Using nmap from inside network to Internet

I need to do some pentesting for work, but when I scan our website, Nmap returns ports that I know are not open. It does this for any site I scan.

The scans are done from a non proxied network on my internal network.

Nmap ---> Astaro ---> Internet --->website

Does scanning through the Astaro show open ports on the the inside of Astaro?

Our site:
Scanned at 2012-07-03 22:25:23 EDT for 6s
Not shown: 997 filtered ports
PORT STATE SERVICE
80/tcp open http <-- open for sure
554/tcp open rtsp <--- not open on our site
7070/tcp open realserver <-- not open on our site

My own site
Not shown: 995 filtered ports
PORT STATE SERVICE
80/tcp open http <-- open for sure
443/tcp open https <-- open for sure
554/tcp open rtsp <-- not open
993/tcp open imaps <-- open for sure
7070/tcp open realserver <-- not open

scanme.nmap.org
Not shown: 990 filtered ports
PORT STATE SERVICE
80/tcp open http
110/tcp closed pop3
111/tcp closed rpcbind
113/tcp closed auth
256/tcp closed fw1-secureremote
443/tcp closed https
554/tcp open rtsp
3389/tcp closed ms-term-serv
7070/tcp open realserver
8080/tcp closed http-proxy


What gives with port 554 and 7070?

Thanks,

C68