Ashish Bhosale

ashish.network10@gmail.com
325-261-3640
PROFESSIONAL SUMMARY:

 Networking Professional with 6+ years of Experience computer networking and Network/ Cyber Security
understanding of Design, Implementation, Administration, Operational and troubleshooting of enterprise data
networks.
 Proficient hands on experience in configuration Cisco Catalyst 2900, 2960, 3560, 3750, 4500, 4900, 6500 series
switches, troubleshooting and monitoring Cisco PIX ASA Firewalls, Routers and Palo Alto Firewalls.
 Strong hands-on experience on Palo Alto (5060, 3060), Checkpoint Firewall R77, juniper and Cisco ASA 5585 firewall.
 Configuration and troubleshooting of Cisco 2500, 2600, 3000, 6500, 7500, 7200, ASR 1002Series routers.
 Configuring Multiprotocol Label Switch-Traffic Engineering (MPLS-TE) on a Cisco ASR 9K Series route.
 Well versed with AAA configuration using TACACS+ & RADIUS server.
 Implemented security policies using ACL, Firewall, IPSEC, SSL, VPN, IPS/IDS, AAA (TACACS+& RADIUS)
 Working on Load balancer F5 LTM, GTM series like 6400, 6800, 8800 for the corporate applications and their
availability.
 In-depth understanding of UDP and TCP protocols.
 Strong understanding of current and future technologies including TCP/IP, IPv4/v6, RIP, EIGRP, OSPF, BGP, Frame
Relay, ACL, VPN, Wireless LAN and configuration of VLANs.
 Extensively exposed to troubleshooting, maintaining devices and Migration technology.
 Migration of firewall rules from Cisco ASA, Checkpoint to Palo Alto firewalls using migration tool from PAN.
 Responsible for setting up the infrastructure environment with majority of Cisco & Palo Alto appliances apart from
various other equipment.
 Expertise in OSI layer model/TCP/IP.
 Working extensively on Data Center Palo Alto firewalls and F5 BIG-IP LTM.
 Design and Implementation of LAN, WAN, VLANs, VTP, Spanning Tree (STP), Trunking and Ether channel.
 Designed and configured the commands for QoS and Access lists for Nexus 9K, 7K and 5K.
 Knowledge and Experience in Configuring, and troubleshooting, Cisco Meraki and Cisco ISE.
 Proficiency in configuration of VLAN setup on various Cisco Routers and Switches.
 Experience in monitoring and analyzing the load balancing of network traffic using Wireshark and Solar Winds,
NMAP, Ethereal, Turin Secure Track and Splunk.
 Experience in physical infrastructure like structured cabling, IP address management, Racking, Stacking, UCS
management Experience in F5, Cisco ACE 4710 Load balancers.
 Supporting LAN, WAN, MAN and WLAN Networks 
 Extensive experience with HSRP, VPCs, VDCs, VSS, VLSM, NAT, VLANs, and Spanning-Tree Protocol.
 Designing and implementing F5 BIG-IP load balancer and MPLS/VPN service for various customers.
 Working Knowledge and Implementation of Cloud Management: Cisco Meraki (MR33)
 Installing, configuring and troubleshooting DNS and DHCP servers.
 VOIP Platform & Codecs UC500 series, Cisco IP Phones, FXO/FXS, CME, CUBE and CUE. G.711 and G.729 Codecs.
 Active Participation in the Installation of Cisco UCCE devices and servers.
 Extensively worked on different flow feeds like Cisco Netflow and Juniper Jflow.
 Advanced proficiency with Cisco Wireless (APs, Controllers, ISE, and Prime).
 Worked on ASR 1000 series routers.
 Experience in deploying Wireless controllers, Wireless access points and Wireless Sniffers.
 Installing, configuring and troubleshooting DNS and DHCP servers.
 Experience on LAN networking, TCP/IP model, IP addressing and sub netting. 
 Experience in configuring and Troubleshooting BIG-IP F-5 load balancer LTM.
 Experience with firewall Administration, Rule Analysis and Rule Modification.
 Strong knowledge on migration of DDoS attacks, IPsec & SSL implementation on Cisco and Palo Alto firewalls.
 Worked with Cisco Nexus, Catalyst and Aruba wireless devices
 Responsible for check point and Cisco ASA firewall administration across global networks.
 Experience with Cisco IOS, cat OS, Cisco IOS XR.
 Expert level knowledge in IP Routing and WAN protocols (BGP, EIGRP, OSPF, ISIS).
 Configuring and maintaining vCenter VMware (vSwitch, dvSwitch, host & cluster and datastore).
 Hands-on expertise with routers 2600, 2900, 3600, 3900, 7200, 7600, ASR-901, ASR-903, ASR 5500, ASR-9010 and
Juniper ACX, E, M, MX960 series.
 Working knowledge in VLAN, VTP, Inter VLAN Routing, STP, OSI Model, TCP/IP, DHCP, HSRP, NAT, ACL
 Done troubleshooting of TCP/IP problems and connectivity issues in multi-protocol Ethernet environment.
  Experience Configuring Virtual Device Context in Nexus 7k, 5k and 2k.
 Experience in installation and analysis for a broad range of LAN/WAN/MAN communication system. 
 Good troubleshooting skills in TCP/IP networks along with protocols like BGP and OSPF. 
 Extensive Knowledge in configuring and troubleshooting Layer 3 interior Gateway Routing protocols such as Link-
State routing protocols (OSPF and IS-IS) and Distance Vector routing protocols (RIPv1, RIPv2 and EIGRP).
 In depth knowledge with network monitoring and performance tools such as Solar winds and Wireshark
 Experience in Web Application Firewall, OWASP top 10 vulnerabilities, Identity Access Management using SailPoint,
Single Sign on (SSO) with AD, Azure, O365, AWS, integration with apps and configuration and JavaScript, Python,
HTML, Java coding and scripting experience
 Experience in implementing site-to-site and remote access VPN Technologies using GRE, IPSEC, Remote Access VPN,
DMVPN tunnels. 

