| Objective: |
I am looking for position related to Linux/Unix/FreeBSD administration.
|
| Skills: |
Security technologies: IPFW, IPSEC/ISAKMP, OpenVPN, PPTP, SSL, Cisco ACL/CBAC, spam and virus controls, NTLM
Network technologies: VLAN, VPN, PPP, PPTP, NAT, OSPF, RIP,
VoIP (H323,SIP), VoFR, HTTP/HTTPS, DNS, NFS, SMTP, IMAP, POP3, UUCP, FTP, LDAP, DHCP, NTP, iSCSI
Applications: Apache httpd, Postfix, Sendmail,
AVP, DrWeb, ProFTPd, BIND, Squid, Socks5, CVS, MySQL, Asterisk PBX, GNU Gatekeeper, Lotus Notes/Domino,
Apache Tomcat, Veritas Netbackup, Veritas Volumne Manager, Atlassian Jira, Atlassian Confluence, Bacula
Operating systems: FreeBSD, Linux (Gentoo, Red Hat), Sun Solaris 8/9/10, Windows 9x/NT/XP, Cisco IOS, Nortel Passport 8600 OS,
VMWare ESXi.
Hardware: Intel x86, Cisco routers, Cisco Catalyst switches, Nortel Passport 8600 L3 switch,
L2 switches, DSL modems, Brocade SilkWorm 4100 FC switches, SunFire 210/490/6800 servers
Programming languages and toolkits:
extensive HTML, PHP, Perl, Javascript, SQL for server-client applications, shell, basic LotusScript and @Formula
|
| Experience: |
- installation and administration of Gentoo Linux, Centos, FreeBSD
- backup administration (was Veritas Netbackup, now Bacula)
- installation and administration of SVN repositories
- installation and administration of Atlassian Fisheye / Bamboo / Crowd
- installation and administration of Atlassian Jira and Confluence using Apache Tomcat 5.5 and MySQL;
upgrade, backup, integration of those applications; performance tuning, troubleshooting (tools used: Eclipse MAT, munin)
- integrated Jira/Confluence with Active Directory/LDAP; patching plugins for Confluence during upgrades (tools used: java decompilers)
- deployed Single Sign On for Jira/Confluence using custom java authenticator classes
and Apache httpd NTLM/LDAP authentication (using customized plugins)
- JIRA customization for multiple projects (workflows, screen schemes, permissions etc)
- creating RPM packages for GlobalLogic Velocity Platform; managing own yum repository
- implemented disaster recovery standby server with MySQL master/slave replication and rsync for Confluence/JIRA
- setup internal instant message server (openfire)
- managed external DNS, ftp server, proxy server; managed Samba NAS; DHCP
- server monitoring (munin, mrtg, bigbrother)
- small BPA development (PHP: system, network and backup monitoring, office access control statistics system)
- user and project support
- configuring MX servers with flexible antispam and security policies (Postfix)
- implementing virtualization using VMWare ESXi hypervisor, migrating VM's from VMWare Server 1.x
|
|
- installation and administration of Sun Solaris 8/9
- Veritas Netbackup administration
- Veritas Volume Manager administration
- SAN administration (Brocade SilkWorm fiber channel switches)
- Linux Red Hat + Postfix administration
- monitoring and support; deployed BigBrother monitoring system
|
|
| KOMOD |
troubleshooter |
March 2007 - May 2007 |
- transitioned project from PHP4 to PHP5
- changed lot of code to improve PHP performance significantly
- tuned mysql performance and schema
- have setup server with Apache backend and nginx frontend
Side project for a web-shop. After implementing all that number of handled simultaneous users tripled.
|
|
- transitioned LAN and WAN from RIP to OSPF routing protocol
- have setup VLANs on Nortel Passport 8610 routing switch, integrated it into OSPF network, have setup VLANs on FreeBSD
- have setup IPSEC/ISAKMP where could be possible
- have setup remote branches Cisco routers for secure Internet access
with backup channels using IPSEC/ISAKMP tunnels and DDR
- have setup Cisco PPTP VPN access server for remote branches and users
- performed traffic analysis (netflow with custom software tools, MRTG, tcpdump)
- performed firewall setup on FreeBSD (ipfw) and Cisco (ACLs, CBAC)
- performed traffic shaping on Cisco and FreeBSD routers
- expanded and maintained VoFR/VoIP network to remote offices and branches
setting up Cisco frame-relay QoS, dial-peers, translation rules and IDSN ports, GnuGK.
