So you can't relay. Too bad. Sri's solutions are usally easier to implement than mine.
Based on your last post I'd recommend you set up a local dns server for each interface.
You need to be very, very careful that nobody uses that server except the server.
Here is my idea:
IF#1 : forward facing, default route
IF#2 : backward facing to application
IF#3 : Management, including e-mail
Make this server a relay server. You'll still need DNS entries to support the hostnames. You'll need to set up public dns entries in your forward facing DNS server to allow servers (like mine) that reject without reverse lookup.
Designate one of the interfaces as the primary mail exchanger and have that one relay mail for the other two interfaces.
This is a complex solution, but I can't think of anything else now that relaying won't work.
Lets say IF#3 is the primary mail interface. It relays mail for the other two. The trick here is to make sure all mail goes through interface 3 and it can resolve public names.
It might be easier to take an old hp-ux server that you were planning to take out of service and do this:
1) One NIC internal. One NIC external, with a DNS entry that is fully qualified and supported on the public internet.
2)All needed hp-ux servers relay their mail through this special mail server.
This last idea seems to take the complexity out of my earlier ideas. All you need is hardware. Doesn't take much server do to this, an entry level box can do the job.
Fascinating situation, a real brain stretcher.
SEP
Steven E Protter
Owner of ISN Corporation
http://isnamerica.com
http://hpuxconsulting.com
Sponsor: http://hpux.ws
Twitter: http://twitter.com/hpuxlinux
Founder http://newdatacloud.com
