Home

Vikas Pati - Network engineer

[email protected]

Location: Dallas, Texas, USA

Relocation: Yes

Visa: H1B

Vikas Ph No: 6168849034 Email Id: [email protected] Professional Summary: Over 9 years of experience in Networking, Security, Administration, AWS cloud services and Network support. Extensive work experience on Cisco Routers, Cisco Switches, Load Balancers & Cisco Firewalls Expertise in deployment and configuration of routing protocols such as OSPF, EIGRP and BGP. Configuration and implementation of F5 BIG-IP load balancer. Experience on F5 LTMs & GTMs to improve web application delivery speed and replication through and between distributed global data centers. Worked on F5 LTM series like 1600, 6400 and Viprions for the corporate applications and their availability. Implemented redundancy with HSRP, VRRP, GLBP, Ether channel technology. Hands on Experience configuring and testing F5 iRules using Browser (IE), HTTP watch. Knowledge in working with F5 Load Balancers and their implementation in various networks. Knowledge of network security protocols such as IPSEC tunnels, GRE tunnels, NAT/ PAT, ACLs and VPN MP-BGP. Worked extensively in Configuring, Monitoring and Troubleshooting Cisco's ASA 5500/PIX series security appliance. worked on Panorama firewall management tool which provides centralized monitoring and management of multiple Palo Alto devices from single window. Knowledge on Amazon AWS Virtual private cloud services. Worked on Amazon AWS and Microsoft Azure could network services. Configure a Site-To-Site IPsec VPN to the Amazon AWS VPN Gateway with other vendor security appliances devices. Experience in Networking Area especially TCP/IP, Routing, Switching. In depth knowledge with network monitoring and performance tools such as Solar Winds and Wireshark. Knowledge in Cisco ACI and SD WAN Strong hands-on experience implementing and troubleshooting Switch technologies such as STP, RSTP, MSTP and VTP along with troubleshooting of inter-VLAN routing. Experience in working with Cisco 2500, 2600, 2800, 3600, 3800, 7200 series Routers. Strong hands-on experience on configuring Cisco Catalyst 2900,2960, 3560, 3750, 4500, 4900, 6500 series and Nexus 7000, 5000 and2000 switches. Configuration, managing and implementation the Linux/Unix and Sun Solaris Server in Network. Experience in Wireless LAN (IEEE 802.11) and deployment of light weight access point. Migrated and implemented new solution with Cisco ASA firewall series 5505,5510,5540. Experience in configuration of AAA with ACS protocols TACACS+, RADIUS and LDAP. Experience in configuration of Checkpoint 600,1100,4800,12000 appliances. Migration of Palo Alto firewalls from ASA. Experience in configuration of Palo alto firewalls like PA2020, PA3050, PA5050 Experience with devices Palo Alto Network firewalls such as security NAT, Threat prevention URL filtering. Implement duo security two factor authentication for remote access VPN on Cisco ASA. Worked on various blades like IDS/IPS, URL filtering on Cisco ASA. Experience with ACI and Nexus 9K deployments Strong knowledge on networking concepts like TCP/IP, Routing and Switching. Hands on experience on Up-gradation of Cisco IOS & Firmware of different Cisco devices & modules. Have exp with Amazon web services cloud. Have hands on exp on AWS services like EC2, Database, VPC, Route 53, Access Group, IAM, Direct Connect. Also worked with the physical server migration to AWS data center Involved in designing and implementation of AWS network and connectivity b/w physical and AWS DC Worked with Automation script with Python module like Chef & Ansible. Managed relational database applications with UI designing services and Python languages. Worked with Cisco ISE to identify threats in the network for rapid containment and remediation. Shared the data with integrated partner solutions to accelerate the capabilities to identify and remediate threats using Cisco ISE. Experience in installation, configuration, and Administration of windows server 2003/2008, Active Directory, Linux, UNIX OS under various LAN and WAN environment. Hands on experience