I am designing a solution which would require to execute database query on a vendor database which is behind azure firewall. There would probably be IP white-listing enabled on the firewall.
The database would be in a different azure tenancy(Azure AD), owned by the vendor.
We currently have limited usage of Logic Apps, so Integration Service Environment(ISE) does not justify the cost.
Another solution would probably be using the Function app/Web app and use the App service hosting plan which has Virtual network support that channel the request to Azure Firewall from a specific range of IP addresses allocated to Virtual network. We also code for database query execution in function app/web app. It looks like a lengthy solution to me. I am also looking for validation from experts if that's even workable solution
If you can suggest a simpler approach that will get Great.