CERTIFICATIONS:

 Palo Alto Networks Certified Network Security Engineer (PCNSE)

 Cisco Certified Internetwork Expert (CCIE) Security (Written)
 Cisco Certified Network Associate (CCNA) Collaboration- Implementing Cisco Collaboration Devices v 1.0
 Cisco Certified Network Associate (CCNA) Security
 Cisco Certified Network Associate (CCNA) Routing and Switching
 Cisco Certified Network Professional (CCNP) Routing and Switching
 Palo Alto ACE (PAN OS 8.0)
 Online Certifications in Python 3.0, Java for network programming

TECHNICAL SKILLS:

Cisco Routers 2600, 2900, 3600, 3800, 7200, 7600, 3925, 3810, 2800 Series and ASR 3K, 7K.
Cisco Switches Catalyst 6500, 4510, 4500-x, 3800, 3750x, 3550, 2960s & Nexus 2k, 5k, 7k’s.
LAN Technologist Ethernet, Fast Ethernet, Gigabit Ethernet, VTP, SMTP, VLAN, Inter-VLAN Routing, STP, RSTP,
Dot1q, HSRP, DHCP, GLBP, VRRP Light weight access point, WLC.
WAN Technologies Frame Relay, PPP, HDLC, MPLS, T1, T3, OC Standard.
Firewalls Cisco ASA 5500 Series, Checkpoint, Palo Alto, Juniper SRX, Juniper Secure Access VPN
Appliance, Cisco PIX, Fortigate 40c.
NEXUS Features VDC, VPC, FEX, OTV, F&M series line cards
IP Routing Protocols MP-BGP, EIBGP, EBGP, OSPF, EIGRP, RIP v1 & v2, Route redistribution, Route filtering,
Summarization, Static route.
MPLS LDP/TDP, MPLS VPN, RSVP, VRF, MPLS- QoS.
Wireless/Voice Cisco WLC, IEEE 802.1x and 802.11, WLAN, WAP, AP, SSID, LWAPP, VoIP/SIP, CUCM, UCCM,
Technologies UCCX, MGCP, RTP, PoE, CCK, DSSS.
Load Balancing F5 BIG-IP: 6400, 6800, 8800 with LTM, GTM, ASM, APM, Access Gateway, Secure Gateway.
VoIP Call Manager, Call Manager Express, SIP Trunking.
Network Monitoring Tools Cisco Works, Solarwinds, Cisco WAN Manager, Wireshark, Infoblox.
Applications Cisco packet tracer, GNS 3, Active Directory, Cisco IOS, Junos, Cisco prime Infrastructure,
Cisco UCS, Microsoft Office, PowerPoint, and Excel 2013-2016.
Services Done Configuration for VLANs, STP, SNMP, ELRP, DMZ and Redundancy protocol (HSRP and
VRRP).
Other Technologies VMware, Mat Lab, VISIO, Oracle DBMS, Microsoft word, Excel.
Security Technologies ASA 5550/5540 Firewalls, Juniper SRX Firewall, Palo Alto firewall PA200, PA500, PA3000,
Access Control Lists, IPsec IDS, and IPS, Juniper SRX210, SRX240 Ex4200 EX4300, QFX5100,
Cisco ISE, SailPoint IAM, TACACS+/RADIUS, Citrix

PROFESSIONAL EXPERIENCE:

