iptables is a (stateful) packet filter and therefore not able to trace and decode L7 protocols. You should take a look on l7filter if you want to trace SMTP traffic in firewall.
A more simple solution would include the usage of a packet capturer on your incoming interface (e.g. with tcpdump, wireshark/tshark or similar). Capture your SMTP traffic to a file, say with tcpdump, and analyze it afterwards:
Code:
# tcpdump -i ethX -s 0 -w dump.pcap 'port smtp'
This may (or may not) solve your problem. It's up to the relaying SMTP server whether or not it is presenting you source IPs. It is very likely that your MTA is not displaying source IPs because they aren't there.