You have two workloads on Google Kubernetes Engine (GKE): create-order and dispatch-order. The create-order workload manages customer order creation, while dispatch-order handles sending orders to your shipping partner. Both workloads have cluster autoscaling enabled. The create-order deployment needs to access the dispatch-order deployment's web service, but dispatch-order must not be exposed publicly. How should you define the services?