Hi @td007, welcome to the community and to OpenZiti (and zrok/browzer)!
The only way I can think of right now to do this is to use a wildcard DNS intercept address but the solution will come with some limitations...
OpenZiti allows you to create an intercept for something like *.rdp.host which as you might expect, will match ins1.rdp.host, inst2.rdp.host etc etc. That allows you to match an indeterminate number of hosts, based on the first part of the hostname. That's great....
Then with the far, host/bind side you can implement another ziti tunneling feature: forwardAddress that allows you to dial whatever host name the intercepting tunneler dialed.
So if on the client I tried to concert to inst1.rdp.host, on the far side, the router will try to connect to "inst1.rdp.host".
So the challenges are, you'll have to have all the targets you're trying to connect to similarly named, and you'll have to intercept a similar name on the client side.
I'm pretty sure that would work. If that sounds acceptable, check out this great forum response from
Shawn on how to do this: Single identity for many services - #6 by Nopalin
If you get stuck, post back what you've done I'll show you how to make any changes
You only need the router in host mode (the default mode) but you do need to ensure you created it with tunneler mode enabled