The infrastructure team at SkyView Corp is setting up their AWS network using AWS Organizations with multiple accounts across three OUs, each containing over 100 accounts with non-overlapping CIDR blocks, and they need a solution for VPC communication within each OU while preventing communication between different OUs. Which solution provides the required connectivity with the LEAST operational overhead?