Client: Aramco Services Company , Houston TX July 2018 – TILL DATE

Sr. Network Engineer

Responsibilities:
 Configuring, Maintaining the Routers and Switches and Implementation of Static, EIGRP, OSPF, BGP routing protocols
and troubleshooting Remote infrastructure management of offices in different locations nationwide.
  Responsible for Cisco ASA firewall administration across our global networks.
 Migration of existing IPSEC VPN tunnels from one Data Center to another Data Center, due to decommissioning of
existing Data Center, which involved working with Partner Companies.
 Working with High performance data center switch like Nexus 7000 series.
 Working extensively with Nexus 7000, 5000, 2000, Cisco 6500 series multilayer switches, Cisco 2960s series switches
and Cisco 3560/3750s switches.
 Working with migration from 6500 series devices to 4500 Series switches in Campus deployments at Core,
Distribution and Access Layers.
 Involved in design and configuring Overlay Transport Virtualization (OTV) on Cisco NX-OS devices like Nexus 7000.
 Designing, Implementing and Troubleshooting Cisco 3750, 3550, 3560, 2924, 6509-V-E, 6513, 6504, 6503, 6506, 6500
series switches, GSR, ASR routers with Cisco IOS and IOS-XR.
 Working on Layer 2 protocols such as STP, VTP, RSTP, PVSTP+, MST and other VLAN
 Configure various BGP attributes such as Local Preference, as prepend, Next-hop, Community, Extended community
using route-map.
 Generating RCA (Root Cause Analysis) for critical issues of layer1/layer2/layer3 problems.
 Deploying Layer 2 security in Server Farms by configuring switch for 802.1x port-based authentication.
 Actively involved in switching technology Administration including creating and managing VLANS, Port security -
802.1x, Trunking 802.1Q, RPVST+, Inter-VLAN routing, and LAN security on Cisco Catalyst Switches 4507R+E, 6509-
E and Cisco Nexus Switches 2232, 5596, 7009.
 Responsible for designing and configuring Intrusion Prevention Signatures.
 Prepared proposal documentation and information to meet customer requirements when required.
 A strong, deep understanding of the dynamic and evolving threat landscape is required to diagnose and solve complex
technical issues related to threat mitigation and response.
 Technical resource for all threat related products and features of the Palo Alto Networks product line.
 Collaborate with engineering and product management to resolve product defect issues in a timely manner.
 Initialize familiarization with the management of Palo Alto Next Generation Firewalls as well as F5 load balancers.
 Administered security and NAT policies, fulfilling project requirements on Palo Alto 3050 & 5050 next-generation
firewalls using PAN-OS 6.1. Set up VLANs and access ports connecting virtual machines using the NX-OS CLI on a Cisco
Nexus 1000v virtual machine and VMWare vSphere Client networking.
 F5 ASM for application security management platform, BigIP, Silverline cloud services, Access Manager and GWT
 Collaborate with engineering and product management to resolve product defect issues in a timely manner.
 Configure HSRP & GLBP and VLAN Trunking 802.1Q, STP, Port Security on Catalyst 6500 switches.
 Regularly updating support cases to record progress of calls in call tracking system and documenting technical
solutions and product information in the knowledge base.
 Provided configurations, troubleshooting and best practices to customers.
 Managed support cases to ensure issues are recorded, tracked, resolved, and follow ups are done in a timely manner.
 Supported clients with establishing high availability applications with load distribution by F5 Big- IP LTM/GTM.
 Upgraded the software images of all Cisco network devices to include routers, switches and ASA firewalls.
 Provided fault isolation and rootcause analysis for threat related issues.
 Adhered to weekly and monthly maintenance schedules to service network devices and associated equipment.
 Published Technical Support Bulletins and other technical documentation in the Knowledge Base.
 Job included travel to customer sites in the event of a critical situation to expedite resolution.
 Provide on-call support 24x7 on an as needed basis.
 Prepared and maintained SOP's and technical documentation and network diagrams.

