Hello!
My name is Denis Shaposhnikov. I'm looking for a job in EU (Germany is
preferably) as a UNIX/FreeBSD system administrator and/or network
administrator that lets me utilize my experience in an Internet
Service Providing (ISP).
Skills:
* Operating systems:
UNIX (FreeBSD 2.2 - STABLE), Cisco IOS (10.x - 12.x),
ZyNOS. Understand how systems work and is able to apply this
knowledge to new, complex problems.
* Programming:
Perl/CGI/mod_perl/HTML::Mason, C, HTML, Unix shells and tools,
awk/sed, SQL, Tcl, Python, PHP.
* Networking:
Cisco routers, switches and access servers (800, 1000, 1600,
1700, 2500, 2900, 3600, 5300 series); FreeBSD routers/access
servers; Zyxel DSLAMs; Different LAN switches/hubs from Allied
Telesyn, D-Link, E-Line, 3Com, Intel and many others; Statefull
and stateless firewalls (IPFW, Cisco access lists, TCP
wrappers); Network general sniffer (tcpdump). NAT/PAT by Cisco
and FreeBSD routers.
A solid understanding of routing and routing protocols (Policy
routing and RDP/RIP/OSPF) and able to troubleshoot network
connections/problems.
Ethernet, FastEthernet, Frame Relay, HDLC, xDSL, LRE, HPNA,
ISDN/PRI/R2/E1 (G.703), VPN/PPTP/GRE, PPP.
A solid understanding and experience of TCP/IP, SNMP,
SMTP/POP3/IMAP/UUCP, NNTP, HTTP/FTP, DNS, NFS, NTP,
Telnet/SSH/RSH, TACACS/RADIUS, DHCP, IRC/Jabber, SSL. Knowledge
of protocol internals.
* Databases:
PostgreSQL, MySQL, mSQL.
* Software:
* Routing: routed, gated, zebra. * WWW: apache, squid, jesred,
HTML::Mason, mod_perl, mod_ssl, mod_rewrite, Apache::ASP,
Parser3, PHP. * Development: CVS, cvsup. * Networking: mpd,
nmap, tcpdump, mrtg, isc-dhcp. * Mail: procmail, maildrop,
qmail, postfix, sendmail, avcheck, sqwebmail, courier-imap,
mailman, cyrus-imap. * Security: sudo, gnupg, cistron-radiusd,
freeradius, tac_plus, drweb. * Databases: DBI, postgresql,
mysql, msql. * News: binkd, inn, ifmail, gup. DNS: isc-bind,
djbdns. * Communications: mgetty, jabberd.
... and many, many others.
Employment history:
* March 1998 - present:
Senior system/network administrator of VolgaLink ISP.
FreeBSD installation and keeping STABLE using CVS, building from
sources. Kernel building and tuning. Installation, configuration
and upgrading of software by FreeBSD ports system. Creating
FreeBSD ports for software not in the ports tree and their
maintainance (like devel/p5-Class-Container,
devel/p5-Params-Validate, security/avcheck, www/jesred,
www/p5-HTML-Mason and so on). Daily administration of servers and
automation of administrative tasks by perl/shell scripts or C
programs (if it's really necessary).
Development of new services. Installation, maintainance and
upgrading of servers and network equipment, necessary for
round-the-clock providing of current and new services. Design and
installation of additional servers/network equipment for the
greater territorial scope and providing of services to new
customers. Automation of maintainance of servers/routers and other
equipment, increase of their reliability and foult tolerance.
Design, creation, support and further development of ISP's billing
(on a basis of Perl, Apache, mod_perl, HTML::Mason, MySQL, patched
by me cistron-radiusd), which includes: "hot" accounting of
dialup and VPN connections; in/out IP accounting with division by
directions (to/from: russia, foreign, local, intercity); flexible
tariff plans, depend on: time of day, day of week, quantity of
already used time and/or traffic; purchase of time or traffic by
the gross, under lower price; a secured (SSL) WWW interface for
administrators and customers, which allows to make on his own all
necessary actions with the billing system; a many of additional
services like a callback, connection from certain phone number
only, connection during certain time of day and days of week only;
a virtual WWW and mail hosting, access to MySQL and PostgreSQL
databases, mail lists; reception of cash and non-cache payments,
by bank's cards and our own cards. Development and application of
new services and tariff plans.
