360 S 200 W Apt #D309 • Salt Lake City, UT 84101 • (801) 674-4100
Over 10 years experience in Network Engineering & Linux Administration
3 years experience building production Cloud Computing Environments
Passionate about technology and quality
Outstanding interpersonal skills, analytical and articulate
University of Utah, Salt Lake City, UT
◦ In Progress
Salt Lake Community College, Salt Lake City, UT
Cisco Certification Training
CCNA: Routing & Switching
CCNP: Routing & Switching; VoIP; Wireless
Cloud Engineering Build and maintain an openstack environment used in production.
Build and maintain Proxmox environment used in production.
Network Engineering Build and maintain HIPAA & PCI complaint networks with
resources that span across the U.S.
Cisco ASA Firewall series
Cisco Catalyst Switch series
VoIP & QoS
Build an infrastructure of exclusively linux servers that run
in a hybrid Hardware/Virtualized environment.
CentOS 6 & 7
The Public Group, Provo, UT Mar 2015 - Present
Public auction web services with remote agents.
Senior Systems Administrator
◦ Correct systems in production and deploy new systems
† Build, administer and correct RHEL 6 & 7 configurations
† Manage PostgreSQL database
† Built agent frontend using Linux Mint
Senior Network Architect
◦ Design and build the network infrastructure and virtual environment.
† 4 Datacenter locations are connected via IPSec.
† 3 Datacenter locations support our remote VoIP agents.
† Openstack environments can support up to 60 virtual instances.
Dev Point Labs, Salt Lake City, UT Nov 2014 - Present
Accelerated coding bootcamp
◦ I volunteer my time teaching a TCP/IP Protocol Mechanics course
Connexion Point, Salt Lake City, UT Jun 2013 - Jan 2015
Large call center that offers phone services to insurance providers
Inc 500 #86 USA #12 Healthcare #1 Utah
Senior Network Engineer
◦ Linux Systems Administration
† Integrate all new systems with Nagios monitoring
◦ Design and Implement a widely distributed, HIPAA compliant network
† 2 Datacenters and 5 call centers, each connected with 256bit encryption
◦ Construct, configure and maintain call center site networks
† Call centers must support up to 400 agents and support staff
◦ Deployed the Openstack cloud infrastructure at the centralized data center
† Over 90% of all resources are virtualized in this cloud
TenX Networks, Salt Lake City, UT Jul 2007 - Jun 2013
Small to medium business network consultancy, specializing in digital systems integration.
Chief Network Engineer
◦ Design and direct deployment of client networks
Director of Research & Development
◦ Direct and conduct experiments with new potential products/protocols
Director of Technical Services
◦ Coordinate and manage support technicians
Fully Redundant Datacenters
No monolithic call center
Agents operate remotely behind VPN
Load Balanced Web Front End
Remote Voice over IP
There are no centralized call centers; instead call-floor agents work from home.
As such, each of more than 400 agents is connected remotely.
OpenVPN on the client encrypts the connection to the datacenter.
Low-Latency and QoS are important to mitigate the variable quality of home connections
and the overhead of encryption.
Openstack Virtual Environment
The vast majority of resources are surfaced in an Openstack virtual environment.
Openstack allows for easy management, migration and storage of virtual instances.
CEPH replicates virtual instances across storage nodes and environments for High Availability.
For each of the AZ and UT datacenters, I architected the network to comply with PCI.
Each datacenter replicates to each other datacenter for complete location redundancy.
IPSec is used to secure data in transit between datacenters.
The Public Group (2015 - Present)
Public surplus auction web services with remote VoIP agents
Connexion Point Network (2013-2015)
HIPAA Compliant, Nationally Distributed, VoIP Network
St Louis, MO
Salt Lake, UT
Healthcare Provider Network
Salt Lake, UT
As per the requirements imposed by HIPAA and our healthcare partners, all traffic that
passed across the public internet is at least AES 192-bit encrypted.
Servers and routers are all identifiable via publically maintained Certificate Authority.
Access to all resources was restricted with passphrases and RSA passkeys.
Quality of Service
Maintaining low latency RTA is essential for VoIP.
FDDI and strong QoS policies
Monitoring with Nagios
Salt Lake, UT
Openstack Cloud Environment
San Antonio, TX
Openstack Cloud Computing Environment (2014 - Present)
Linux Distributed Virtualization Service
Abstract: Using the Openstack project, I designed and implemented a large, distributed computational
cloud environment. This environment is used to surface dozens of production servers, including:
MySQL (DB), Asterisk (VoIP), LAMP (Web), LDAP (AAA), NFS (File sharing),and Nagios.
The underlying baremetal ran the critical services on the Ubuntu 14.04 platform.
Neutron – Advanced networking services including virtual switch.
Keystone – Provides authentication across platforms and services.
Nova – Runs the computational service for the instances.
Cinder – Data store for the instances.
Swift – Data replication service for the instances.
AMPQ – Data store for services.
Wireless Faux-Duplex (2010)
Problem: Wireless communication is inherently half-duplex and is mediated by CSMA. In
a Point to Point (PtP) scenario, while one peer is transmitting the other peer must
The punctuation and cessation of wireless transmission presents a problem for
Voice over IP, streaming live video and other UDP traffic where the timely arrival of
packets is important.
Solution: (1) Create two wireless PtP links using 802.11n or 802.11ac draft.
(2) Wireless links must be on separate frequencies and separate subnets.
(3) Using OSPF routing protocol, assign the two wireless interfaces unequal
(4) Invert cost designation on the other side.
(5) Optional: Create tunnel between local interfaces on routers and bridge with
local interfaces to create a continuous subnet.
By assigning costs in this particular way, one interface is statically set as the
transmit (Tx) inteface and the other is set as the receive (Rx) interface. This permits the
very near simultaneous Tx and Rx; hence the name “Faux-Duplex”.
This greatly mitigates latency issues that time-sensitive applications may suffer over
wireless media. This is especially true of long distance links where the ACK timeout can
be particularly long. In certain cases, this even allows us to use AMPDU (wireless packet
aggregation utilized in 802.11n) and introduce less latency.
Of course, this is also a high throughput wireless link. Using 802.11n in 5.8GHz
over 1km we were able to achieve over 100 Mb/s of simultaneous wireless communication
in both directions using less than $300 in equipment.
In commercial PtP applications, a tunneling protocol can be used to bridge the local
interfaces on either side to create a perfectly contiguous broadcast domain across the
Rx - 100
Tx - 10 Tx - 10
Rx - 100
up to 12miles up to 12miles
Project Location: Accra and Rural Ghana (2011 - 2014)
Wireless Infrastructure for Tele-Education
Abstract: Customer is a non-profit organization that provides telepresence learning, or
what is sometimes called Learning at a Distance (LaaD).
A teacher occupies a classroom in a school in
rural Ghana or in the capital, Accra. Schools connected
across great distances are provided a two-way video
feed. The teacher’s classroom has live video from every
school and every school has live video of the teacher.
Thus, the children can interact with the teacher in real time,
despite being separated by dozens of miles.
Solution: (1) High capacity, low latency wireless connections between schools
(2) VoIP PBX at each location to manage voice and video exchange
(3) Tap fiber in Accra to provide Internet connection to wireless cells
(4) In many locations, this is the only Internet service available. To fund the
project on an ongoing basis, Internet service is sold to homes and businesses within
the coverage area.
(5) Provide bandwidth management at each site to ensure high quality video
(6) The longest leg so far of 72 miles is nearly complete. The project is ongoing.