CLIENT: First Data Corp., Omaha NE July 2016 – June 2018

Sr. Network Engineer

Responsibilities:
 Designing, Implementing LAN/WAN configurations on Cisco Nexus 9k, 7k, 5k, Catalyst 6500 switch.
 Worked on Cisco IOS for configuration & troubleshooting of routing protocols: BGP, OSPF, EIGRP, IGRP and RIP.
 Implementing, configuring and troubleshooting routing protocols such as OSPF (v3, v2), RIPv2, BGPv4, EIGRP, HSRP,
GLBP and MPLS.
 Worked on Load balancer F5 LTM, GTM series like 6400, 6800, 8800 for the corporate applications and their
availability.
 Deploying of VLANs, port and IP allocations and planning on ASR Mk, Nexus '9k, 7k, 5k, Mk and its downstream
devices.
 Configure VoIP phones to be provisioned through company servers.
 Has done the Configuration on BIG IP (F5) Load balancers and monitored the Packet Flow in the load balancers.
 Tested, Monitored, troubleshoot, and resolve Frame Relay, ATM, MLPPP, PPP, and Dial-up.
 Documented and Analyzed log of Cisco PIX series firewall.
 worked with application layer protocols such as Telnet, FTP, SMTP, HTTP/HTTPS, SSH and DNS 
 Installing, configuring and Windows 2003 servers of DHCP, FTP, WSUS, Web Server and SQL Database Server. 
 Deployed, managed, and supported the global AirWatch mobility solution with a focus on the Aruba Clear Pass and F5
APM/GTM components.
 The work performed involves SME input and support as an F5 and Cisco ACE load balancer engineer encompassing
complete support, day in and day out work on the F5 Application Delivery
 Installed and monitored extreme networks S-series, 7100 stackable switches and E4G-400, 1800 router to
support VMware machines. 
 Evaluate existing QoS configurations across all Cisco platforms, Catalyst and Nexus, and provide recommendations to
improve performance and consistency in the delivery of latency sensitive applications: voice, video, critical
applications
 Designed and coordinated implementation of Citrix Access Gateway (CAG) on a pair of Citrix Netscaler MPX devices
for CSC's cloud Worked on F5 LTM series 6400, 8800, 8900 and GTM 8900 series for the corporate applications.
 Administration and diagnostics of LAN and WAN with in-depth knowledge of TCP/IP, NAT, PPP, ISDN and associates
network protocols and services. 
 Configured routes on Palo Alto firewalls 3060, 5060, 7050.
 SolarWinds Network Performance Monitor, Network Configuration Manager, Network Traffic Analyzer (NetFlow) and
IP Address Manager. 
 Monitoring LAN/WAN network environments including routers, switches, Security Appliances, and software
applications. 
 Worked on ASA (5540/5550) Firewalls. Implemented Security Policies using ACL, Firewall, IPSEC, SSL, VPN, IPS/IDS,
AAA (TACACS+ & RADIUS). 
 Installed and configured Storage VMware and Processor and CPU huge. 
 Troubleshoot escalated network related issues (tier-3) regarding, EIGRP, BGP, Spanning-tree, VPC's, QoS.
 Troubleshoot all VOIP phones, and servers created by ESI followed by TCP/IP, DHCP issue
 Administered Network monitoring software such as PRTG and Solar winds to make sure that network nodes are
functional across company branches. 
 Using the ActiveSync security policies, application-ready security policies to protect servers running on F5 (VIPRION -
ASM) using F5 (VIPRION - ASM) ASM for both the HTTP and the HTTPS protocols. 
 Implementing and configuring Infoblox DNS appliance and running scripts as needed. 
 Created and Designed Cisco ISE policy for iPad, tablet and mobile phone. Making sure the business and guest devices
where working within Company’s wireless network.
 Installed Solarwinds Network Performance Monitor with traffic analysis, application & virtualization management,
configuration management.
 Experience Palo Alto, Network Security, Juniper Firewalls, SSL VPN, Checkpoint, RSA, Cisco Nexus, Cisco ACE, Cisco
Wireless.
 Done Configuration for VLANs, STP, SNMP, ELRP, DMZ and Redundancy protocol (HSRP and VRRP).
 Integrating Panorama with Palo Alto fireballs, managing multiple Palo Alto fireballs using Panorama.
 Configured RIP, OSPF and Static routing on Juniper M and MX series Routers.
 Installation, configuring and managing the Cisco Routers and switches of series 2800, 3700, 3800, and 7200, also
catalyst switches 2900, 3500, 4500, and 6500 and good knowledge on Cisco IOS and NX-OS.
 Worked with Customer Communications and Marketing (CCM) and CCM Application Support Team.
 Implementing and configuring F5 LTM's for VIP's and Virtual sewers as per application and business requirements. F5
configuration, installation, and monitoring with F5 APM.
 Designed, configured, and implemented distribution and access layers network infrastructure for a new building using
Cisco Nexus 7009s and using VPCs to floor switches (Catalyst 4510s) 
 Configured VLANs with 802.1q tagging. Configured Trunk groups, ether channels, and Spanning tree for creating
Access/distribution and core layer switching architect.
 Configured and deployed various Cisco routers, Cisco Nexus Switches and Cisco ASA firewalls in the data center
environment.
 F5 VIP configuration, SSL Client, Health Monitor, troubleshooting.
 Involved in the modification and removal (wherever necessary) of BGP from the MPLS routers. 
 Worked on installation, maintenance, and troubleshooting of LAN/WAN (ISDN, Frame relay, NAT, DHCP, TCP/IP)
