Well, the ssh tunneling is going to take days. It did 80 ports with 5 attempts each and that took 6 hours. It's some sort of brute force attack program. It tries a port on the ip and I assume it attempts 5 different passwords. I did an open port scan though and really 22 is the only one that shows the ssh protocol, there are several others that are open, but nothing displays, also when I try the tunneler on them nothing appears to happen. Last night I tried the serial method and was able to see it boot, I have yet to poke around. There is still two other methods left to try and crack this nut if these current methods don't work.