I was greatly intrigued by the patch from bug 6086 and my expectation was that
1. It would work on all protocols that had a FT_ABSOLUTE_TIME item (satisfying most of bug 1381)
2. Missing date/time fields in the filter would be set to 0 and considered "don't care" (ie "frame.time == 2011-08-02" would filter all frames received on Aug 2, 2011, regardless of hour/minute/second values)
However I'm having a hard time creating a good "filter time string" for frame.time to be able to test it for time fields in other protocols (right now I was looking at NTP). The only time I can get this to work is if I specify the time string exactly down the "fractions of a second" field (hopefully I have that name right), and that obviously only gives me 1 packet.
I'm using rev 38310, but I'm loading the sample NTP capture from the wiki (didn't think an "old" capture would matter for this)
What am I missing?
Mike
