You are auditing network segmentation in your Google Cloud environment, which has separate Production and Non-Production IaaS environments. All VM instances use the default service account configuration. You observe that all instances in your custom VPC network can communicate freely, even though tag-based firewall rules with a priority of 1000 are in place to enforce segmentation. What are the most likely reasons for this behavior?