balancing technique with Internet applications for switches and routers.

Documenting and Log analyzing the Cisco ASA 5500 series firewalls

Configuring of IP Allocation and sub netting for all applications and servers and other needs throughout company using FLSM, VLSM addressing.

Support Network Technicians as they require training & support for problem resolution including performing diagnostics, & configuring network devices

Used Network Monitoring tool to manage, monitor and troubleshoot the network.

Worked on FTP, HTTP, DNS, DHCP servers in windows server-client environment with resource allocation to desired Virtual LANs of network

Configured Cisco IOS Feature Set, NAT and Simple Network Management Protocol (SNMP) for Network Security implementation.

Experience in HSRP standby troubleshooting & Experience in configuring & upgrading of Cisco IOS

Received inbound calls of technical nature, independently resolved customer complaints, concerns and inquiries regarding their Internet connection.

Troubleshoot a wide range of technical support issues and connectivity problems such as authentication, connection speed, e-mail configuration, and loss of synchronization.

Experience in new employee mentoring, training and coaching.

QLAB Technologies, Bangalore-India Jul 2008 to Jun 2010

Jr Network Engineer

Responsibilities:

Involved setting up the TFTP server for backing up the IOS images and configuration files of Cisco Routers and Switches and troubleshooting the file servers.

Responsible for network evaluations, troubleshooting a variety of network problems, and implementing various software and hardware upgrades efficient performance.

Troubleshoot Cisco hardware: Inspected devices, read device LEDs, loose connections, cards, dirty devices, interior IOS upgrade, switch configuration usage of Visual Switch Manager, switch port configuration, port monitoring. Watch over Flooding Control/Network port.

Designed IP addressing schemes, VLAN’s, subnetting and Trunking to meet requirements.

Preformed installation, cabling and cable testing.

Setup Access list and configured Firewall.

Performed switching technology administration including VLANs, inter-VLAN routing, Trunking, STP, RSTP, port aggregation & link negotiation.

Designed and implemented IT security policies and networked backup systems.

Documented and maintained technical diagrams, documented logical and physical topology, and other IT procedures.

Reviewed, approved, procured various IT hardware and software products to fulfill strategic and operational needs of various departments.

Worked with management and various departments to develop procedures and troubleshoot problems as they arose.

Worked on Cisco router 3700, 2600 and Switches 2950.

Certification:

Cisco Certified Network Associate (CCNA)

Cisco Certified Network Professional (CCNP)

Education

Bachelors in Electrical & Electronics Engineering



Contact this candidate