diff --git a/docs/superpowers/specs/2026-03-18-adguard-home-design.md b/docs/superpowers/specs/2026-03-18-adguard-home-design.md
index 8ff42bd..fc4b8fb 100644
--- a/docs/superpowers/specs/2026-03-18-adguard-home-design.md
+++ b/docs/superpowers/specs/2026-03-18-adguard-home-design.md
@@ -166,15 +166,7 @@ virtualisation.oci-containers.containers."adguard" = {
 **Notes:**
 - Container runs with minimal capabilities (`--cap-drop=ALL`)
 - Config file is read-only (managed by Nix/SOPS)
-- `adguard-data` volume persists stats and query logs
-
-### Data Directory
-
-```nix
-systemd.tmpfiles.rules = [
-  "d /var/lib/adguard 0755 root root -"
-];
-```
+- `adguard-data` named volume persists stats and query logs (no host directory needed)
 
 ### SOPS Template for AdGuardHome.yaml
 
@@ -276,9 +268,6 @@ services.nginx.virtualHosts."${cfg.domain}" = {
 
 # Ensure nginx user can access ACME certs
 users.users.nginx.extraGroups = [ "acme" ];
-
-# Open HTTPS port
-networking.firewall.allowedTCPPorts = [ 443 ];
 ```
 
 **Security Notes:**