- implemented NTLM authentication for Squid proxy (domain, AD)
- have setup Cisco access server with AAA using gnu-radius and per-user control
- have setup dynamic and static NAT to providers where should be and have setup proxies
(Squid, Socks5, jftpgw) where should be
- implemented spam filtering for Postfix with use of self-written tools for filling self-maintained DRBL database
(spam filter includes: DNS black lists, MIME header checks, body checks,
hostname checks, network checks, verifiable address)
- administered DNS servers, corporate site Apache server on FreeBSD box
- have setup Big Brother monitoring system
- have setup centralized system logging, regular automatic Cisco routers configuration backup,
regular automatic FreeBSD servers file backup
- supported and extended private Intranet system, maintained IIS/MSSQL/NotesSQL services,
customized and wrote PHP and ASP scripts
- did basic administration of Lotus Domino network, performed basic Lotus Notes databases design
and extended existing databases functionality
using LotusScript and @Formula languages, and NotesSQL/ADODB
- have setup and maintained Linux RHEL4 and Gentoo OS distributions with IBM Websphere AS and Oracle 9
(also have setup WebSphere for Windows/AIX)
- have setup Gentoo Linux for mail hosting with Apache/PHP/Courier-IMAP/Postfix/MySQL/SquirrelMail
- have setup Lotus Domino 6.5 for Linux for mobile users
- performed user support
|
| |
- have setup corporate Intranet with use of FreeBSD servers, DHCP, DNS, Sendmail and Postfix MTA, SMTP and UUCP connectivity
to remote branches and offices, have setup corporate replicated LDAP address book on OpenLDAP
with use of self-written tools
- have setup Cisco and FreeBSD routers to provide connectivity to remote offices and branches,
Internet and service providers with use of OSPF routing and firewalling
- have setup VPN to remote offices using unix tunneling software Vtun
- have setup proxies for Internet access
- implemented spam and virus filtering on Sendmail and Postfix using AVP and DrWeb
- have setup Samba and NFS networking for filing and printing, integrated is with Novell Netware
- have setup Big Brother monitoring system
- have written a number of tools to perform automation of administering and workflow
- have written web-interface part of Internet Banking using Apache/PHP/MySQL
- have written a system for task control "Calendar" using Apache/Perl/MySQL, it is being used in bank and some other organizations
- performed user support
|
| |
| UCT ISP |
Technical Director |
September 1998 - April 1999 |
- have setup connectivity and firewalls to other providers and clients on FreeBSD and Cisco routers
- have setup FreeBSD server with PPP dialup pool access, DNS, Apache, Sendmail, POP3, Squid
- wrote user administration and accounting tools using Apache/Perl/MySQL
- performed user support
|
| |
- have setup connectivity and firewalls to other providers and clients on FreeBSD and Cisco routers
- have setup FreeBSD server with PPP dialup access, DNS, Apache, Sendmail, POP3, Squid
- have setup DEC dialup access servers for remote users with Kerberos authentication
- wrote user administration and accounting tools using Apache/Perl
- performed user support
|
| Education: |
-
1982-1992 - Kiev ordinary school #130
-
1989-1992 - Kiev school-lyceum of natural sciences #145 (with emphasis on mathematics and physics)
-
1992-1998 - Kiev Polytechnic Institute, Applied Mathematics faculty.
Have been given diploma "Specialist" in the field
"Intellectual computer systems and networks"
Additional Courses:
-
April 2000 - attended a course "Building Cisco Scalable Networks" in Moscow,
Comptek
|
| Online: |
|
| Languages: |
native Russian and Ukrainian, good spoken and written English, good Spanish, basic German
|
| Personal: |
- birth date and place - 15 September 1975, Kiev, Ukraine
- unmarried
- e-mail/jabber: don_oles@able.com.ua
- homepage: http://gnut.able.com.ua
- skype: don_oles
- icq: 3865728
- hobbies: philosophy, religion, music, studying languages
|