If it is for external traffic then you request it for the common name of whatever the server is referenced on the internet.
So if the remote site is connecting to your server as mail.example.com then that is what you ask for the certificate. The real name of the server doesn't matter. As long as it resolves to what is expected then that is all that is required.
Simon.