 Implemented security policies using ACL, Firewall, IPSEC, SSL, VPN, IPS/IDS, AAA (TACACS+ & RADIUS). 
 Worked on setting up VMware web sphere client, vrops, Blue Medora pack for cisco hardware. 
 Installed checkpoint and F5 load balancers in Vmware workstation and Vsphere. 
 Experience with supporting multilayer IP networks, Cisco switches, routers, TCP/IP, network security; firewalls,
LAN/WAN with VoIP, backup systems, 802.1q, basic server, desktop support, infrastructure network management,
Cisco NAC, NAP, DNS, virtualization with VMware, SNMP
 Configured and supported TCP/IP networks and IP protocols in a large-scale network design.
 worked with application layer protocols such as Telnet, FTP, SMTP, HTTP/HTTPS, SSH and DNS 
 Worked on the Configuration on BIG IP (F5) Load balancers, Brocade and monitored the Packet Flow in the Load
balancers.
 Worked with Palo Alto firewalls PA3060, PA5060 using Panorama servers, performing changes to
monitor/block/allow the traffic on the firewall.
 Configured load balancing on F5 and Cisco ACE load balancers to allow traffic going to the Bluecoat proxies to be
optimized and load balanced
 Adept in handling network monitoring tools such as Wireshark, Netflow, SNMP and SYSLOG.
 Responsible for full life cycle from site surveys, implementation, testing and training of secure Aruba wireless
network installations.
 Strong Quantitative & Analytical background with professional experience in Network Administration, Quality of
Service (QoS), Security Policies & Project Management.
 Managed all network and devices to include Cisco routers, switches, VPNs, SSL, Check Point, Cisco PIX, Cisco ASA,
Cisco FWSM as well as content delivery networks (CSS, Citrix Netscaler and F5 BigIP LTM and GTM 1600 and 3400
load balancers) enterprise environment.
 Implementing and troubleshooting firewall rules in Cisco ASA 5525, 5580, Checkpoint R77.20 Gaia and VSX as per the
business requirements.
 Install, service and support of IP Telephone, VoIP and video surveillance systems.
 Traffic segregation utilizing PAN Security Zone, Nexus VRF and F5 ASM and iRule. 
 Worked on Cisco IOS for configuration & troubleshooting of routing protocols: BGP, OSPF, EIGRP, IGRP and RIP.
 Configured and performed software upgrades on Cisco Wireless LAN Controllers 5508 for Wireless Network Access
Control integration with Cisco ISE
 Creating dedicated VLANs for Voice & Data with QOS for prioritizing Voice over Data. 
 Configure, maintain, troubleshoot and provide solutions for load balancing on F5, ACE, and CSM load balancers.
 Extensive experience with Citrix XenApp, Edgesight, Netscaler, Microsoft Server OS, Microsoft AppV, and Citrix
Provisioning Services
 Implemented SNMP on Cisco routes to allow for network management. Completed the installation and Configuration
of CSU/DSU, T1, T3 & OC3 circuits.
 Created and manage VPNs for managed service clients including medical community on Cisco, Net screen
and Fortinet Cisco PIX VPN devices.
 Engineering for Verizon Cloud Platform. BigSwitch SDN controllers w/ Trident based switches. DPDK, SRIOV,
& SDN network.
 Experience with Checkpoint Firewall policy provisioning and modification of Palo Alto PA-500, PA-2k, PA-3k, and PA-
5 k.
 Configured HSRP and VLAN Trunking 802.1, VLAN Routing on Catalyst 6500 switches Responsible for company's
Cisco ASA firewall administration across our global networks.
 Nexus 5 & 7 k and 9k Switches catalyst 4500 & 6500, Cisco Meraki switch, Power Supply, Cisco RMA. 
 Experience with Cisco LAN controllers (8500, 5760, 5500) Cisco Aironet Access Points (3700, 2700, 1600, 700W),
Cisco Mobility Platform.
 Configured and maintained VPCs with 7010 and 5548 in the network. Also configured and maintained VDCs in 7010
switches, maintained VRFs in those separate VDCs.
 Access control server configuration for RADIUS and TACACS+.
 Deployed and maintained IS-IS on Cisco and Juniper routers.
 Integrated VoIP with PSTN and set up voice Gateway ensuring QOS for Avaya based Voice over IP and CDR for voice
call Accounting. 
 Experience with enterprise-class security products such as web proxy, reverse proxy, load balancing, IDS/IPS, DLP,
Firewall, IPsec/SSL VPN, WAN/LAN, wireless and remote connectivity. 
 Worked on Juniper SRX-5800, ISG-1000 firewalls
 Responsible for the administration and support of Cisco ACE and CSS load balancers.
 Physically deployed new Cisco Nexus devices, Catalyst and Nexus replacement blades, FWSMs, Cisco ASAs, Citrix
Netscaler MPX
 Territory SDN technical lead & trainer, Open Flow vs. Overlay SDN networking for VMware & Open stack, built &
presented multiple Proof-of-Concept SDN /NFV testbeds based on customer requirements.
 Good knowledge on Riverbed Virtual Services Platform (VSP) and Big-IP F5 Load balancers.
 Redistributed RIP EIGRP and OSPF for connectivity with different LAN networks.
  Configuration and maintenance of PIX and ASA firewall systems.
 Creating dedicated VLANs for Voice and Data with QOS for prioritizing Voice over Data. 
 Experience in Cisco Unified Contact Centre Express, Webex and Cisco Meeting place. 
 Configuration and troubleshooting of Site to Site as well as Remote Access VPN on Cisco ASA and Checkpoint firewall
MDS.
CLIENT: QSS Inc., Columbia Maryland December 2014 – June
2016
Sr. Network Engineer

