| Need Independent CCIE Network Architect at Remote, Remote, USA |
| Email: [email protected] |
|
http://bit.ly/4ey8w48 https://jobs.nvoids.com/job_details.jsp?id=2289900&uid= From: ram, ICS Global soft [email protected] Reply to: [email protected] Hello , Hope you are doing well. This is Ram from ICS Global Soft. Kindly find the below job description and let me know your availability CCIE Network Architect 100% Remote Duration: Long-term Active CCIE Required! Need Independent Visa only (GC OR USC Preferred ) 1. Current Environment Assessment Before redesigning BGP, evaluate the existing NSX and SD-WAN architecture: 1.1. Topology Analysis Document existing BGP peers, AS numbers, and route distribution. Identify existing edge nodes, service routers, and SD-WAN gateways. Analyze traffic patterns and interconnectivity between data centers, branch offices, and cloud environments. 1.2. Routing Policies & Performance Review existing BGP policies (e.g., route filtering, MED, AS-PATH, communities). Assess route convergence time and stability. Identify potential suboptimal routing paths or routing loops. Check for excessive prefix advertisements or flapping routes. 1.3. Security and Compliance Validate prefix lists, route maps, and authentication mechanisms (MD5). Ensure BGP peering sessions use TCP-AO or IPSec where required. Audit firewall policies impacting BGP traffic. 1.4. Failover & Redundancy Assess existing HA (High Availability) configurations. Evaluate NSX Edge Clusters, SD-WAN Gateways, and VRRP setups. Identify failure scenarios and their impact on BGP routing. 2. BGP Remediation Strategy if required\\requested based on the evaluation. The below section should be updated based on findings in the Evaluation. Based on the evaluation, define a remediation approach for optimal performance and resilience. 2.1. BGP Peering Enhancements/Fixes eBGP for external route advertisements and iBGP within NSX domains. Establish redundant BGP sessions between multi-link endpoints Optimize BGP neighbor timers (keepalive and hold timers) for fast failover. 2.2. Traffic Engineering Utilize BGP attributes (Local Preference, MED, AS-PATH) to influence outbound traffic. Implement route summarization if needed to reduce route table size and improve efficiency. Enable BGP conditional advertisement to optimize traffic flow based on conditions. 2.3. NSX-SD-WAN Integration Improvements Enable or reconfigure dynamic route learning and propagation between NSX-T and SD-WAN. Implement or reconfnigure SD-WAN BGP over tunnels to avoid inefficient traffic paths. 2.4. Security Hardening Enforce BGP authentication with MD5/TCP-AO. Apply route filtering to prevent unauthorized route propagation. Deploy BGP monitoring and anomaly detection tools. 3. Evaluation Metrics & Validation Plan After implementing the redesign, measure the impact using the following criteria: 3.1. Performance Benchmarks Reduced route convergence time (<5 seconds in failover scenarios). Lower latency for critical application traffic (<20ms increase after redesign). Improved bandwidth utilization (optimum path selection via BGP attributes). 3.2. Stability & Resilience Ensure failover events occur within expected thresholds. Validate route flapping mitigation strategies. Confirm route consistency across multiple sites. 3.3. Security Validation Perform security audits on BGP session authentication. Validate that unauthorized route advertisements are blocked. Confirm compliance with organizational and industry security standards. 3.4. User Experience and Business Impact Measure application performance before and after redesign. Monitor VoIP, video conferencing, and cloud application performance. Gather feedback from IT teams and end-users on network improvements. Keywords: information technology green card South Dakota Need Independent CCIE Network Architect [email protected] http://bit.ly/4ey8w48 https://jobs.nvoids.com/job_details.jsp?id=2289900&uid= |
| [email protected] View All |
| 10:38 PM 26-Mar-25 |