in installing and configuring DNS and DHCP server. Technical Skills: Router platforms Cisco routers (7600,7200, 3900, 3600, 2800, 2600, 2500, 1800 series) & Cisco Catalyst switches (6500, 4900, 3750, 3500, 4500, 2900, 6807 series), Nexus 7K, 5K, 2K & 1K. Switch platforms Cisco 2900XL, 2950, 2960, 3560, 3750, 4500 and 6500, Nexus (2K, 5K, 7K and 9K) Juniper Platforms SRX, MX, EX Series Routers and Switches Networking Concepts Access-lists, Routing, Switching, Subnetting, Designing, CSU/DSU, IPsec, VLAN, VPN, WEP, WAP, MPLS, VoIP, Bluetooth, Wi-Fi Firewall Juniper Net screen 6500, 6000, 5400, Juniper SSG, SRX5600, SRX5800, Checkpoint (NGX, R65, R70 and R71), Cisco Firewalls (ASA 5505, 5506-X, 5585), Palo Alto Networks (PA-2K, PA-3K and PA-5K). Network Management/Monitoring Solar winds, HP NNMi 8xi (Network Node Manager), Net flow and Cisco prime, Ethereal / Wireshark, TCP Dump. Cisco DCNM, Firemon, MS-VISIO Load Balancers F-5 BIG-IP LTM 2000, 3900, 5000, 6400, 6800 AND 8900, Bluecoat SG8100, AV 510. WAN technologies Frame Relay, ISDN, ATM, MPLS, leased lines & exposure to PPP, DS1, DS3, OC3, T1 /T3 & SONET LAN technologies Ethernet, Fast Ethernet, Gigabit Ethernet, & 10 Gigabit Ethernet, Port-channel, VLANs, VTP, STP, RSTP, 802.1Q Security Protocols IKE, IPsec, SSL, AAA, Access-lists, prefix-lists, SSL-VPN Networking Protocols RIP, OSPF, EIGRP, BGP, STP, RSTP, VLANs, VTP, PAGP, LACP, MPLS, HSRP, VRRP, GLBP, TACACS+, Radius, AAA, IPv4 and IPv6 Operating System Windows 7/XP, MAC OS X, Windows Server 2008/2003, Linux, Unix Professional Experience: Client: CVSHealth, Scottsdale, AZ Sept 2022 Present Role: Sr. Network Engineer Responsibilities: Responsibilities included installation, configuration, maintenance and troubleshooting of the corporate network, monitoring network performance using various network tools to ensure the availability, integrity and confidentiality of application and equipment and to provide support for cisco networks. Manage the design and execution of networking projects. Including coordinating with stakeholders, project plan and dividing tasks among team members. Perform installation, maintenance and upgrade of LAN/WAN and WLAN infrastructure points Work with vendors to resolve technical issues related to network hardware and software Participate in configuring, installing, and maintaining network systems and software Monitor network performance and troubleshoot issues related to network performance and connectivity Experience working with Layer 3 routing protocols OSPF and BGP. Involved in the migration of cisco catalyst 3750's and 3850's to catalyst 9300's and 9500's as part of network modernization project. Coordinated with third party vendors with pre-staging and installation of network switches and UPS. Proficient in using network tools like SolarWinds, Net brain, Live Action, Infoblox's and cisco prime. Implementation of Juniper Firewall, SSG Series, Netscreen Series ISG 1000, SRX Series. Worked on Juniper Netscreen Firewalls like, NS50, NS204, SSG 550M, SSG520M, ISG 1000, ISG 200 and Cisco PIX 535, 520, 515, ASA -5500 and 5505 Deploying and configuring Cisco Firepower Threat Defense (FTD) devices and managing policies for network security. Administering the Firepower Management Center (FMC) for centralized policy management and monitoring Configured, troubleshooted, installed and managed Juniper M series routers, Juniper NetScreen firewalls to include ISG 2000, NS-5200, and SSG series. Provided firewall policy configuration and services with Juniper SRX 340 & 550 service gateways Analyzing security events, alerts, and logs within the FMC for threat detection and response. Deployed and configured cisco ASA devices for network security. Implemented firewall rules and policies to control traffic and enhance security. Configured and managed intrusion prevention mechanisms to safeguard against unauthorized access. Monitored and analyzed security events and logs for threat detection. Designing, configuring, and troubleshooting Virtual Private Network (VPN) solutions using Cisco ASA, ensuring secure communication for remote users