Design and construction of WAN covering some cities with use of
routers on a basis of FreeBSD, Cisco, Allied Telesyn,
D-Link. Configuration of dynamic routing protocols OSPF and RIP
(FreeBSD's routed/zebra). Use of policy routing (Cisco, FreeBSD's
ipfw fwd) and GRE tunnels (Cisco, FreeBSD's netgraph) in special
cases. LANs security by stat?full/stateless firewalls (Cisco
access lists, FreeBSD's ipfw) and configuration of NAT/PAT if
necessary. Configuration of ip accounting at key points of network
(Cisco, FreeBSD's netgraph based ip accounting) and importing it
to the MySQL dabatabase for the further analysis and accounting by
the billing system. Use of IP over xDSL, LRE, HPNA, E1 links and
Frame Relay, ATM, Ethernet protocols for connection of LANs on the
long distances. Configuration of an intercity traffic exchange
with other ISPs. Maintainance and further development of our WAN
for increase in throughput and foult tolerance.
Installation and configuration of LANs for providing internet access to
our customers with use of DHCP (ISC DHCP) and VPN (PPTP)
protocols. Integration with our billing system.
Installation and configuration Cisco's dialup access servers with
use of analog (USR Courier/Total Control) and digital (MICA)
modems for providing internet access to our customers. Connection
to city automatic exchanges by E1 (G.703) channels with ISDN PRI
and R2 signalling. Configuration of AAA by RADIUS protocol and
integration with the billing system. (I have experience on
creation FreeBSD dialup access server with use of pppd/login
patched by me for TACACS AAA.)
Installation of traffic and server's/router's resources monitoring
(like an CPU/memory using, modem pools load average and so on) by
SNMP with MRTG software.
Design and installation of virtual WWW hosting on a basis of
Apache HTTP server and FreeBSD's jails. Administration and further
development. Each customer has his own virtual server and is able
to use CGI, PHP, Apache::ASP, HTML::Mason, Parser3 and so on (by
mod_rewrite and patched suexec). All of this are executing with
user's rights only, not from server owner. All of customers have
access to MySQL and PostgreSQL database servers. All of resources
are quoted. Management of the hosting is doing by WWW interface of
the billing system. Variuos components of the hosting is starting
in his own FreeBSD's jails.
Configuration of transparent http proxy (for the first time in a
city) with use of policy routing at the beginning and Cisco's WCCP
(when it has been possible) and FreeBSD's ipfw fwd on the
FreeBSD's box with Squid (http cache/proxy
software). Configuration of the possibility of excision of banner
advertising (by a redirector software and access through another
TCP port). Squid's tuning for hit's increasing and LAN's
security
increasing. Configuration of the possibility for access to the
internet's content through different uplinks by Squid and policy
routing.
Installation of ISP's mail service by Postfix SMTP
server. Configuration of UUCP (over TCP/IP and
dialup). Installation of antivirus software (DrWeb) for all
transit mail checking. Configuration of a spam filtering and the
possibility of switching-off of a spam filtering by
customers. Installation of POP3/IMAP server (Courier IMAP) with
possibility of mail filtering configured by
customers. Installation of Web Mail service (by SqWebMail and
Apache software) and mail lists manager (MailMan). Integration of
the mail service and the billing system. Installation of FreeBSD's
jails for various components of the mail system.
Configuration and maintainance of DNS servers (ISC BIND),
additions and administration of DNS's zones.
Installation and maintainance of internet news server (ISC
INN). Configuration of gatewaying to/from UUCP.
Installation and maintainance of Jabber server by jabberd
software. Configuration of gatewaying to different IM systems
like Yahoo, MSN, ICQ, AIM.
* February 1996 - August 1997:
System administrator. Design, installation, and support of
LAN. Technical support and consulting for end users.
Personal information:
* Age is 26.
I'll be in Germany at January so you can interview me. You can contact
with me by E-Mail (dsh@neva.vlink.ru).
--
DSS5-RIPE DSS-RIPN 2:550/5068@fidonet 2:550/5069@fidonet
mailto:dsh@vlink.ru http://neva.vlink.ru/~dsh/