As a cloud engineer at a social media app company utilizing a hybrid cloud environment, you're tasked with deploying a new internal service on Compute Engine. This service must be inaccessible from the public internet. Which action ensures this requirement?