All our 3 vSphere hosts have 3 dual-port NICs.
vSwitch 0, pNIC 1 and 2 = Primary SC and vmKernel for the domain subnet, 172.16.0.xxx
vSwitch 2, pNIC 4 and 5 = VM Network, all VMs are on this vSwitch
So far so good.
vSwitch 1, pNIC 2 and 3 = iSCSI networking, 1 iSCSI vmKernel per pNIC as explained elsewhere how to set up proper iSCSI vSwitches.
Example: iSCSI vmKernel 1 is 10.10.10.140 and iSCSI vmKernel 2 is 10.11.10.140 to match up with our MSA 2012i's SAN networking.
(Our consultant suggested calling them 'Backend vmKernel' -- I kept it even though it is really iSCSI.)
I've seen advice to set up secondary Service Consoles to go with the iSCSI vmKernels.
Do the secondary Service Consoles go onto vSwitch 1??? (e.g. 10.10.10.141 and 10.11.10.141)
After that could I safely set HA to 25% and “das.failuredetectiontime” to 30000 or 60000??
25% of available resources is easily enough to power on our largest VM and any single one of our hosts could run all the VMs that are enabled to restart if all the hosts go down.
I am basically trying to plan for power outages, presently our most likely to happen failure event due to powerful summer storms that can mess up the power lines etc. in our area.
Thank you, Tom
As per your title, if this host is vSphere 4, all iscsi stack will rely on vmkernel ONLY. No need anymore SC for iscsi authentication/login like legacy ESX (3.5).
So,
I've seen advice to set up secondary Service Consoles to go with the iSCSI vmKernels.
No need..
Do the secondary Service Consoles go onto vSwitch 1??? (e.g. 10.10.10.141 and 10.11.10.141)
No need..
In your case, Secondary SC will be needed when you need to route isolation network detection via different subnet instead using the first SC.
I don't quite understand your very last comment above about network detection. 
I was reading Duncan Epping's HA Deep Dive and saw this comment, perhaps you can clarify??
"Basic design principle: For iSCSI I recommend to set the isolation response to “Power off” to avoid a possible split brain scenario. I also recommend to have a secondary service console running on the same vSwitch as the iSCSI network to detect an iSCSI outage and avoid false positives."
I also know that vSphere 4.0 Update 1 or 2 fixes the split brain issue but it's not clear to me if Duncan's suggestion should still be followed, it seems to me that he is indeed suggesting to add the additional service console to the iSCSI vSwitch that I displayed above.
I'm trying to confirm that I am reading his recommendation correctly.
Thank you, Tom
For iSCSI I recommend to set the isolation response to “Power off” to avoid a possible split brain scenario. I also recommend to have a secondary service console running on the same vSwitch as the iSCSI network to detect an iSCSI outage and avoid false positives."
As what I understand, he probably mean the same as what I mentioned previously. You need secondary SC on the same vSwitch as iSCSI network solely for secondary isolation network detection and not for iSCSI discovery or authentication process. This could avoid false alarm when isolation network detected on the first SC or on ESX network because VMware HA will access and check on secondary isolation address as explained in this KB. But, If you share the first & second SC on the same pSwitch, I doubt this setup will be useful.
check this 
vcbMC-1.0.6 Beta
vcbMC-1.0.7 Lite