Responsibilities:
 Implementing and maintenance of network design, structure, up gradation and configuration of routers and switch
the client server for 400+ users.
 Configuring, maintaining the Routers and Switches and implementation of BGP, OSPF EIGRP, RIP routing protocols
and troubleshooting remote infrastructure management offices in different locations.
 Implementing and configuring Static, RIP and OSPF protocols on Cisco Routers.
 Designed QOS policies for critical applications based on business requirements and traffic patterns.
 Worked using routing protocols EIGRP and BGP based company network for resolving level 2 and 3 issues.
 Design MPLS VPN and QoS for the architecture using Cisco multi-layer switches.
 Design and implemented campus switch network with Layer 3 switches (3750, 4500 and 6500) in multi VLANs
environment and inter-VLAN routing, HSRP, ISL trunk, Ether channel.
 Configured and troubleshoot Enterprise Routers, CISCO ASR 9K, CISCO 2900 and 2800 series Routers. Hands on
experience with Cisco call Manager Express, Cisco Voice over IP.
 Maintained complex LAN/WAN networks with several VLANS and provided support for routing protocols and also
providing secure sessions over internet using IPSec and SSL encryption
 Configuration scenarios include routing (RIP, EIGRP, OSPF, BGP), bridging (STP, VLAN, HSRP), MPLS VPN, Network
Security (VPN, Firewall, IDS), IP telephony (call manager, CME, voice Gateways).
 Worked with F5 based profiles, Virtual IP's, iRules for virtual IP's, monitors and pool members.
 Monitoring the routing traffic using Cisco 2000 and Wireshark.
 Experience with IPv4, IPv6, VOIP, MPLS, SSL VPN, IPSEC VPN.
 Developed Neutron ML2 mechanism driver for IBM SDN -VE Controller.
 Installed Solar winds Network Performance Monitor with traffic analysis, application & virtualization management,
configuration management and other modules additionally installed.
 Performed Network Security Assessment and implemented security features such as network filtering, SSH, AAA,
SNMP access lists, VTY access lists, EIGRP MD5 authentication, and HSRP authentication.
 Configured and upgraded Autonomous and LWAP of Cisco Aironet, Aruba Access Points and Wireless Controllers.
 Connecting various routing and switching devices with CAT 5/5E cabling.
 Have configured ACI for remote Authentication in the respective organization, manage project task to migrate from
Cisco ASA firewalls to Checkpoint firewalls.
 Configured Multiprotocol Label Switching (MPLS) VPN with Routing Information Protocol (RIP) on the customer's
Site.
 Experienced in Cisco Unified Communications Manager (CUCM) (6.x, 7.x, 8.x, 9.x, 10.x), Cisco Call Manager
(CCM), Cisco Unified Presence (CUPs, IM & Presence), Cisco Unified Call Manager Express (CUCME), Cisco Unity
Connection (CUC) (7.x, 8.x, 9.x, 10.x), Unified Contact Center Express (UCCX).
 Switches Nexus 2K/5K/7K, 9K. Cisco Catalyst 2900, 3500, 3700, 6500, 4500, 3850, 3560, 3750, 2960, Meraki MS-350 
 Maintained, configured, and installed Cisco ASA 5520 Firewall.
 Performing router IOS Backup and Recovery.
 Configured VLAN trunking with Palo Alto interface.
 Configuring TACACS, LDAP, and RADIUS for Cisco ASA and Palo Alto fireballs.
 Manage Cisco ACS entries for Wireless Connectivity.
 Implement changes on switches, routers, load balancer (F5 and CSS), firewalls, wireless devices per engineer’s
instructions and troubleshooting any related issues.
 Switching tasks include VTP, ISL/ 802.1q, IPSec and GRE Tunneling, VLANs, Ether Channel, Trunking, Port Security,
STP and RSTP.
