Douala V, Littoral, Cameroon
Senior Network Engineer with 4+ years across mobile operator and vendor environments. Specialised in Service Provider, Mobile Core and Datacenter network architecture and design. I design and deliver carrier-grade IP/MPLS, BGP and EVPN/VXLAN infrastructures supporting 10M+ active subscribers. Core expertise: ● Service Provider: BGP, MPLS L3VPN, ISIS, OSPF, IPv4/IPv6, Traffic Engineering, CGNAT ● Datacenter & Cloud: EVPN/VXLAN, Spine-Leaf, Cisco Nexus, Cisco ACI, AWS Networking, F5, VMware vSphere, SD-WAN ● Security: IPSec VPN, Firewall Architecture, Network Segmentation, DDoS Protection, PKI ● Automation: Python, Bash, Linux (RHEL/Ubuntu), Grafana, Syslog ● Vendors: Juniper, Cisco, Huawei, Fortinet, Palo Alto. Certifications: ● JNCIP-SP – Juniper Networks Certified Professional, Service Provider Routing & Switching ● JNCIP-DC – Juniper Networks Certified Professional, Data Center ● JNCIS-ENT – Juniper Networks Certified Specialist, Enterprise Routing & Switching ● NSE 7 – Fortinet NSE 7, Enterprise Firewall ● FCP – Fortinet Certified Professional, Secure Networking ● HCIP-Datacom – Huawei Certified ICT Professional, Datacom Advanced Routing & Switching ● AWS ANS-C01 – AWS Certified Advanced Networking, Specialty Open to Senior Network Engineer, Network Architect, IP/MPLS Engineer, Datacenter Network Engineer and Service Provider Network Engineer opportunities in Europe.
Designed MPLS L3VPN architecture to isolate mobile service and improve the resilience of the backbone. Engineering of many upstream BGP strategies between 3 AS, increasing redundancy and failover. Designed and automated network operations workflows on Linux systems using Bash/Python, reducing manual intervention and configuration errors. Designed IPSec architecture between Orange Cameroon and partners to securely access private content. Integrated Linux-based monitoring and logging tools (e.g., Grafana, syslog) for real-time network visibility and troubleshooting: to monitor the internet traffic of the lease line customer. Participated in the deployment of the DR Datacenter IP Fabric of Orange Cameroon, with Cisco Nexus 9K and running BGP EVPN/VxLAN overday and ISIS underlay, increasing the reliability of applications running in the Datacenter Redesigning the Orange Cameroon CGNAT (Juniper SRX5600) architecture using PBA for a large-scale data mobile network, especially for the APN subnet. Coordinate the TikTok traffic optimization by deploying CDN77 cache, allowing us to reduce 25Gbps traffic on transit, improving latency and QoS. Contributed to the HLD/LLD design for the vEPC (Virtual Evolve Packet Core) project across the 3 core networks in Orange Cameroon to increase the capacity and quality of service of mobile users. Leading the deployment, network integration of Smartcare products with aims of improving the overall customer experience. Contributed to RFP, design and deployment of Huawei DPI, which plays a big role in QoS enforcement and the stability of internet service. Designed datacenter segmentation using FortiGate VDOM, allowing us to secure all the flow within the datacenter. Participated in the deployment of new built Datacenter using Cisco ACI technology, F5 as Loadbalancer for internal servers and Virtual Machine running on vSphere. Presentation of the technical document to managers for the investment and purchase committee.
Contributed to IPCore deployment and service validation (BGP, MPLS, ISIS) 🡪 , Huawei NE40E, NE8000, CE16000 Integration of new internet service on BRAS(BNG) for customers using L2VPN, PPPoE protocols 🡪 , Juniper MX304 Optimised traffic engineering and link utilisation in the MTN Network, and QoS service (DSCP) for high-priority traffic. Designed and deployed IPSec VPN and firewall security policies. Supported large-scale network software upgrade, router deployment and infrastructure validation. Worked on major network evolution projects, including the deployment of SRv6 and the test of the SD-WAN solution with Huawei devices (NetEngine AR Series) for enterprise customers (RAZEL). L2 support for major incidents in the network.
- Provide support to the team on various project - Managing Azure subscription - Weekly reporting on activities and progress on various projects
As part of this project, our task was to set up a LAN network to connect the various workstations (computers) that the school had recently acquired. The network architecture included a server hosting the school management web application that had been developed, and the school administration requested access to it. The work was carried out successfully and the client was very pleased with the result.