Design & Implement Network Security

Hello, Hope you are doing well. I have 5+ years of Experience in Network Security & Administration. I can handle your Project.

Hello Dear, I am an Expert Network Engineer and I am working as Expert Network Engineer at Multinational ISP. I have great hands-on experience for more than 5 years in various network technologies. I have Cisco CCNA & CCNP (Routing & Switching) and CCNP Enterprise (Enterprise Core & Enterprise Advanced Infrastructure Implementation) certifications. I have Juniper JNCIA-Junos (JN0-102) and JNCIA (Cloud) certifications. I have very good knowledge in Cisco wireless technology, VOIP & Network Security. My specialties: - Design/implement medium and large scale enterprise networks. - Configure Cisco Routers (ASR 1K & 9k, 2900, 2800, ISR 4K, 878, 888), Switches (Cat 6500, 3750, 3850, 2900, 2960, SG- 300, SG-500, [Nexus 5K, 7K and 9K]), Firewalls ([ASA 5505, 5506x, 5508], Fortigate, Palo Alto) and Wireless Acess Points 1800 and 2700. - Configure Juniper Routers (M7, M10, MX 480, MX 960) and SRX (300, 500). - Huawei, Mikrotik, HP & Ubiquiti devices Expert. - Packet Tracer, GNS-3, EVE-NG, VMWare workstation & VirtualBox Expert. - Routing protocols (RIP, OSPF, EIGRP, ISIS & BGP) Configuration and troubleshooting Expert and Switching Expert (VLANs, STP, VTP...). - VPNs Configuration Expert (IPSEC/L2TP, GRE/PPTP, OPENVPN & SoftEther). - Linux, Unix & windows servers Expert. - Wireshark Traffic Capture & Analysis Expert. - Write technical reports and summaries. Thanks to check my profile and let me know if you are interested. Best Regards, Ahmed

Hi , I can fulfill your requirements. I am an enthusiastic, results-oriented Network and Infrastructure Professional with 7+ years of experience, handling a variety of assignments in the IT & Service Industry (Network Infrastructure & Security). I have done various certifications ( CCNA, MSCE, ICNS|CCSS). Key Network Skills & Security Products Experience : • Firewall – Checkpoint, Cisco ASA • IPSEC and SSL VPN • Cisco Switches – 4500, 2900, 3650 • Intrusion Detection & prevention – Cisco, Checkpoint • Switching: Vlan, Inter Vlan, Stp, Vtp, EtherChannel, Switch Port • Configuration and troubleshooting of routing protocols OSPF, RIP, EIGRP • Setup of security implementations (Filtering Tool ACL, route map, port security.) • Well versed in the operations, configuring, and troubleshooting of various issues in Checkpoint and Cisco Devices. • Checkpoint IPSec VPN Blade, Application & URL filtering Blade, IPS Blades It would be a pleasure to work with you. Thanks

Hi, Am a Network Engineer with 9+ years of experience in Design and Support of large-scale multi-vendor Local and Wide Area networks. Good understanding of TCP/IP, specifically relating to routing, switching, wireless LAN, security, NAC services, VOIP. Certified in CCNP Routing and switching Certified, Silver peak Certified SPSP, Aruba Mobility Master Associate (HPE6-A70). Extensive hands-on experience in Designing, Installation, and configuration on products like Cisco routers, Catalyst switches & Nexus switches, ASA. Meraki LAN, WLAN, SD WAN. Aruba Mobility Master, Mobility Controllers, RAP, Access points. Juniper SRX, Mikrotik, TPlink, Optilink, VOIP products – Design, Installation, and configuration of CUCM, Avaya, Free PBX, Fusion PBX, Elastix PBX. Firewalls ---- Cisco ASA with firepower, FortiGate, Juniper SRX, Sophos, pfSense. Sonicwall, paloalto NAC services --- Radius installation and configuration, ClearPass, Cisco ISE. Wireless --- Ubiquiti, Unifi, Meraki, Tplink, Mikrotik, Monitoring Tools ---- Cacti server installation and configuration,.