and connecting branch office. Extensive experience in configuring and troubleshooting of routing protocols RIP V1/V2, EIGRP, OSFP, BGP, TCP/IP, LDAP and 802.11 WiFi Understand the JUNOS platform and worked with IOS upgrade of Juniper devices. Redistribution of routing protocols and Frame-Relay configurations. Design and configuring of OSPF, BGP on Juniper Routers and SRX Firewalls. Implemented and managed access control lists (ACL s) to restrict unauthorized access. Developing and executing incident response plans to address security incidents. Conducting regular security audits to ensure compliance with industry standards. Documenting and reporting on compliance status, vulnerabilities, and risk assessments. Creating and maintaining comprehensive documentations for configuration, policies, and procedures Responsible for configuring and maintaining the Fortinet devices in a zero-trust environment. Worked actively on Fortinet UTM firewall administration using FortiManager. Configuring both B2B VPN and remote access SSL and policy administration using FortiManager, building FortiGate HA using FortiGate clustering protocol. Experience with dynamic routing protocols including BGP, OSPF. Configured Intrusion Detection and Prevention on Juniper SRX firewalls. Implemented site to site VPN in Juniper SRX as per customer. Designing and implementing Cisco ISE solutions to meet the organization's security and access control requirements. Extensive implementation of firewall rules on Juniper SRX 340, SRX 550 and SRX 240 daily, using SPACE as well as CLI when needed. Configuring and managing authentication, authorization, and accounting policies within Cisco ISE to control network access. Integrating Cisco ISE with other network infrastructure components, such as switches, routers, and identity stores. Identifying and resolving issues related to Cisco ISE functionality, ensuring smooth and secure network operations. Ensuring that the network access policies align with security compliance standards and organizational policies on Cisco ISE. Monitoring Cisco ISE logs and generating reports to track network access, security incidents, and compliance. Performing regular maintenance tasks, including software upgrades and patches, to keep Cisco ISE up-to-date and secure. Collaborating with other IT teams to integrate Cisco ISE into the broader IT infrastructure and security ecosystem. Maintaining comprehensive documentation of Cisco ISE configurations, policies, and procedures. Skilled in using network monitoring tools such as SNMP and NetFlow. Involved in switching technology administration including creating and managing VLAN's, Port security, Trunking, Inter-VLAN routing, LAN Security etc. Client: AlticeUSA, Bethpage, NY Sept 2018 Sept 2022 Role: Sr. Network Engineer Responsibilities: Responsible for Configuring Cisco and Dell Routers and Switches. Installing and configuring F5 Load balancers and firewalls with LAN/WAN configuration. Worked on F5 LTMs & GTMs to improve web application delivery speed and replication through and between distributed global data centers. Worked on F5 LTM series like 1600, 6400 and VIPRIONS for the corporate applications and their availability. Used F5 GTM for external DNS resolutions configured all listeners and created all zone files, A record and Names. Worked on F5 Enterprise Manager 3.1 version to manage multiple F5 LTM devices from single-pane view. Worked on F5 VIPRIONS 2400 model with dual blades also had licensed this chassis with vCMP which can run multiple instances and versions of BIG-IP. Configuring, deploying &upgrading the Cisco, Nexus5672 Series Switch fabric links. Configuration& troubleshooting of Cisco and Dell switches, routers, and Firewall. Deployed & Implemented rules and created various zones in Palo alto firewalls like PA2020, PA5020, PA5050. Experience on Panorama firewall management tool which provides centralized monitoring and management of multiple Palo Alto devices from single window. Configuration and Installation of Cisco firewalls ASA (5510,5520 and 5540). Migrating Cisco ASA Firewalls to Palo alto