vCenter skyline health check showing all healthy, vSAN CLI health check showing 'Hosts with connectivity issues' with witness node when witness traffic is on a separated routable network.

Health check through vCenter Skyline health showing no host connectivity issues.

Witness and hosts can successfully ping back and forth through the vSAN network on both witness and hosts. There are no actual network issues with the witness node, this is a cosmetic issue.

CLI health check will show 'Hosts with connectivity issues' in a red state.

Witness node will show up as having communication issues.

VMware vSAN 6.x

VMware vSAN 7.x

VMware vSAN 8.x

Known limitation where CLI health check command doesn't support witness traffic on a separated routable network.

This is a known issue and will be resolved in a future build of ESXi/vSAN