Peter J
rockdale , sydney,Select
Summary
Cisco certificated internet expert (CCIE 58837 ). Dedicated, hard-working, self-guided and motivated network Engineer with more than 8 years professional network work experience (4 years experience working as senior technician in one of world largest IT enterprise/environment )and strong network automation programming foundation
Overview
9
9
years of professional experience
1
1
Certification
Work History
Architecture / Senior consultant
Optus
06.2024 - Current
- Project ANZ Branch bank office network build up
- Design IT network of ANZ adelaide branch and achieve network deployment: Lan: IP Schema, data/voice vlan, spanning-tree, vtp, port-channel Wan: ospf, BGP, Wan redundancy, load-balancing, routing preference optimization, IPSEC VPN tunnel, netflow Security: security zone, object /object group for ip, url, port, protocol security policy for data flow restriction between internal, external and DMZ, DNS proxy, web-filter, DNS white-list, end user authentication, firewall HA Wireless: ap, WLC setup and register on cloud management platform, SSID, ap channel, authorization policy Voice: local phone setup, PBX 9200 call manager setup, internal and external phone number dial rule other: Microsoft 365 account set up, LADP server setup
Architecture / Senior consultant
Optus
04.2023 - 05.2024
- Project Develop high-level automation for ANZ network managed in singtel-optus project. Automation come with ANZ bank network health check function Can automatically audit and monitor ANZ network traffic timely, Find possible ANZ network issue before customer raise incident and troubleshoot network issue automatically. save much labor in ANZ network management and make incident reaction process quicker. improve ANZ network management work efficiency largely
Architecture / Senior consultant
Optus
08.2021 - 02.2023
- Manage ANZ bank business network containing 200 international network sites across more than 30 countries in the world, 150 domestic sites and 30 business network data center across Australia
- Dedicated Tier 2 support for ANZ Provides support to Tier 1 engineers that have encountered complex issues while troubleshooting and assist them until resolution Handles incident tickets, migration, decommission, change requests, network transition audits and document all activities in ServiceNow Maintains and supports customer network including routing and switching in LAN/WAN and wireless networks. Provides Advanced Technical support to managed customer service. Works closely with customer and other appropriate workgroups to resolve their issues. Performs change implementations such as service decommission, bandwidth upgrades, circuit migration from IPVPN to NBN, software version upgrades, etc. Makes sure to comply with both change management and incident management process. Assists Tier1 engineers in replacing defective managed devices and configuring the new devices. Performs extensive auditing to improve proactive monitoring to managed customer devices including vulnerability and patch management, network design review, problem management. Involved in project for migrating managed network devices into new monitoring platform
Senior Network engineer
infosys
11.2020 - 04.2021
- Projects Industrial and commercial Bank of China Sydney Optimize ICBC sydney branch network structure: deploy Symantec endpoint Data loss protection system for confidential data/file design DLP policy for confidential data usage monitor, operation authorization management Achieve multiple IPSEC VPN communication between branch and headquarter and implement smartlink for load-balancing optimization Migrate security policy from cisco ASA to H3c firewall, optimize security policy between internal zone and DMZ zone Achieve internal firewall, external firewall high-availability (HA), Wireless HA and AP load-balancing, local user 802.1x authentication via remote site radius server
Network engineer
Ac3
06.2019 - 09.2020
- Projects Bayside city council (Viptela) SD-WAN network topology implement vedge, vbond, vsmart, vmanage communication management SD-WAN network protocol (OMP, ICP, BGP), VPN, NAT, centralized/local policy implement/optimize automation and network traffic monitor and management automation SD-WAN hub-spoke network topology implement and upgrade automation and customer VPN membership implement automation Migration the old city council network structure to new bayside council network infrastructure in bayside Gov DC, rockdale DC security firewall DMZ application Configures, implements, tests and maintains network devices such as Cisco, WLC, Prime Infra Appliance, CXM Appliance MSE Appliance, Aruba, etc. Netmiko script network automation for Centralized Management on network routing implement Netmiko script network automation for network routing migration and security firewall policy application migration on dozens of local sites and Gov datacenter In our team, we manage more than 10,000 devices and over 1800 customers, so we have encountered and handled customer’s devices with different vendor platforms such as: Cisco Routers, Switches, ASA Firewalls, Access points, Aruba, Juniper Routers, SRX, Adtran Routers, Ethernet Devices such as Tellabs, Juniper MX, Flashwave, Demarcation devices such as Overture, Anda
