# Lei Fu > Cloud Networking Software Engineer at Aviatrix Location: San Francisco Bay Area, United States Profile: https://flows.cv/leifu ✔ SKILLS ◆ Python, Terraform, C, C++, GO, SHELL Scripting, PostgreSQL, Distributed Database. ◆ Networking protocols: VxLAN, ARP, TCP/IP, OSPF, BGP, DHCP, L4-L7, XMPP, etc. ◆ Jenkins, Git, Docker Container, AWS, GCP, RESTful API. ◆ Socket programming, Network packet analysis. ◆ Linux/UNIX, Cisco NxOS, Cisco IOS, VmWare. ✔ KEY AREAS of EXPERTISE ◆ Experienced Software Engineering Technical Lead with a demonstrated history of working in the computer networking industry. Strong operations professional skilled in Data Center Networking, Cloud Computing, Information Security, Firewall, Router and Switches, and Virtualization. ◆ Technical Engineer experienced in analyzing and resolving technical issues, following best software development process, designing effective solutions, and implementing and integrate best future practices. ◆ Collaborates with feature owners, program managers, release managers and staff to deliver products on-time and to specification. ◆ Capable troubleshooter, team player and mentor. ## Work Experience ### Cloud Networking Software Engineer @ Aviatrix Jan 2021 – Present | San Francisco Bay Area Working on multi-cloud networks (AWS, Azure, GCP) based on the Aviatrix platform. Orchestrate AWS/Azure/GCP networks (TGW, VPN, VPC/VNET, routing tables, security groups, VM deployments). Integrate Aviatrix multi-clouds with Palo Alto Networks, CheckPoint, Fortinet products. Python, GO, terraform are used in my work. AI tools like github copilot, Anthropic MCP server, etc are used in my work. ### Principal Software Engineer @ Fortinet Jan 2019 – Jan 2021 | United States FortiSASE Project Automate deployment of networking platform on cloud providers to support company's FortiSASE solution. Design and develop software for planning and monitoring the security solution. AWS, BGP, IPSEC, Openstack, Python are used in my work. ### Technical Lead Engineer @ Cisco Jan 2017 – Jan 2019 | Data Center Networking Management Working on Cisco Data Center Network Management (DCNM) orchestration and automation of VxLAN network. I work on configuration compliance – a docker container application runs on DCNM Linux server cluster checks configuration assurance between DCNM intent based policy and the NxOS switches in the managed fabric. Performance enhancements for a python code based system that manages a large scaled network. • Python, Java, shell scripting, REST, PostgreSQL, Ansible, Jenkins are used. • Cisco Internal Training Completed: >> Automating Networks with Ansible >> Applied Continuous Integration with Jenkins >> CI/CD-Continuous Integration and Delivery Training >> Core Kubernetes >> Cisco Presents – DockerCamp >> Advanced Cloud Computing for Developers >> AWS Technical Essentials >> ElasticSearch DataBase >> NxOS guestshell Linux RPM installation >> BlockChain Technology >> Machine Learning with Python ### Technical Lead Engineer @ Cisco Jan 2011 – Jan 2016 | Data Center Cloud Networking Worked on automated network provisioning (auto-configuration) for programmable fabric solution in Cisco Data Center switching platforms (Nexus 9000). Interact with VMware ESXi, vSphere/vCenter, Openstack, LDAP and Cisco DCNM for software development. Learning VM networking information from vCenter and deploy VXLAN overlay in the fabric dynamically. Using C/C++. Worked on fabric access, a framework using XMPP (Extensible Messaging and Presence Protocol) to achieve the single console access to configure programmable fabric in data center. ### Senior Software Engineer in Security @ Cisco Jan 2006 – Jan 2012 | Cisco TrustSec Architecture Group, Cat6000 Switching Business Unit http://www.youtube.com/watch?v=MJJ93N-3Iew Core team member of Cisco TrustSec (CTS) security project – an in-house developed security solution including access control, dynamical policy download, role based, security group tagged ACL enforcement. Worked on Security Tag Exchange Protocol. which includes enhancements like loop detection, keep alive mechanism etc. https://www.cisco.com/c/en/us/td/docs/switches/lan/trustsec/configuration/guide/trustsec/sxp_config.html Leading SXP protocol Scalability enhancement work on Cat6000 platform. Worked on CTS FIPS certification. ### Member of Technical Staff @ Juniper Networks Jan 2004 – Jan 2006 Worked on TCP proxy, NAT etc software on all Netscreen Firewall products. Areas involved in my job includes: L4-L7 security application layer gateway (ALG) development; Network Address Translation (NAT) for VOIP SIP ALG. Crypto algorithm tests for FIPS certification. Ported ScreenOS features (ALG, NAT) to Juniper router running Junos. C programming and ScreenOs and Junos is used in my work. ### Software engineer @ Ciena Jan 2001 – Jan 2004 Responsible for development and delivery of Ciena CoreDirector product. I worked on data traffic management subsystem based on PNNI routing and signaling protocols. I worked as a main developer on following control plane feature development: Aggregate network interfaces to decrease number of routing database updates in the network (Local Span Mesh Restoration). Modified Hello packets and added new signaling messages to restore user data traffic end to end in a faster fashion. I worked on data traffic failure recovery performance and scalability enhancements in large scaled distributed networks. It includes proposing performance improvements strategies, prototyping and implementing the proposals (using C/C++). Performance measurement tests, writing scripts (using TCL) to collect data and analysis results, The user call failure recovery performance for 48 STS-1 calls is improved by 50%. • Title of patent invention: LOCAL SPAN MESH RESTORATION (Patent number: 7391720) • Title of patent invention: Resiliency of control channels in a communications network (Patent number: 7023793) C++/C/Tcl programming and Vxworks is used in my work. ### Software Engineer @ Intel Corporation Jan 2000 – Jan 2001 | Canada Worked in Trillium Digital Systems (Aquired by Intel ). Development and delivery of customized wireless communication software solutions. GPRS and other standards-based communications protocols are used in my work. I worked on GPRS network layer handling mobility issues to support user call data in sequence delivery during handoff. I designed and implemented GSM EDGE Specification to handle media access layer (MAC) control messages. ### Software Engineer @ Nortel Networks Jan 1998 – Jan 2000 | Canada Worked on Nortel CDMA wireless Base Station products. ## Education ### Tsinghua University ### MSc in E.E University of Calgary ### EECS Simon Fraser University ## Contact & Social - LinkedIn: https://linkedin.com/in/lei-fu-techfan --- Source: https://flows.cv/leifu JSON Resume: https://flows.cv/leifu/resume.json Last updated: 2026-04-11