Release : 15.8
Component : Endpoint Prevent Agent
DLP Endpoint Agents or other DLP products do not natively inspect data-in-motion over the port 1433.
Usually where a database is concerned Data-At-Rest scanning is done via a Network Discover server where the stored database content is extracted for detection against your policies.
Alternatively you could use a Network Monitor to inspect and monitor such traffic by adding the required port for inspection of network traffic received via a Span/TAP, but the Network Monitor is for observation only as it does not allow any blocking nor can it inspect any traffic that might be encrypted outside of DLP.
For more information on DLP product please refer to the online documentation: