If an attacker compromised an EC2 instance in Ankercloud's environment, how would you prevent them from pivoting to our database layers?