Поднять канал пытался со стороны Zywall
Вот лог с DI-808HV:

WAN Type: Static IP Address (V1.51b03)
Display time: Thursday October 19, 2006 20:05:21

Thursday October 19, 2006 20:04:43 Receive IKE M1(INIT) : 85.198.116.30 --> 85.198.116.22
Thursday October 19, 2006 20:04:43 Try to match with ENC:3DES AUTH:PSK HASH:SHA1 Group:Group1
Thursday October 19, 2006 20:04:43 Send IKE M2(RESP) : 85.198.116.22 --> 85.198.116.30
Thursday October 19, 2006 20:04:43 Receive IKE M3(KEYINIT) : 85.198.116.30 --> 85.198.116.22
Thursday October 19, 2006 20:04:43 Send IKE M4(KEYRESP) : 85.198.116.22 --> 85.198.116.30
Thursday October 19, 2006 20:04:43 Receive IKE M5(IDINIT) : 85.198.116.30 --> 85.198.116.22
Thursday October 19, 2006 20:04:43 Send IKE M6(IDRESP) : 85.198.116.22 --> 85.198.116.30
Thursday October 19, 2006 20:04:43 IKE Phase1 (ISAKMP SA) established : 85.198.116.22 <-> 85.198.116.30
Thursday October 19, 2006 20:04:43 Receive IKE Q1(QINIT) : [85.198.116.30]-->[85.198.116.22]
Thursday October 19, 2006 20:04:43 Requested routing is [192.168.1.0|85.198.116.30]<->[85.198.116.22|192.168.2.0]
Thursday October 19, 2006 20:04:43 Try to match ESP with MODE:Tunnel PROTOCAL:ESP-3DES AUTH:SHA1 HASH:Others PFS(Group):NONE
Thursday October 19, 2006 20:04:43 error = 14
Thursday October 19, 2006 20:04:47 Receive IKE Q1(QINIT) : [85.198.116.30]-->[85.198.116.22]
Thursday October 19, 2006 20:04:47 Requested routing is [192.168.1.0|85.198.116.30]<->[85.198.116.22|192.168.2.0]
Thursday October 19, 2006 20:04:47 Try to match ESP with MODE:Tunnel PROTOCAL:ESP-3DES AUTH:SHA1 HASH:Others PFS(Group):NONE
Thursday October 19, 2006 20:04:47 error = 14
Thursday October 19, 2006 20:04:55 Receive IKE Q1(QINIT) : [85.198.116.30]-->[85.198.116.22]
Thursday October 19, 2006 20:04:55 Requested routing is [192.168.1.0|85.198.116.30]<->[85.198.116.22|192.168.2.0]
Thursday October 19, 2006 20:04:55 Try to match ESP with MODE:Tunnel PROTOCAL:ESP-3DES AUTH:SHA1 HASH:Others PFS(Group):NONE
Thursday October 19, 2006 20:04:55 error = 14