firewall. Experience in design and implementing Cisco s ACI solution. Knowledge & Experience on Fortigate Firewall Appliances. Experience with ACI and Firewall integration. Implemented Duo Security two-factor authentication as a service to access data centers via VPN. Using solar winds Orion platform to monitor networking and systems management products. Worked with IDS/IPS to identify threats in the network for rapid containment and remediation. Shared the data with integrated partner solutions to accelerate the capabilities to identify and remediate threats using Cisco ISE. Ability to analyze, configure and troubleshoot networks. Establishing VPN tunnels using IPSec encryption standards and configured and implemented site-to-site VPN, Remote VPN. Worked on Amazon AWS and Microsoft Azure could network services. Configure a Site-To-Site IPsec VPN to the Amazon AWS VPN Gateway with other vendor security appliances devices. Configured and resolved various OSPF issues in an OSPF multi area environment. Configured HSRP and VLAN trucking 802.1Q, VLAN Routing on Catalyst 6500 switches. Optimized performance of the WAN network consisting of Cisco 3550/4500/6500 switches by configuring VLANs. Have hands on exp on AWS services like EC2, Database, VPC, Route 53, Access Group, IAM, Direct Connect. Involved in designing and implementation of AWS network and connectivity b/w physical and AWS DC Worked with Automation script with Python module like Chef & Ansible. Managed relational database applications with UI designing services and Python languages. Developed a python script, which will parse all trace files and calculate throughput, latency and drop rate. Developed and implemented a web crawler program in Python that gathers data from social networking site. Design and Architecture of F5 LTM, GTM, APM, ASM and application delivery network. Installed BIG-IP products ASM, APM, Enterprise Manager to provide security from threats, and centralized management for F5 devices. Developed a python script, which will parse all trace files and calculate throughput, latency and drop rate. Working knowledge about SD WAN network design Experience in Configuring, upgrading the F5 LTM device as per corporate applications request. Configured F5 Big IPs with VIPs, Pool, I Rules and SSL certificates to ensure traffic was load balanced. Experience with BIG-IQ centralized management to manage all the F5 devices across network. Upgraded all the F5 devices across network to remediate RCE vulnerability CVE-2020-5902. Implemented the numerous firewalls rules on the Palo alto with both Hide Nat and Static NAT. DNS administration like adding/modifying/deleting IP and DNS assignments using log messages. Modified internal infrastructure by adding switches to support server farms and added servers to existing DMZ environments to support new and existing application platforms. Environment: Cisco routers, switches, ASA Firewalls, Palo alto Firewalls, OSPF, EIGRP, BGP routing protocols, VLANs, F5 load balancers, checkpoint, wireless access points, IP, TCP, UDP, ICMP, NAT, DHCP, SNMP, IPSEC, SSL, HTTP, SSH protocols. Client: AT&T, Atlanta, GA June 2016 Aug 2018 Role: Network Engineer Responsibilities: Responsible for Configuring Cisco and Juniper Routers and Switches. Configured and resolved various OSPF issues in an OSPF multi area environment. Installing and configuring F5 Load balancers and firewalls with LAN/WAN configuration. Configured HSRP and VLAN trucking 802.1Q, VLAN Routing on Catalyst 6500 switches. Optimized performance of the WAN network consisting of Cisco 3550/4500/6500 switches by configuring VLANs. Involved in the configuration & troubleshooting of routing protocols: MP-BGP, OSPF, LDP, EIGRP, BGP v4. Configured IP access filter policies. Configuring, deploying &upgrading the Cisco, Nexus 5000, and Nexus 7000Series Switch fabric links. Configuring OSPF and Static routing on Juniper M and MX series Routers. Configuration& troubleshooting of Juniper switches, routers, and Firewall. Configuring Virtual Chassis for Juniper switches EX-4200, Firewalls SRX-210,240 Support remote access for