 Manage, configure and troubleshoot Cisco ASA VPN Firewalls (including IPSec, Site to Site VPN Tunneling, SSL Remote
Access)
 Configure Juniper SSL VPN and Cisco IPSEC. 
 Implemented and maintained LAN, WALN, DNS, DHCP, configured Port Forwarding, NAT, firewall and remote access
for Switches/Routers.
  Worked on Checkpoint Platform including Provider Smart Domain Manager. Worked on configuring, managing
supporting Checkpoint Gateways.
 Configuration and troubleshooting of Cisco Catalyst 6509, 7613 with supervisor cards.
 Reimaged loaner PCs with Windows XP, Windows 7, Symantec Antivirus Endpoint, ACI, Apex Sketchpad V.5, WinTotal
and Microsoft Office Suite while documenting support with TechExcel.
 Wrote ACI's on LDAP servers for security
 Deploying and distinguishing of VLANs on core ASR 9k, Nexus 7k, Mk, Mk and its downstream devices.
 Configuring rules and Maintaining Palo Alto Firewalls & Analysis of firewall logs using various tools.
 Performed troubleshooting and management of OSPF and BGP protocols on routers.
 Maintaining redundancy on Cisco 2600, 2800 and 3600 routers with HSRP.
 Carried out initial troubleshooting for network related alerts from SolarWinds 
 Conducted network Packet Analysis using a variety of tools such as Wireshark, Net witness Investigator, Splunk, Bro,
FireEye, McAfee, Mandiant MIR, and ArcSight. 
 Deployed Nexus switches 2248, 5548, 7018 and implemented features like FEX Links, VPC, VRF, VDC, and OTV, Fabric
Path
 Used F-5Load balancers to increase capacity (concurrent users) and reliability of applications.
 Experience working with design and deployment of MPLS Layer 3 VPN cloud, Route Distinguisher (RD), Route Target
(RT), Label Distribution Protocol (LDP) and MP-BGP.
 Deployed Nexus switches 2248, 5548, 7018 and implemented features like FEX Links, VPC, VRF, VDC, and OTV, Fabric
Path.
 Configured and troubleshoot Autonomous and LWAP Aruba Wireless LAN Controllers, Cisco Meraki and Access
Points.
 Deployed and maintained routing protocols such as OSPF, EIGRP, BGP, GRE, MPLS/VPN, HSRP and static routes on
Cisco routers and switches and Juniper routers
 Worked with customers to define, plan and execute technology solutions that are specific to their needs. Deployment
and configuration of F5 BIG IP load balancer (LTM, GTM, ASM, and APM Modules).
 Palo Alto integration with VMware Virtual Desktop infrastructure.
 Provided T1er2 LAN and WAN operational support to network call center, supporting the remote, domestic and
international offices.
 Good experience and knowledge of Cisco Routers, Switches and load balancers- Cisco CRS12K, ASR9K/1K, ISR3925e,
2951, 6880 Series, Nexus9k/7k/5k/2k, VPC/vDC, Cisco 7600 Series, Cisco 6500 Series, cisco 4500 series, 3650, 3750
series, 2960 series and F5, and Juniper MX960.
 Installing, Configuring and troubleshooting Cisco Routers (ASR1002X, 3945, 3845, 2800, 3600) and switches to
perform functions at Access, Distribution and Core layers.
 Deploy and install VoIP phones (79XX, 88XX series) and configured mail boxes with User setting in Unity Voice Mail. 
 Working on different modules of Checkpoint Next Generation firewall R77.30 such as IPS.
 Worked on Juniper MX240 and MX480.
 Palo Alto design and installation (Application and URL filtering, Threat Prevention, Data Filtering).
 Involved in Configuration of Access lists (ACL) for the proper network routing for the B2B network connectivity
 Worked with Cisco Platforms, WCCP-Wireless.
 Configuration and management of Fortinet Certification, Netscreen, Sonicwall, Cisco configuration and management