Good Day, I have gone through your requirement and I can complete the project smoothly. I am having 15+ Years of Industry experience/exposure. My core exposure includes planning, design & implement highly sophisticated and complex Datacentres inclusive of clustering, bridging, and failovers especially for Cyber Security Projects. Cybersecurity technologies, Enterprise switching & routing, Server, Storage, Virtualization, Cloud Computing, Email & Hosting, Security Posture Assessment (SPA) and end user computing together with ISMS procedure, compliance and policy add value to skill sets. I have been building Cyber Security Operation Center (SOC) and Network Operation Center (NOC) for Private & SMB Customers for past 10+ Years for Managed Security Services (MSS) Projects with Fifteen over Technologies. Please initiate a chat session to discuss further. Thanks, and Regards.

Hello Dear, I am Professional IT Expert with 10 plus years of experience in Microsoft Office, networking, cisco, servers, technical support, emails security Firewall (Juniper, Fortigate) support and service to clients and customers. I am hands on experienced on Hikvision NVR/DVR installation & configuration, windows servers, Juniper firewall setup including webfilter, content filter, traffic monitoring, VIP, IPsec VPN, SSL VPN, Traffic shapping etc. Expert in LAN, WAN, Vlan, dhcp, DNS, Email, AD, HyperV, VMware, complete firewall configurations & Management, networking planning & design. I have complete IT infrastructure knowledge and good basic to advance level of knowledge on ports, protocols, cisco etc. Please feel free to chat and contact me. Thank you. M kmr

Hi There, I can handle your project, I will implement firewall into your network. I have more then 6 years of experience in server and network administration

Hi , it would be a pleasure for me to assite you on this project . i am CCNP Sec & Fortinet NSE 7 certified . i alreadey deployed solutions including Fortiget-200E. to answer you questions : 1- i recommande to deploy a L2 Switch with 10G interfaces to be interconnected to the Servers . for the HA it is better t have 2 if possible . With sufficent Commutation & forwarding rate . 2- for VM updates it is possible to dedicate a differents rulles or a proxy Virtual Domain VDOM. 3- it is possible to implement 2 Level of VDOMs and implement advenced IPS on incuming traffic . I recommand you to also deploy a Fortianalyser VM to get a clear reports and an adequate traffic Logs ( 7 day & More ) Please feal free to contacte me . Sincerly

hi, im an network security engineer, im working as expert network security engineer certified in NSE 7, NSE 5, NSE 4 , CCNA RS, JNCIS my specialist 1. designs and implements fortinet device fortigate: 7000, 6000, 3700, 2500, 1200, 1101, 601, 501, 200 using virtual domain, ha , snat, dnat, central nat, security profile ( IPS, AV, APP control etc ) for network im also configure on device huawei, cisco

hello I'm a network security engineer. i have hands-on experience with fortigate firewalls. i suggest for you the following points: use two cisco switches for better and faster communication between VMs if needed. one switch for the DMZ zone and the other for internal VMs. it would be a pleasure to work with you. thank you in advance.

Telecommunications and Network Engineer having three years of experience as Head of Data Networks Department in Insiyabi Pakistan and also have the experience of design and configuration of enterprise computer network for data centers and call centers along with the experience in Network Solutions and Security

Hello, Firstly I work in a Cloud Company as a Sr. System Administrator. I've been managing and creating network topologies over ten years. I think, I qualified enough for this project. Here is the my answers, 1 - ) For both of scenario the network will finalized the FortiGate. So if you use the fiber connection for server traffic then yes you need to use switch/fortiswitch but if the traffic will be 1 gigabit then you don't need to use extra switch just finalized the network to the FortiGate. P.S : I mean the traffic of the between the servers as you know. 2 - ) For example, you have /29 Public subnet on your environment, we'll assign the /29 subnet to the FortiGate and after that we can use SNAT/DNAT. We'll create a SNAT rule for the Servers to ANY. But we won't create DNAT, so the servers can reach the internet, but there won't be traffic from the internet to the servers. 3 - ) Why do we need a server that acts as a reverse proxy? The Fortigate can do this. Also, if the whole servers have the same network ID and then the traffic won't pass through the Gateway/Fortigate. For this scenario, we need to improve the security at OS Layer. But if the servers have not the same network ID then we will create a few rules to specified ports. King Regards.

hi, I have done ccse also have 7+ years of experience in cyber security solutions. worked with different firewalls like checkpoint, fortigate. discuss for more details over chat.