Hello @Mathew James ,
Welcome to Microsoft Q&A Platform. Thank you for reaching out & hope you are doing well.
I understand that you would like to achieve automatic failover for Internal applications (not exposed to Internet) in two different Regions and would like to know which service can serve the purpose.
You can use Azure Front Door Premium in your case as it supports private link and traffic routing methods to origin which fits your scenario.
Azure Front Door Premium can connect to your origin using Private Link. Your origin can be hosted in a virtual network or hosted as a PaaS service such as Azure App Service or Azure Storage.
Refer : https://learn.microsoft.com/en-us/azure/frontdoor/private-link
https://learn.microsoft.com/en-us/azure/frontdoor/standard-premium/how-to-enable-private-link-web-app
Azure Front Door supports four different traffic routing methods to determine how your HTTP/HTTPS traffic is distributed between different origins. Using priority routing, Front Door automatically fails over if the primary region becomes unavailable.
Refer : https://learn.microsoft.com/en-us/azure/frontdoor/routing-methods
Kindly let us know if the above helps or you need further assistance on this issue.
----------------------------------------------------------------------------------------------------------------
Please "Accept the answer" if the information helped you. This will help us and others in the community as well.