Network engineer
Network innovative solution
11.2017 - 06.2019
- Projects Sydney university (Abercrombie Precinct Building Network design and deployment Project) implement layer 2 technologies switch port, LAN distribution and LAN resiliency in two main data centers, large office, medium offices and headquarter office implement WAN switch technologies in remote branch office implement IGP OSPF in two data center network, headquarter network, remote site and implement EIGRP path load-balancing in branch office network implement IBGP and EBGP in data center network, SP global network, headquarter network and office network design and implement MPLS VPN in global SP network design BGP policy implement and solve ingress and egress traffic optimization issue in data center provide load-sharing and redundancy of multicast rendezvous point router in data center network design and implement DMVPN cloud and implement LAN-to-LAN IPSEC in remote site network Based on network automation tool Ansible and Netmiko, use Python to do the network automation for the network implement above write Python scripts for network device automation troubleshooting, run scripts to deal with different troubleshooting tickets at the same time configure and troubleshoot the association between autonomous access point A3700-BR as WGB SSID on WLC, make wlan security come as open authentication with no layer 2 authentication /encryption make client in referred vlan behind WGB, make wgb tell WLC which vlan the client behind wgb should be assigned to. make two AP communicate over 2.4 Ghz band exclusively configure WLAN for headquarter users, make cooperate user who is member of one AD group are placed on different vlans based on different authentication methods configure WLC, set EAP, policy and ACL make user with valid eap-tls certificate and right work-station type can still authenticate locally and access vlan if network issue prevent WLC reaching aaa server set up wlan in WLC, make wireless user traffic based on referred authentication method terminate at remote office implement guest access for referred wlan on headquarter, make users connected via ap managed by WLC 1 placed in one vlan and users from ap managed by WLC 2 is placed into two vlans with load-balancing configure and troubleshoot mobility express, set higher priority for ap acting as WLC, update image to support mobility express in slave ap for getting ready for master AP role taking, implement rogue detection and client profiling implement ASA (5500-X) firewall access control, AD user network discovery and application filtering set flexconnect in WLC for guest management in remote office do TACACS+ and RADIUS device management for WLCs set prime infrastructure to manage WLC using v3 snmp with encryption and authentication implement location service, make controller in prime infrastructure and CMX be synchronized, set RSSI value for discarding noise signal
Network engineer
UNITEDSTACK
04.2016 - 08.2017
- Projects BUAA university (lead Economics & Business Building Network Upgrade and optimize Project) in OSPF implement in remote branch office, to solve OSPF running speed issue in DMVPN cloud, make each branch router only receive a default route via OSPF but do not receive any other LSA type 3 from ABR in SP #1 cloud, in order to save CPU and memory usage, disable the BGP into OSPF configuration in customer site and instead enable router to advertise a default route into their respective OSPF domain in headquarter network, optimize EIGRP implement to solve IGP routing loops issue and ensure that all future learned PREFIXS are routed via their optimal path optimize BGP policy design, create back-up link between HEADQUARTER and data center # two, make relevant prefix to data center #1 is routed primarily via the back-up link but the all other traffic is primarily routed via SP MPLS core network upgrade DMVPN cloud implement in remote site, make NHRP properly populate routing table on spoke router and make the default route received by spoke route can be set in specific BGP VRF table in remote branch office network, implement network security solution to make link with partner #1 is secured against spoofing attacks implement network optimization on hub border in DMVPN cloud in main data center network, optimize network service implement by authenticating NTPv4 connection Based on network automation tool Solarwind automation manager