Your team needs to ensure that a Compute Engine instance cannot access the internet or any Google APIs and services. Which two settings must remain disabled to meet these requirements? (Choose two.)