CLIENT: Fannie Mae/IBM MO Oct 2013 - Nov 2014

Network Engineer

Responsibilities:
 Worked as part of team to manage Enterprise Network Infrastructure as a Tier 3 Support Engineer.
 Troubleshoot problems on a day to day basis and providing solutions that would fix the problems within their
network.
 Configured EIGRP, RIP, OSPF and Static routing on Juniper M and MX series Routers for Lab Environment.
 Configured RSTP, LACP and VTP on Cisco devises and VLAN, Spanning tree, VSTP, SNMP on EX series switches
 Created VLAN and Inter-VLAN routing with Multilayer Switching.
 Extensive experience in configuring Layers routing and layer2/3 switching of Cisco based nexus 7K,5K,2K& 800lSR
series Switches & routers.
 Design and configuring of OSPF, BGP on Juniper Routers and SRX Firewalls.
 Designing Solutions for frozen requirements using Cisco Routers and Switches.
 Experience in deploying EIGRP/BGP redistribution and the changing the metrics for the primary and back up.
 Installing, Configuring Cisco Catalyst switches 6500, 3750, 4500 and 3550 series and configured routing. Protocol
OSPF, EIGRP, BGP with Access Control Lists implemented as per Network Design.
  Implemented ISL and 802.1Q for communicating through VTP.
 Fourth tier troubleshooting, support and implementation for DNS/DHCP.
 Involved in Troubleshooting IP addressing Issues and Updating IOS Images using TFTP.
 Designing and Implementation of (LAN) VLANs, VTP, Spanning Tree (STP), Trunking (dot1q and ISL) and Ether
channel.
 Troubleshoot issues related to VLAN, VLAN Trunking, HSRP failovers, related issues.
 A hands-on role, which involves management, and support of globally developed extremely complex, highly available
Palo Alto and Cisco ASA firewall infrastructure.
 Experienced in Implementing and troubleshooting RIP, RIP v2, OSPF, EIGRP, BGP, EBGP routing protocols and Policy
based routing.
 Managed enterprise BGP setup by configuring and troubleshooting BGP related issues. My responsibility was also to
add new BGP peers for remote branch offices and business partners. Scaling of IGP and BGP in the core.
 Has done the Configuration on BIG IP (F5) Load balancers and monitored the Packet Flow in the load balancers.
 Involved in Configuring and implementing of Composite Network models consists of Cisco7600, 7200, 3800 series and
ASR Mk, GSR 12K routers and Cisco 2950, 3500, 5000, 6500 Series switches.
 Configured networks using routing protocols such as RIP, OSPF, BGP and manipulated routing updates using route-
map, distribute list and administrative distance for on-demand Infrastructure.
 Proficient with F5 LTM and Cisco CSM load balancer in-between the servers inside the server farm and DMZ. Dealt
with F5 load balancing of web traffic and data center environment failover for HA servers.
 Responsible for timing up BGP peering and customer sessions, as well as debugging BGP routing problems.
 Dealt with implementation of deployment related to Cisco devices and applying security policies on it.
 Other responsibilities included documentation, support other teams and Assisted in the architecture, evaluation and
recommendations related to purchasing and installing hardware, software related to IP Networking.
 Worked with client team to find out requirements for their network.

CLIENT: PCS Automation, India Aug 2012 – Sep 2013

Network Engineer

Responsibilities:
 Configuration and maintenance of Cisco 2900 series including VLANS and TRUNKING protocols.
 Configured EIGRP, BGP and MPLS
 Implemented load balancing between Cisco L3 switch by HSRP and GLBP.
 Delivered Departmental Efficiency through advanced engineering, technical support and documentation procedures.
 Configured networks using routing protocols such as RIP, OSPF, and BGP and troubleshooting L2/L3 issues.
 Performed the general activities of LAN administration on switches, routers, hubs and WI-FI and network printers.
 Provided high level technical support, including identifying and resolving problems on Cisco supported products for
e-commerce infrastructure. This included external routing and internal routing for DMZ servers.
 Provided Technical support to the entire organization on software, hardware and network.
 Involved in troubleshooting of DHCP and IP conflict problems.
 Handled Plans, coordinates, implements and supports the LAN/WAN integration network connectivity, diagnose
network failures and resolve any problems.
 Installing computer hardware, software, printers, wired, wireless network management, maintenance and
troubleshooting devises and network problems.
 Worked on Configuring/Troubleshoot issues with the following types of routers Cisco (7230, 65 sitting with customer
00 4500 1700 2600 and 3500 series), to include: bridging, switching, routing, Ethernet, NAT, and DHCP, as well as
assisting with customer LAN /MAN.
 Configured VLAN's, VTP's, enabling trunks between switches.
 Actively participated in upgrading fast Ethernet, Layer 3 switched/routed LAN infrastructure from Cisco 3640 to
Cisco 2811 ISM routers and switches at access level to 2950, 3550.
 Worked on Configuring, managing, and troubleshooting networks using routing protocols like RIP, EIGRP and OSPF
(Single Area and Multi Area).
 Handled Troubleshoot Frame Relay, Tl, TO, IP and OSPF related router and circuit issues.
 Assisted with troubleshooting all network issues with routers and switches when necessary and consulted with on
call tech as needed for client.