а это лог с Zywall :
1
2009-04-21 17:42:30 Send:[HASH][DEL] 85.198.116.30 85.198.116.22 IKE
2
2009-04-21 17:42:30 The cookie pair is : 0xE87C34C35E39BD01 / 0x7309EE3A22D3ECDB 85.198.116.30 85.198.116.22 IKE
3
2009-04-21 17:41:58 IKE Packet Retransmit 85.198.116.30 85.198.116.22 IKE
4
2009-04-21 17:41:58 The cookie pair is : 0xE87C34C35E39BD01 / 0x7309EE3A22D3ECDB 85.198.116.30 85.198.116.22 IKE
5
2009-04-21 17:41:42 IKE Packet Retransmit 85.198.116.30 85.198.116.22 IKE
6
2009-04-21 17:41:42 The cookie pair is : 0xE87C34C35E39BD01 / 0x7309EE3A22D3ECDB 85.198.116.30 85.198.116.22 IKE
7
2009-04-21 17:41:34 IKE Packet Retransmit 85.198.116.30 85.198.116.22 IKE
8
2009-04-21 17:41:34 The cookie pair is : 0xE87C34C35E39BD01 / 0x7309EE3A22D3ECDB 85.198.116.30 85.198.116.22 IKE
9
2009-04-21 17:41:30 Send:[HASH][SA][NONCE][ID][ID] 85.198.116.30 85.198.116.22 IKE
10
2009-04-21 17:41:30 The cookie pair is : 0xE87C34C35E39BD01 / 0x7309EE3A22D3ECDB 85.198.116.30 85.198.116.22 IKE
11
2009-04-21 17:41:30 Start Phase 2: Quick Mode 85.198.116.30 85.198.116.22 IKE
12
2009-04-21 17:41:30 The cookie pair is : 0xE87C34C35E39BD01 / 0x7309EE3A22D3ECDB 85.198.116.30 85.198.116.22 IKE
13
2009-04-21 17:41:30 Phase 1 IKE SA process done 85.198.116.30 85.198.116.22 IKE
14
2009-04-21 17:41:30 The cookie pair is : 0xE87C34C35E39BD01 / 0x7309EE3A22D3ECDB 85.198.116.30 85.198.116.22 IKE
15
2009-04-21 17:41:30 Recv:[ID][HASH] 85.198.116.22 85.198.116.30 IKE
16
2009-04-21 17:41:30 The cookie pair is : 0xE87C34C35E39BD01 / 0x7309EE3A22D3ECDB 85.198.116.22 85.198.116.30 IKE
17
2009-04-21 17:41:30 Send:[ID][HASH][NOTFY:INIT_CONTACT] 85.198.116.30 85.198.116.22 IKE
18
2009-04-21 17:41:30 The cookie pair is : 0xE87C34C35E39BD01 / 0x7309EE3A22D3ECDB 85.198.116.30 85.198.116.22 IKE
19
2009-04-21 17:41:30 Recv:[KE][NONCE] 85.198.116.22 85.198.116.30 IKE
20
2009-04-21 17:41:30 The cookie pair is : 0xE87C34C35E39BD01 / 0x7309EE3A22D3ECDB 85.198.116.22 85.198.116.30 IKE
21
2009-04-21 17:41:30 Send:[KE][NONCE] 85.198.116.30 85.198.116.22 IKE
22
2009-04-21 17:41:30 The cookie pair is : 0xE87C34C35E39BD01 / 0x7309EE3A22D3ECDB 85.198.116.30 85.198.116.22 IKE
23
2009-04-21 17:41:30 Recv:[SA] 85.198.116.22 85.198.116.30 IKE
24
2009-04-21 17:41:30 The cookie pair is : 0xE87C34C35E39BD01 / 0x7309EE3A22D3ECDB 85.198.116.22 85.198.116.30 IKE
25
2009-04-21 17:41:30 Send:[SA][VID][VID] 85.198.116.30 85.198.116.22 IKE
26
2009-04-21 17:41:30 The cookie pair is : 0xE87C34C35E39BD01 / 0x0000000000000000 85.198.116.30 85.198.116.22 IKE
27
2009-04-21 17:41:30 Send Main Mode request to [85.198.116.22] 85.198.116.30 85.198.116.22 IKE
28
2009-04-21 17:41:30 Rule [zebrastar_rule] Sending IKE request 85.198.116.30 85.198.116.22 IKE
29
2009-04-21 17:41:30 The cookie pair is : 0xE87C34C35E39BD01 / 0x0000000000000000 85.198.116.30 85.198.116.22 IKE
30
2009-04-21 17:40:27 Send:[HASH][DEL] 85.198.116.30 85.198.116.22 IKE
31
2009-04-21 17:40:27 The cookie pair is : 0xFF13DC12261EB4D6 / 0x5814128A935C9CA4 85.198.116.30 85.198.116.22 IKE

Такое ощущение, что два устройства на определенном этапе перестают понимать друг-друга

WAN адрес DI-808HV 85.198.116.22 - за ним сеть 192.168.2.0
WAN адрес Zywall 85.198.116.30 - за ним сеть 192.168.1.0

Может я что-то неправильно делаю?

Видимо, да.
viewtopic.php?t=66040

Большое спасибо за ссылку!
Но к сожалению в указанной Вами ветке обсуждается совсем другая ситуация.
Там VPN канал установлен и работает! Я же ВООБЩЕ не могу его поднять - все время "error 14".
Так вот смысл вопроса в том, что может быть существуют некие тонкости в настройке соединения с моим железом.

По ссылке работает точно то же, что не работает у вас. И судя по теме, без никаких тонкостей.
А ваши настройки роутеров вы не привели.

Вы приведите скриншоты с настройками с обеих устройств.

_________________
Сообщения в PM игнорируются, задавайте вопросы на форуме.

Скриншоты D-Link






Zywall

А теперь посмотрите на логи - PFS(Group):NONE
Вы dlink перед настройкой сбрасывали?
И попробуйте дать несколько ipsec proposal на выбор, в т.ч. с отключенным pfs - скорее всего туннель поднимется.