I read the article. The bit you quote talks about putting the device in a firewalled subnet, because it is not a local-only device: it will try to dial out to a third party server, so it must be placed in a subnet which will block those attempts.

I want a device which I can put on my network and which will not try to dial out to the world. This device is not that.