Can Symantec DLP Endoint Agent inspect database traffic sent to the cloud via port 1433?
search cancel

Can Symantec DLP Endoint Agent inspect database traffic sent to the cloud via port 1433?

book

Article ID: 235305

calendar_today

Updated On:

Products

Data Loss Prevention Endpoint Prevent

Issue/Introduction

PowerBI and Tableau send data over port 1433 to an Azure SQL DB instance.
 
Can Symantec DLP Endpoint Prevent Agent inspect traffic going from a user's workstation to the cloud via port 1433?
 
 

Environment

Release : 15.8

Component : Endpoint Prevent Agent

Resolution

DLP Endpoint Agents or other DLP products do not natively inspect data-in-motion over the port 1433.

Usually where a database is concerned Data-At-Rest scanning is done via a Network Discover server where the stored database content is extracted for detection against your policies. 

Alternatively you could use a Network Monitor to inspect and monitor such traffic by adding the required port for inspection of network traffic received via a Span/TAP, but the Network Monitor is for observation only as it does not allow any blocking nor can it inspect any traffic that might be encrypted outside of DLP. 

 

Additional Information

For more information on DLP product please refer to the online documentation:

 15-8 Related-Documents