virtual private networks (VPN), Troubleshoot Remote Access issues. Deployed & Implemented rules and created various zones in Palo alto firewalls like PA2020, PA2050. Maintain, and troubleshoot Cisco IOS SIP gateways and TDM trunks, plus VoIP UC servers, infrastructure, and applications. Worked with Cisco ISE to identify threats in the network for rapid containment and remediation. Shared the data with integrated partner solutions to accelerate the capabilities to identify and remediate threats using Cisco ISE. Ability to analyze, configure and troubleshoot networks. Responsible for turning up BGP peering and customer sessions, as well as debugging BGP routing problems. Establishing VPN tunnels using IPSec encryption standards and configured and implemented site-to-site VPN, Remote VPN Worked on troubleshooting and resolving issues escalated by the NOC and internal systems, including developing, implementing, and deploying emergency hot fixes within a global network Configuration and Installation of Cisco firewalls Pix and ASA (PIX 510, 515E, 525 and ASA 5520, 5540). Migrating PIX Firewalls to ASA Firewalls Configuring VLAN, Spanning tree, VSTP, SNMP on EX series switches Implementing MPLS VPN for the Branch locations Configured and deployed QOS and defined class of service (COS) WRED and WFQ for bandwidth management. Handled deployment and management Checkpoint GAIA, R75, R71, R65 and Cisco ASA 5500 series Implemented the numerous firewalls rules on the Checkpoint with both Hide Nat and Static NAT. Configured the Checkpoint Anti-Spoofing on the right interfaces to enable the traffic. DNS administration like adding/modifying/deleting IP and DNS assignments using log messages. Providing Technical Support and solutions for Network Problems. Upgrading IOS, troubleshooting network outages. Modified internal infrastructure by adding switches to support server farms and added servers to existing DMZ environments to support new and existing application platforms. Environment: Cisco routers, switches, ASA Firewalls, OSPF, EIGRP, BGP routing protocols, VLANs, F5 load balancers, checkpoint, Palo alto, wireless access points, IP, TCP, UDP, ICMP, NAT, DHCP, SNMP, IPSEC, SSL, HTTP, SSH protocols. Client: i7 Networks, Bangalore, India Aug 2013 - Nov 2014 Role: Network Support Technician Responsibilities: Responsible for the configuration, implementation and operation of Cisco 3745 routers, Cisco 6509 and 3560 L2/L3 switches Removed Cisco 3600 and 2600 series routers and Cisco 2900 series switches from the current infrastructure and replaced them with the Cisco 6509 or 3560 L2/L3 switches. Configured RSTP, MST and used VTP with 802.1q trunk encapsulation. Provided port binding and port security wherever required. Provided router redundancy through HSRP. Configured ether channels using PAgP and LACP. Designed ACLs, VLANs, troubleshooting IP addressing issues and taking back up of the configurations on switches and routers. Provided testing for network connectivity before and after install/upgrade Switching related tasks included implementing VLANS and configuring ISL trunk on Fast-Ethernet and Gigabit Ethernet channel between switches. Experience in Cisco switches and routers: Physical cabling, IP addressing, Wide Area Network configurations (Frame-relay and ATM). Performed troubleshooting, while maintaining trouble ticket tracking, following internal/external Escalation procedures and customer notifications. Configured Cisco Routers for OSPF, IGRP, RIPv2, EIGRP, Static and default route. Worked on HSRP and GLBP for first hop redundancy and load balancing. Prepare, update, and maintain technical and logistical network documentation Environment: Cisco routers, switches, ASA Firewalls, OSPF, EIGRP routing protocols, VLANS, IP, TCP protocols. Education: Bachelors in Electronics and Communications Engineering from JNTU-H, 2013 Masters in Software Engineering from University of Houston Clear Lake, Houston, TX, USA, 2016 Keywords: user interface information technology ffive hewlett packard microsoft Arizona Georgia Idaho New York Pennsylvania South Dakota Texas Wisconsin