and Netmiko, make program to do the network automation for the network implement above write Python scripts for network device automation troubleshooting, run scripts to deal with different troubleshooting tickets at the same time Implement ASA (5500-X) firewall in URL traffic control, file filtering, ISP troubleshoot and configure AP register to WLC, set AP name, vlan name, wlc name and IP address 2.4G/5G channel in AP, for remote office, make wlc discovery rely on local subnet broadcast message from AP statically configured information on AP implement multicast, multicast does not require rendezvous point, enable the referred AP can receive multicast traffic arrive WLC trunk on client's vlan. make wlc effectively snoop igmp for qualified multicast handling. make wlc delete MGID entries after some time without client's igmp response for particular multicast group, per timeout the WLC should send some queries troubleshoot Bridge link establish between A3700-BR, the bridge link use referred Bridge broadcast by BridgeAP, use RSN for layer 2 security, A3700BR1 allow A3700BR2 to authenticate its RADIUS server using EAP-FAST, create user and password belongs to EFAST-GROUP configure and troubleshoot mobility express, set higher priority for ap acting as WLC, update image to support mobility express in slave ap for getting ready for master ap role taking, implement rogue detection and client profiling according requirement, set Qos as appropriate level for different wlan access implement multicast video over WAN implement mdns snooping, enable ap broadcast a ssid which is used only by tablet to show Youtube video to customers and project video to TV via Googlecast implement AVC netflow, rate-limit video streaming in wlc, use netflow to monitor app activity and stats
Education
Master of Technology - Engineering (IT)
University of Wollongong
Skills
- WAN/LAN networking design
- Implementation
- Troubleshooting
- Support
- LAN
- VLAN
- Spanning Tree
- Ethernet channel
- DHCP
- RIP
- OSPF
- EIGRP
- MPLS VPN
- BGP
- TCP/IP
- H323
- MGCP
- SIP
- SCCP
- PSTN
- Firewall operation
- Cisco ASA
- Palo Alto
- Aruba
- Fortigate
- Juniper
- Huawei
- Security zone design
- Security policy design
- DNS proxy
- Web-filter
- DNS white-list management
- LDAP
- IPSec VPN
- Firewall high-availability
- Network automation
- SolarWinds Automation Manager
- Netmiko
- NCM
- Ansible
- Python programming
- Wireless technologies
- Wireless controller
- Prime infrastructure
- AAA server
- CMX
- WLAN
- AP register
- Bridge AP authentication
- Authorization/authentication policy
- Mobility express
- Flexconnect remote guest visit
- QoS
- RADIUS/TACACS management
- Frame Relay
- ISDN
- PPP
- PPPoE
- IPSec
- DMVPN Cloud
- Dial on demand routing
- Route manipulation
- Policy routing
- ADSL
- Troubleshooting skills
- Packet sniffers
- Enterprise network analysis tools
- Cisco routers
- Cisco switches
- IOS
- IOS-XE
- IOS-XR
- Cisco Nexus 6001
- Cisco Nexus 2K
- Cisco Nexus 5K
- Cisco Nexus 7K
- Cisco wireless
- Cisco 85xx series
- Cisco 55xx series
- Cisco 1850
- Cisco 8540
- Cisco 8xx
- Cisco 19xx
- Cisco 29xx
- Cisco 3750
- Cisco 44xx
- Cisco 45xx hardware
- Cisco ASR 920 Series Aggregation Routers
- Cisco ASR 9000 Series Aggregation Routers
- Cisco ME 3600X Series Ethernet Access Switches
- VPN
- Email Security
- Web Security
- Check Point Firewall R65
- Check Point Firewall R75
- Windows 7
- Microsoft 2012 server R2 Active Directory
- Microsoft Exchange Server 2010
- Microsoft Office 365
- C
- C
- PHP
- HTML
- JavaScript
- Python
- Linux script language
- Linux user administration
- Linux disk administration
- Linux file administration
- VMware Workstation
- VMware ESXi
- VSphere 60
- ITIL
- NetFlow monitoring system
- SolarWinds
Certification
- Cisco License Number, CSCO13168694
- CCIE, CCIE 58837
- ITIL Foundation V3
Timeline
Architecture / Senior consultant
Optus
06.2024 - Current
Architecture / Senior consultant
Optus
04.2023 - 05.2024
Architecture / Senior consultant
Optus
08.2021 - 02.2023
Senior Network engineer
infosys
11.2020 - 04.2021
Network engineer
Ac3
06.2019 - 09.2020
Network engineer
Network innovative solution
11.2017 - 06.2019
Network engineer
UNITEDSTACK
04.2016 - 08.2017
Master of Technology - Engineering (IT)
University of Wollongong
Permanent Resident
True
Personal Information
- Work Permit: Permanent Resident
- Visa Status: Permanent Resident
Similar Profiles
NANCY SHENNANCY SHEN
Sales Consultant at OptusSales Consultant at Optus
Steven SmallSteven Small
SENIOR PORTFOLIO MANAGER at OptusSENIOR PORTFOLIO MANAGER at Optus
Vihanga KumarageVihanga Kumarage
Optus Sales Representative at OptusOptus Sales Representative at Optus
Ashish GautamAshish Gautam
Mechanical Technician at Sunshine LinenMechanical Technician at Sunshine Linen
Nikki DunbarNikki Dunbar
Personal Trainer at FitnixPersonal Trainer at Fitnix