You are implementing firewall controls to protect your compute resources in a newly created VPC. To simplify management and control, you've configured hierarchical firewall policies (bound at the organization level), global network firewall policies (enforcing IPS for external traffic), and VPC firewall rules (allowing RFC 1918 internal communication). The VPC firewall also includes an explicit deny rule with logging enabled.

This setup works in existing VPCs, but in a newly created VPC, logs are missing, external traffic is failing, and internal traffic functions normally. How do you resolve the connectivity issue?